Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Win7:Pc startet erst mit dem"start up repair"-Programm

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 10.02.2014, 18:25   #1
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Hallo Ihr Lieben,

ich habe seit ein paar Tagen das Problem, dass mein Computer (Betriebssystem: Windows 7) nicht richtig startet, sodass ich den Pc neustarten muss. Der Computer startet sich beim zweiten mal an sich "normal" dann öffnet sich jedoch das "start up repair"-Programm und mein Computer braucht einige Minuten bis eine Aufforderung aufploppt, welche mich auffordert die Einstellungen meines Computers zurückzusetzen auf den Zeitpunkt, an dem es noch funktioniert hatte. Nun startet mein Pc normal und ich habe keine erkenntlichen Beeinträchtigungen, nur das mein Computer sehr langsam ist, was mich stört. Zusatzinformation: Beim ersten starten meines Computers bleiben die zwei Bildschirme im Stand-by, aber der CPU scheint zu starten, da ich den Lüfter höre. Zudem habe ich gelegentlich auftretende Screen-Freezes. Ich kann meine Maus nicht mehr bewegen jedoch kann ich z.B. Youtube Videos weiter anschauen. Ich muss den PC neustarten.
Adw Cleaner hat diverse C:Users/****/AppData/Local/Temp/Ocs/... Dateien in Quarantäne verschoben. Ich finde leider nicht die Logfiles.

Geändert von Swaqtz (10.02.2014 um 19:04 Uhr)

Alt 10.02.2014, 19:36   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 10.02.2014, 19:49   #3
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Danke schonmal für die schnelle Antwort




FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-02-2014 03
Ran by ***** (administrator) on ****-PC on 10-02-2014 17:17:59
Running from C:\Users\****\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\mpas-d.exe
(Microsoft Corporation) d:\2a581f7935bfbb837d37b1\MpSigStub.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3568312 2013-11-20] (AVAST Software)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Run: [Steam] - D:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Run: [Spotify Web Helper] - C:\Users\Elster\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-06] (Spotify Ltd)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\MountPoints2: {d2dbd449-f462-11de-8227-806e6f6e6963} - "E:\StarCraft II Setup.exe"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF09B0C6E3F5DCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
URLSearchHook: HKCU - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/firefox
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-16.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-17.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-18.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-19.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-20.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-21.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-22.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-23.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-24.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-25.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-26.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-27.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-28.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-29.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-30.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\ixquickde-https.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Heroes Updater - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\battlefieldheroespatcher@ea.com [2012-11-30]
FF Extension: No Name - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}-trash [2010-03-24]
FF Extension: PageTweak - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{15312e9a-4905-48da-aae4-15b24bdc2a24}.xpi [2012-02-08]
FF Extension: Adblock Plus - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-08-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-12-11]

Chrome: 
=======
CHR HomePage: hxxp://google.de/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Adblock Plus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-11]
CHR Extension: (Google Wallet) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-20]

==================== Services (Whitelisted) =================

R2 Akamai; c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2013-11-20] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2013-10-25] (Hi-Rez Studios)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4868640 2013-08-25] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-02] ()
S3 TunngleService; D:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-20] ()
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20568 2010-05-25] (Devguru Co., Ltd)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-04] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-02-22] (Anchorfree Inc.)
S3 wolf; D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [82472 2013-07-24] ()
S3 dump_wmimmc; \??\D:\AeriaGames\WolfTeam-DE\GameGuard\dump_wmimmc.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 X6va003; \??\C:\Users\****\AppData\Local\Temp\003407.tmp [X]
S3 X6va005; \??\C:\Users\****\AppData\Local\Temp\005BF68.tmp [X]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-10 17:17 - 2014-02-10 17:18 - 00021164 _____ () C:\Users\****\Downloads\FRST.txt
2014-02-10 17:17 - 2014-02-10 17:17 - 00000000 ____D () C:\FRST
2014-02-10 17:16 - 2014-02-10 17:17 - 02170880 _____ (Farbar) C:\Users\****\Downloads\FRST64.exe
2014-02-05 14:09 - 2014-02-05 14:09 - 00000000 ____D () C:\Program Files (x86)\musik projekt 1+
2014-02-04 16:08 - 2014-02-04 16:36 - 461345002 _____ () C:\Users\****\Downloads\The_Train.zip
2014-02-04 15:51 - 2014-02-05 22:30 - 00000000 ____D () C:\Program Files (x86)\Realspawn productions
2014-02-04 15:49 - 2014-02-04 15:49 - 00000000 ____D () C:\Users\****\AppData\Local\{F4D6B18B-2A17-4241-8249-91397C62F54B}
2014-02-04 15:48 - 2014-02-04 15:49 - 18309502 _____ () C:\Users\****\Downloads\Ghostbusters3D.zip
2014-02-04 15:45 - 2014-02-04 15:51 - 113753846 _____ () C:\Users\****\Downloads\OneLateNight_x86.zip
2014-02-03 17:29 - 2014-02-03 17:29 - 00000000 ____D () C:\Users\****\AppData\Local\{4FC30471-4022-4220-B40B-7C7413DEF850}
2014-02-03 16:59 - 2014-02-03 16:59 - 00000000 ____D () C:\Users\****\AppData\Local\{6A30FAF2-CD69-446B-AA6D-1226F9E9517C}
2014-02-01 09:08 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-01 09:08 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-01 08:49 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-01 08:49 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-01-29 19:31 - 2014-02-10 17:11 - 00000926 _____ () C:\Users\****\Desktop\LogMeIn Hamachi.lnk
2014-01-29 19:30 - 2014-01-29 19:30 - 00614784 _____ (Chip Digital GmbH) C:\Users\****\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-29 19:06 - 2014-01-29 19:06 - 00042496 _____ () C:\Users\****\Downloads\funnyvoice13.exe
2014-01-29 19:05 - 2014-01-29 19:06 - 05930360 _____ () C:\Users\****\Downloads\MorphVOXPro4_Install-1.de.exe
2014-01-26 17:45 - 2014-01-26 17:45 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard
2014-01-26 15:11 - 2014-01-26 17:45 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-26 15:11 - 2014-01-26 15:11 - 00001161 _____ () C:\Users\****\Desktop\Hearthstone.lnk
2014-01-26 15:06 - 2014-01-30 21:11 - 00000000 ____D () C:\Users\****\AppData\Local\Battle.net
2014-01-26 15:06 - 2014-01-26 15:11 - 00000000 ____D () C:\Users\****\AppData\Roaming\Battle.net
2014-01-26 15:06 - 2014-01-26 15:06 - 00001150 _____ () C:\Users\****\Desktop\Battle.net.lnk
2014-01-26 15:06 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard Entertainment
2014-01-26 15:05 - 2014-01-26 15:06 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-01-26 15:03 - 2014-01-26 15:03 - 05971128 _____ (Blizzard Entertainment) C:\Users\****\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-15 14:07 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 14:07 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 14:07 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-11 15:17 - 2014-01-11 15:17 - 00033893 _____ () C:\Users\****\Downloads\DayZ_Epoch_Client_1.0.3.1_Release_a1.7z.torrent

==================== One Month Modified Files and Folders =======

2014-02-10 17:18 - 2014-02-10 17:17 - 00021164 _____ () C:\Users\****\Downloads\FRST.txt
2014-02-10 17:17 - 2014-02-10 17:17 - 00000000 ____D () C:\FRST
2014-02-10 17:17 - 2014-02-10 17:16 - 02170880 _____ (Farbar) C:\Users\****\Downloads\FRST64.exe
2014-02-10 17:17 - 2009-12-29 11:22 - 02035181 _____ () C:\Windows\WindowsUpdate.log
2014-02-10 17:11 - 2014-01-29 19:31 - 00000926 _____ () C:\Users\****\Desktop\LogMeIn Hamachi.lnk
2014-02-10 17:09 - 2012-09-25 14:40 - 00004184 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-10 17:08 - 2013-11-17 12:30 - 00047466 _____ () C:\Windows\setupact.log
2014-02-10 17:08 - 2011-03-08 15:37 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-10 17:08 - 2010-01-20 19:59 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-10 17:08 - 2009-12-29 11:22 - 00000000 ____D () C:\Users\****
2014-02-10 17:08 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-10 17:06 - 2013-11-20 18:46 - 00000000 ____D () C:\Users\****\AppData\Roaming\Audacity
2014-02-10 17:06 - 2010-09-16 18:34 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-10 17:06 - 2009-12-29 17:04 - 00000000 ____D () C:\Users\****
2014-02-10 17:06 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-02-10 17:05 - 2013-12-22 13:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-02-10 17:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-05 22:30 - 2014-02-04 15:51 - 00000000 ____D () C:\Program Files (x86)\Realspawn productions
2014-02-05 22:30 - 2009-07-14 19:18 - 00000000 ___RD () C:\Users\****\Recorded TV
2014-02-05 21:44 - 2010-09-16 18:34 - 00000000 ____D () C:\Users\****\AppData\Local\PMB Files
2014-02-05 14:09 - 2014-02-05 14:09 - 00000000 ____D () C:\Program Files (x86)\musik projekt 1+
2014-02-04 16:36 - 2014-02-04 16:08 - 461345002 _____ () C:\Users\****\Downloads\The_Train.zip
2014-02-04 15:51 - 2014-02-04 15:45 - 113753846 _____ () C:\Users\****\Downloads\OneLateNight_x86.zip
2014-02-04 15:49 - 2014-02-04 15:49 - 00000000 ____D () C:\Users\****\AppData\Local\{F4D6B18B-2A17-4241-8249-91397C62F54B}
2014-02-04 15:49 - 2014-02-04 15:48 - 18309502 _____ () C:\Users\****\Downloads\Ghostbusters3D.zip
2014-02-04 15:28 - 2013-11-17 12:30 - 00288438 _____ () C:\Windows\PFRO.log
2014-02-03 21:58 - 2011-11-23 16:31 - 00000000 ____D () C:\Users\****\AppData\Roaming\TS3Client
2014-02-03 21:40 - 2013-03-09 10:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-03 21:40 - 2010-01-20 19:59 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 17:52 - 2009-07-14 05:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-03 17:52 - 2009-07-14 05:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-03 17:29 - 2014-02-03 17:29 - 00000000 ____D () C:\Users\****\AppData\Local\{4FC30471-4022-4220-B40B-7C7413DEF850}
2014-02-03 16:59 - 2014-02-03 16:59 - 00000000 ____D () C:\Users\****\AppData\Local\{6A30FAF2-CD69-446B-AA6D-1226F9E9517C}
2014-02-01 09:11 - 2011-03-08 15:38 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-01-31 23:24 - 2013-11-29 22:04 - 00107684 _____ () C:\Windows\DirectX.log
2014-01-30 21:11 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Battle.net
2014-01-30 16:01 - 2013-04-28 20:34 - 00002175 _____ () C:\Users\****\Desktop\Google Chrome.lnk
2014-01-29 20:08 - 2013-05-23 16:44 - 00000000 ____D () C:\Users\****\AppData\Roaming\.minecraft
2014-01-29 19:30 - 2014-01-29 19:30 - 00614784 _____ (Chip Digital GmbH) C:\Users\****\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-29 14:22 - 2009-07-14 18:58 - 00709900 _____ () C:\Windows\system32\perfh007.dat
2014-01-29 14:22 - 2009-07-14 18:58 - 00154336 _____ () C:\Windows\system32\perfc007.dat
2014-01-29 14:22 - 2009-07-14 06:13 - 01670374 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-29 14:21 - 2010-11-29 14:43 - 01622836 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-26 17:45 - 2014-01-26 17:45 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard
2014-01-26 17:45 - 2014-01-26 15:11 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-26 15:11 - 2014-01-26 15:11 - 00001161 _____ () C:\Users\****\Desktop\Hearthstone.lnk
2014-01-26 15:11 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Roaming\Battle.net
2014-01-26 15:06 - 2014-01-26 15:06 - 00001150 _____ () C:\Users\****\Desktop\Battle.net.lnk
2014-01-26 15:06 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard Entertainment
2014-01-26 15:06 - 2014-01-26 15:05 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-01-26 15:03 - 2014-01-26 15:03 - 05971128 _____ (Blizzard Entertainment) C:\Users\****\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-25 19:48 - 2013-12-20 20:20 - 00000000 ____D () C:\Users\****\Documents\DayZ
2014-01-25 19:36 - 2013-12-20 20:20 - 00000000 ____D () C:\Users\****\AppData\Local\DayZ
2014-01-24 15:05 - 2014-01-01 20:30 - 00000000 ____D () C:\Users\****\Documents\Guild Wars 2
2014-01-18 00:59 - 2012-02-13 17:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-16 15:01 - 2009-07-14 05:45 - 00353096 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-16 09:59 - 2009-12-29 11:32 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-15 22:51 - 2013-08-15 01:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 22:48 - 2009-12-29 11:32 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-11 19:22 - 2012-08-23 15:49 - 00000000 ____D () C:\Users\****\AppData\Local\ArmA 2 OA
2014-01-11 15:17 - 2014-01-11 15:17 - 00033893 _____ () C:\Users\****\Downloads\DayZ_Epoch_Client_1.0.3.1_Release_a1.7z.torrent

Some content of TEMP:
====================
C:\Users\****\AppData\Local\Temp\Gw2.exe
C:\Users\****\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\****\AppData\Local\Temp\nvStInst.exe
C:\Users\****\AppData\Local\Temp\SkypeSetup.exe
C:\Users\****\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-01 11:45

==================== End Of Log ============================
         
--- --- ---

--- --- ---







Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-02-2014 03
Ran by ****** at 2014-02-10 17:19:12
Running from C:\Users\****\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 3.9.0.1210 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1210 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (x32 Version: 10.0.12.36 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.9.620 - Adobe Systems, Inc.)
Akamai NetSession Interface Service (x32 Version:  - )
Amnesia: The Dark Descent Demo  (x32 Version:  - )
APB Reloaded (x32 Version:  - )
Apple Application Support (x32 Version: 2.1.7 - Apple Inc.)
Apple Mobile Device Support (Version: 5.1.1.4 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
ARMA 2 (x32 Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead (x32 Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (x32 Version:  - )
Armagetron Advanced 0.2.8.3.2 (x32 Version: 0.2.8.3.2 - Armagetron Advanced Team)
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
avast! Free Antivirus (x32 Version: 9.0.2008 - Avast Software)
Battle.net (x32 Version:  - Blizzard Entertainment)
Battlefield 1942™ (x32 Version: 1.6.20.0 - Electronic Arts)
Battlefield 3™ (x32 Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.1.7 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version:  - )
BattlEye Uninstall (x32 Version:  - )
BioShock 2 (x32 Version:  - 2K Games)
BIT.TRIP RUNNER (x32 Version:  - Gaijin Games)
Blobby Volley 2 Version 1.0RC3 (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
BrickForce 1.9.87 (x32 Version: 1.9.87 - Infernum Productions AG)
Call of Duty: Modern Warfare 3 - Multiplayer (x32 Version:  - Infinity Ward)
Call of Duty: Modern Warfare 3 (x32 Version:  - Infinity Ward)
CCleaner (Version: 4.01 - Piriform)
Counter-Strike: Global Offensive - SDK (x32 Version:  - )
Counter-Strike: Global Offensive (x32 Version:  - )
CyberLink DVD Suite (x32 Version: 5.0.3019 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (x32 Version:  - FromSoftware)
DayZ (x32 Version:  - Bohemia Interactive)
DayZ Commander (x32 Version: 1.09.73 - Dotjosh Studios)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version:  - Microsoft)
Dota 2 (x32 Version:  - Valve)
Dragonica Version TEST (x32 Version: TEST - Gala Networks Europe Ltd.)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (x32 Version: 1.05 - Ubisoft)
FL Studio 11 (x32 Version:  - Image-Line)
FlowStone FL 3.0 (x32 Version:  - )
Flyff (x32 Version: Flyff - Gala Networks Europe Limited)
Fraps (x32 Version:  - )
Garry's Mod (x32 Version:  - Garry)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (x32 Version: 32.0.1700.102 - Google Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Guild Wars 2 (x32 Version:  - NCsoft Corporation, Ltd.)
Half-Life 2 (x32 Version:  - Valve)
Half-Life 2: Lost Coast (x32 Version:  - Valve)
Hearthstone (x32 Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (x32 Version: 3.0.0.0 - Hi-Rez Studios)
IL Download Manager (x32 Version:  - Image-Line)
IL Shared Libraries (x32 Version:  - Image-Line)
Infestation Survivor Stories version 1.0 (x32 Version: 1.0 - OP Productions LLC)
iTunes (Version: 10.6.1.7 - Apple Inc.)
Java 7 Update 25 (64-bit) (Version: 7.0.250 - Oracle)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Jewel Master - Cradle Of Rome (x32 Version:  - cerasus.media GmbH)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (x32 Version:  - )
League of Legends (x32 Version: 1.0020 - Riot Games) Hidden
Left 4 Dead 2 (x32 Version:  - Valve)
LIMBO (x32 Version:  - )
Logitech Vid HD (x32 Version: 7.2 (7230) - Logitech Inc..)
Logitech Webcam Software (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (Version: 12.10.1110 - Logitech Inc.)
Microsoft .NET Framework 1.1 (x32 Version:  - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Mirror's Edge (x32 Version:  - DICE)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 23.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (x32 Version: 4.20.9818.0 - Microsoft Corporation)
Need for Speed™ Most Wanted (x32 Version: 1.5.0.0 - Electronic Arts)
Neffy 1,3,29,0 (x32 Version: 1,3,29,0 - CDNetworks)
Nero 7 Essentials (x32 Version: 7.03.1303 - Nero AG)
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Nexon Game Manager (x32 Version:  - )
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
OpenAL (x32 Version:  - )
Opera Stable 18.0.1284.68 (x32 Version: 18.0.1284.68 - Opera Software ASA)
Origin (x32 Version: 9.0.13.2141 - Electronic Arts, Inc.)
Pando Media Booster (x32 Version: 2.3.5.6 - Pando Networks Inc.)
phase6_18 (x32 Version: 1.80.0000 - phase6)
Pivot Stickfigure Animator (x32 Version: 2.2.5 - Peter Bone)
Pivot Stickfigure Animator version 2.2.6 (x32 Version: 2.2.6 - )
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.12 - ProtectDisc Software GmbH)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
QuickTime (x32 Version: 7.72.80.56 - Apple Inc.)
Realm of the Mad God (x32 Version:  - )
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
S4 League_EU (x32 Version: 1.00.0000 - )
Saints Row: The Third - Initiation Station (x32 Version:  - Volition)
Saints Row: The Third (x32 Version:  - Volition)
SAMSUNG Mobile Modem Driver Set (Version:  - )
Samsung Mobile phone USB driver Drive Software (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (Version:  - )
SAMSUNG Mobile USB Modem Software (Version:  - )
Samsung PC Studio 3 USB Driver Installer (x32 Version: 3.2.0.70701 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.750.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.3 (x32 Version: 6.3.105 - Skype Technologies S.A.)
Smite (x32 Version: 0.1.1831.1 - Hi-Rez Studios)
Source SDK Base 2007 (x32 Version:  - Valve)
Spotify (HKCU Version: 0.9.6.81.gd359a796 - Spotify AB)
Sprachtrainer Fonts (x32 Version: 1.00.01 - Ernst Klett Verlag GmbH)
Starbound (x32 Version:  - )
StarCraft II (x32 Version:  - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Sylenth1 Demo v2.20 (Version:  - )
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Terraria (x32 Version:  - Re-Logic)
The Darkness II Demo (x32 Version:  - Digital Extremes)
Titan Quest (x32 Version:  - Iron Lore Entertainment)
Titan Quest: Immortal Throne (x32 Version:  - Iron Lore Entertainment)
TmNationsForever (x32 Version:  - Nadeo)
Tunngle beta (x32 Version:  - Tunngle.net GmbH)
Update for Codec Package (HKCU Version:  - ) <==== ATTENTION
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version:  - Microsoft)
Uplay (x32 Version: 2.0 - Ubisoft)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01 - Microsoft Corporation)
VVVVVV (x32 Version:  - Terry Cavanagh)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (x32 Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR (x32 Version:  - )
WolfTeam-DE (x32 Version:  - )
ZDFmediathek Version 2.1.5 (Version:  - ZDF)

==================== Restore Points  =========================

04-02-2014 14:35:52 Windows Update
05-02-2014 21:33:18 avast! antivirus system restore point
10-02-2014 16:12:15 Removed LogMeIn Hamachi
10-02-2014 16:16:58 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0297FC68-2756-48E8-B465-60EEC1C25443} - \DSite No Task File
Task: {12A9803B-B52D-4BEA-AA7A-3FFF90EEB418} - System32\Tasks\{CD48BDD7-8F4A-4C7F-87AB-9B8E7EA4D259} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {1CF34630-DE21-471F-8B10-CB4BB9279060} - System32\Tasks\{4971CB8A-5D92-4C44-8505-8BD42A3A7E05} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {2DECACE1-1694-41F8-A40B-9061B5069A01} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {31E359B5-8577-490F-A78E-F361CD947853} - System32\Tasks\{CF7D5BC4-399F-4C3A-8570-9678EB1177C4} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {37D23CE2-9B05-4F1B-9C54-85E4AD9BC7A4} - System32\Tasks\{69EB3962-1AAC-47B7-9175-F8D6C585E5F3} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {45EE4AEF-A0B9-4DC7-848B-AEB4A1501B90} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {4BA98FDF-A853-4AD8-8DBA-5CAD8AAF5470} - System32\Tasks\{57D4D503-B045-4757-8640-995EC7FB72CC} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {4BC7F5A4-4DC7-4D05-BBA8-864366453F8E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-01-20] (Google Inc.)
Task: {4EA43D3A-5031-4B0C-8108-AE8AF03A4CB5} - System32\Tasks\{88923F34-08C8-469F-AA9E-1E9AB8A52100} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {52DF0E3A-FA7C-4249-B8B7-3AA69DDC03BA} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {57EE25A4-C586-4BAC-8E3A-6156A806607B} - System32\Tasks\{013408F5-D1A9-4528-A710-393A2ACB047E} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {718B31EE-9CEB-49C5-A10C-325E5AC1234E} - System32\Tasks\{3A3641C9-E20B-4A2F-870B-70BCC990A8C0} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {782CD769-5EE9-4A6E-8B72-B405E0CCC218} - System32\Tasks\{33F5BC8E-CBAA-439B-B6D4-94BE702C233D} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {7EEBABDD-5AFF-4DF6-8930-380021C4F968} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-01-20] (Google Inc.)
Task: {839074A8-92DD-4FB4-A5DF-3ABFB8A2CF0D} - System32\Tasks\{8AB42CA4-B5C1-4156-A32F-3A73521B2424} => C:\Users\****\AppData\Roaming\astragon Software GmbH\Fahr-Simulator 2009\Fahr-Simulator.exe
Task: {9DE12565-7237-45EC-9EF9-4CB3D3FD29E2} - System32\Tasks\{5F10840F-B3D6-434F-AF58-2DE7E098A6A9} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {A14B6C70-19F0-4550-B6BA-FE1DBA1ADE03} - System32\Tasks\{5A887AD9-9664-42DE-B564-02AE208759C9} => C:\Users\****\AppData\Roaming\astragon Software GmbH\Fahr-Simulator 2009\Fahr-Simulator.exe
Task: {B1D7F1C7-72F0-4891-B2C9-56509598A150} - System32\Tasks\{9F4DA29A-DD62-41DC-BED6-246902959638} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {CB1E0765-A628-42D1-A496-9C733AC07975} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2013-11-20] (AVAST Software)
Task: {CD4A583D-257E-4103-9894-F5504D751ABA} - System32\Tasks\{6696DAA0-86DE-4ADE-BD4C-640F89D89ED2} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {D4D5C6F0-A781-4B5B-8981-18258042F544} - \DigitalSite No Task File
Task: {D507D46D-269D-43B1-9A6B-15FD914C00A8} - \QtraxPlayer No Task File
Task: {F5B2CDA8-570D-4DD9-8368-C631006F6B6C} - \DealPly No Task File
Task: {F8D39C63-A5FE-44C0-9BBE-E44BCAEB6F3C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {FBA5A64C-D2AA-49D6-9241-15C9D2F243A9} - System32\Tasks\{3F0ED016-FF13-4027-8CD7-640984A3B0F5} => D:\AeriaGames\WolfTeam-DE\Launcher.exe [2013-07-20] (Softnyx)
Task: {FD5A57F4-0B54-4FE9-8B26-6A86DD56E65C} - System32\Tasks\{89A66B80-D116-4C12-8C42-FEA1E424E7EE} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: C:\Windows\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-02-10 17:10 - 2014-02-10 09:23 - 02172928 _____ () C:\Program Files\Alwil Software\Avast5\defs\14021000\algo.dll
2011-09-27 07:23 - 2011-09-27 07:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 07:22 - 2011-09-27 07:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-09-23 14:11 - 2013-08-02 20:59 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-01-08 14:23 - 2013-12-12 23:19 - 00142848 _____ () D:\Program Files (x86)\Steam\libavresample-1.dll
2014-01-08 14:23 - 2013-11-05 02:12 - 00890592 _____ () D:\Program Files (x86)\Steam\libavutil-52.dll
2013-03-25 13:23 - 2014-01-11 00:33 - 00717312 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2012-02-28 21:08 - 2014-01-27 20:02 - 01138088 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2012-02-28 21:08 - 2014-01-11 00:33 - 20625832 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2012-03-16 16:28 - 2013-06-15 00:49 - 01100800 _____ () D:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-03-16 16:28 - 2013-06-15 00:49 - 00124416 _____ () D:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-03-16 16:28 - 2013-06-15 00:49 - 00192000 _____ () D:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-11-20 14:32 - 2013-11-20 14:32 - 19336120 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2014-01-30 16:00 - 2014-01-23 06:56 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libglesv2.dll
2014-01-30 16:00 - 2014-01-23 06:56 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libegl.dll
2014-01-30 16:00 - 2014-01-23 06:56 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll
2014-01-30 16:00 - 2014-01-23 06:57 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll
2014-01-30 16:00 - 2014-01-23 06:55 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/10/2014 05:11:27 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: NvBackend.exe, Version: 10.11.15.0, Zeitstempel: 0x52a6776c
Name des fehlerhaften Moduls: nvspcap.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x52a67618
Ausnahmecode: 0xc0000005
Fehleroffset: 0x100077e2
ID des fehlerhaften Prozesses: 0x11c
Startzeit der fehlerhaften Anwendung: 0xNvBackend.exe0
Pfad der fehlerhaften Anwendung: NvBackend.exe1
Pfad des fehlerhaften Moduls: NvBackend.exe2
Berichtskennung: NvBackend.exe3

Error: (02/10/2014 05:11:08 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: NvBackend.exe, Version: 10.11.15.0, Zeitstempel: 0x52a6776c
Name des fehlerhaften Moduls: nvspcap.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x52a67618
Ausnahmecode: 0xc0000005
Fehleroffset: 0x100be510
ID des fehlerhaften Prozesses: 0x11c
Startzeit der fehlerhaften Anwendung: 0xNvBackend.exe0
Pfad der fehlerhaften Anwendung: NvBackend.exe1
Pfad des fehlerhaften Moduls: NvBackend.exe2
Berichtskennung: NvBackend.exe3

Error: (02/10/2014 05:10:23 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/05/2014 10:40:49 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (02/05/2014 10:33:10 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/05/2014 08:15:20 PM) (Source: Application Hang) (User: )
Description: Programm rads_user_kernel.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c44

Startzeit: 01cf22a67ad66c30

Endzeit: 2

Anwendungspfad: D:\Program Files (x86)\League of Legends\RADS\system\rads_user_kernel.exe

Berichts-ID: d8a09d41-8e99-11e3-8760-000000000002

Error: (02/05/2014 08:14:20 PM) (Source: Application Hang) (User: )
Description: Programm rads_user_kernel.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 96c

Startzeit: 01cf22a65a4134a0

Endzeit: 2

Anwendungspfad: D:\Program Files (x86)\League of Legends\RADS\system\rads_user_kernel.exe

Berichts-ID: b4c64cd1-8e99-11e3-8760-000000000002

Error: (02/05/2014 08:09:50 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/05/2014 02:02:27 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/04/2014 09:31:07 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]


System errors:
=============
Error: (02/10/2014 05:11:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (02/10/2014 05:09:44 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
Lbd

Error: (02/05/2014 10:33:09 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
Lbd

Error: (02/05/2014 03:56:13 PM) (Source: DCOM) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (02/05/2014 02:04:24 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (02/05/2014 02:04:23 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
(Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (02/05/2014 02:04:21 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (02/05/2014 02:04:20 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.


Microsoft Office Sessions:
=========================
Error: (02/10/2014 05:11:27 PM) (Source: Application Error)(User: )
Description: NvBackend.exe10.11.15.052a6776cnvspcap.dll_unloaded0.0.0.052a67618c0000005100077e211c01cf267a75eaee30C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exenvspcap.dllfe500350-926d-11e3-8f7a-000000000002

Error: (02/10/2014 05:11:08 PM) (Source: Application Error)(User: )
Description: NvBackend.exe10.11.15.052a6776cnvspcap.dll_unloaded0.0.0.052a67618c0000005100be51011c01cf267a75eaee30C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exenvspcap.dllf2c3d610-926d-11e3-8f7a-000000000002

Error: (02/10/2014 05:10:23 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (02/05/2014 10:40:49 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (02/05/2014 10:33:10 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (02/05/2014 08:15:20 PM) (Source: Application Hang)(User: )
Description: rads_user_kernel.exe0.0.0.0c4401cf22a67ad66c302D:\Program Files (x86)\League of Legends\RADS\system\rads_user_kernel.exed8a09d41-8e99-11e3-8760-000000000002

Error: (02/05/2014 08:14:20 PM) (Source: Application Hang)(User: )
Description: rads_user_kernel.exe0.0.0.096c01cf22a65a4134a02D:\Program Files (x86)\League of Legends\RADS\system\rads_user_kernel.exeb4c64cd1-8e99-11e3-8760-000000000002

Error: (02/05/2014 08:09:50 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (02/05/2014 02:02:27 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (02/04/2014 09:31:07 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]


CodeIntegrity Errors:
===================================
  Date: 2013-11-20 18:28:25.022
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\nvspcap64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-20 18:28:23.943
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\nvspcap64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2010-04-24 22:02:47.445
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-24 22:02:47.438
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-24 17:25:00.921
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-24 17:25:00.915
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-24 17:14:11.431
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-24 17:14:11.425
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-23 19:18:37.970
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2010-04-23 19:18:37.964
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\gPotato.eu\FLYFF\GameGuard\dump_wmimmc.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 57%
Total physical RAM: 3326.55 MB
Available physical RAM: 1428.73 MB
Total Pagefile: 9324.73 MB
Available Pagefile: 6839.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:17.09 GB) NTFS
Drive d: () (Fixed) (Total:368.1 GB) (Free:18.17 GB) NTFS
Drive e: (SC2-200-D1) (CDROM) (Total:7.82 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 05B383CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=98 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=368 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         





Code:
ATTFilter
OTL logfile created on: 10.02.2014 19:30:53 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\****\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,25 Gb Total Physical Memory | 1,63 Gb Available Physical Memory | 50,14% Memory free
9,11 Gb Paging File | 7,24 Gb Available in Paging File | 79,45% Paging File free
Paging file location(s): c:\pagefile.sys 6000 12000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,56 Gb Total Space | 18,12 Gb Free Space | 18,58% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 23,45 Gb Free Space | 6,37% Space Free | Partition Type: NTFS
Drive E: | 7,82 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
 
Computer Name: ****-PC | User Name: **** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\****\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
PRC - C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
PRC - C:\Programme\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Programme\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (NVIDIA Corporation)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
PRC - C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Logitech Inc.)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libglesv2.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libegl.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ffmpegsumo.dll ()
MOD - C:\Programme\Alwil Software\Avast5\libcef.dll ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (NvNetworkService) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
SRV - (NvStreamSvc) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation)
SRV - (avast! Antivirus) -- C:\Programme\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (TunngleService) -- D:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
SRV - (HiPatchService) -- D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Hi-Rez Studios)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (npggsvc) -- C:\Windows\SysWOW64\GameMon.des (INCA Internet Co., Ltd.)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll ()
SRV - (BEService) -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe ()
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (LVPrcS64) -- C:\Programme\Common Files\logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:64bit: - (aswVmm) -- C:\Windows\SysNative\drivers\aswVmm.sys ()
DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswRvrt) -- C:\Windows\SysNative\drivers\aswRvrt.sys ()
DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
DRV:64bit: - (taphss6) -- C:\Windows\SysNative\drivers\taphss6.sys (Anchorfree Inc.)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (LVUVC64) -- C:\Windows\SysNative\drivers\lvuvc64.sys (Logitech Inc.)
DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (ScreamBAudioSvc) -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys (Screaming Bee LLC)
DRV:64bit: - (TFsExDisk) -- C:\Windows\SysNative\drivers\TFsExDisk.sys (Teruten Inc)
DRV:64bit: - (dgderdrv) -- C:\Windows\SysNative\drivers\dgderdrv.sys (Devguru Co., Ltd)
DRV:64bit: - (lvpopf64) -- C:\Windows\SysNative\drivers\lvpopf64.sys (Logitech Inc.)
DRV:64bit: - (LVPr2Mon) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()
DRV:64bit: - (LVPr2M64) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()
DRV:64bit: - (tap0901t) -- C:\Windows\SysNative\drivers\tap0901t.sys (Tunngle.net)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation                                            )
DRV:64bit: - (acedrv11) -- C:\Windows\SysNative\drivers\acedrv11.sys (Protect Software GmbH)
DRV - (wolf) -- D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys ()
DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (NPPTNT2) -- C:\Windows\SysWOW64\npptNT2.sys (INCA Internet Co., Ltd.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\URLSearchHook:  - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\URLSearchHook:  - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = 
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F0 9B 0C 6E 3F 5D CE 01  [binary data]
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\..\URLSearchHook:  - No CLSID value found
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.com/firefox"
FF - prefs.js..extensions.enabledAddons: battlefieldheroespatcher%40ea.com:5.0.196.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.2
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q="
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.7: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2014.02.10 17:05:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.08.26 14:22:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2014.01.17 13:52:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.08.26 14:22:23 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2014.01.17 13:52:09 | 000,000,000 | ---D | M]
 
[2009.12.29 18:47:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\****\AppData\Roaming\mozilla\Extensions
[2013.12.22 15:44:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\****\AppData\Roaming\mozilla\Firefox\Profiles\3bb5lk75.default\extensions
[2010.03.24 15:55:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\****\AppData\Roaming\mozilla\Firefox\Profiles\3bb5lk75.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}-trash
[2012.11.30 16:46:45 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Users\****\AppData\Roaming\mozilla\Firefox\Profiles\3bb5lk75.default\extensions\battlefieldheroespatcher@ea.com
[2012.02.08 17:48:06 | 000,122,054 | ---- | M] () (No name found) -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\extensions\{15312e9a-4905-48da-aae4-15b24bdc2a24}.xpi
[2013.12.22 15:44:29 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.01.28 18:00:46 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-16.xml
[2011.06.30 19:14:56 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-17.xml
[2012.05.02 18:43:06 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-18.xml
[2012.06.22 17:18:49 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-19.xml
[2012.08.14 10:19:19 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-20.xml
[2012.09.14 15:07:00 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-21.xml
[2012.10.25 20:32:22 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-22.xml
[2012.10.28 12:13:06 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-23.xml
[2012.12.13 19:58:38 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-24.xml
[2013.01.11 17:58:24 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-25.xml
[2013.01.19 12:57:54 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-26.xml
[2013.02.06 21:48:34 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-27.xml
[2013.03.01 20:53:01 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-28.xml
[2013.03.08 21:33:34 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-29.xml
[2013.04.12 17:20:45 | 000,000,950 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\icqplugin-30.xml
[2010.05.17 16:43:37 | 000,002,433 | ---- | M] () -- C:\Users\****\AppData\Roaming\mozilla\firefox\profiles\3bb5lk75.default\searchplugins\ixquickde-https.xml
[2013.11.28 17:32:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2013.08.26 14:22:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2013.08.26 14:23:43 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: hxxp://google.de/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonEU\NGM\npNxGameeu.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: Adblock Plus = C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\
CHR - Extension: Google Wallet = C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
 
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000..\Run: [Spotify Web Helper] C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000..\Run: [Steam] D:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.25.2)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.25.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{296AA3D0-543E-483E-8564-3A1EBADE0C20}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D676F87A-5506-4535-84E7-87EEDFACDA38}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.11.02 00:38:02 | 000,000,058 | -H-- | M] () - E:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{d2dbd449-f462-11de-8227-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d2dbd449-f462-11de-8227-806e6f6e6963}\Shell\AutoRun\command - "" = E:\StarCraft II Setup.exe -- [2012.11.02 00:38:02 | 002,020,544 | ---- | M] (Blizzard Entertainment)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014.02.10 17:17:46 | 000,000,000 | ---D | C] -- C:\FRST
[2014.02.05 14:09:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\musik projekt 1+
[2014.02.04 15:51:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realspawn productions
[2014.02.04 15:49:48 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\{F4D6B18B-2A17-4241-8249-91397C62F54B}
[2014.02.03 17:29:15 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\{4FC30471-4022-4220-B40B-7C7413DEF850}
[2014.02.03 16:59:38 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\{6A30FAF2-CD69-446B-AA6D-1226F9E9517C}
[2014.02.01 09:08:03 | 030,372,640 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2014.02.01 09:08:03 | 022,960,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2014.02.01 09:08:03 | 018,310,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2014.02.01 09:08:03 | 018,222,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2014.02.01 09:08:03 | 015,877,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2014.02.01 09:08:03 | 011,554,264 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2014.02.01 09:08:03 | 009,700,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2014.02.01 09:08:03 | 009,657,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2014.02.01 09:08:03 | 003,132,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2014.02.01 09:08:03 | 003,125,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2014.02.01 09:08:03 | 002,947,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2014.02.01 09:08:03 | 002,747,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2014.02.01 09:08:03 | 001,884,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433221.dll
[2014.02.01 09:08:03 | 001,511,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433221.dll
[2014.02.01 09:08:03 | 000,882,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2014.02.01 09:08:03 | 000,879,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2014.02.01 09:08:03 | 000,852,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2014.02.01 09:08:03 | 000,847,648 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2014.02.01 09:08:02 | 025,257,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2014.02.01 09:08:02 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2014.02.01 09:08:02 | 011,605,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2014.02.01 08:49:32 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2014.02.01 08:49:32 | 000,032,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2014.01.29 14:19:39 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014.01.26 17:45:32 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\Blizzard
[2014.01.26 15:11:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
[2014.01.26 15:11:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hearthstone
[2014.01.26 15:06:08 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\Blizzard Entertainment
[2014.01.26 15:06:04 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Roaming\Battle.net
[2014.01.26 15:06:04 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Local\Battle.net
[2014.01.26 15:05:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2014.01.26 15:05:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battle.net
[2014.01.15 14:07:31 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2014.01.15 14:07:31 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2014.01.15 14:07:28 | 000,376,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014.02.10 18:40:01 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.02.10 18:40:01 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.02.10 17:50:30 | 000,015,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.02.10 17:50:30 | 000,015,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.02.10 17:43:05 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.02.10 17:41:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.02.10 17:41:47 | 2616,102,912 | -HS- | M] () -- C:\hiberfil.sys
[2014.02.10 17:40:09 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014.02.10 17:40:09 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.02.10 17:11:01 | 000,000,926 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2014.01.30 16:01:07 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.01.29 14:22:03 | 001,670,374 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.01.29 14:22:03 | 000,709,900 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2014.01.29 14:22:03 | 000,663,038 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.01.29 14:22:03 | 000,154,336 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2014.01.29 14:22:03 | 000,126,168 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.01.29 14:21:16 | 001,622,836 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.01.26 15:11:57 | 000,001,161 | ---- | M] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2014.01.26 15:06:00 | 000,001,150 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2014.01.16 15:01:38 | 000,353,096 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014.01.29 19:31:49 | 000,000,926 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2014.01.26 15:11:57 | 000,001,161 | ---- | C] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2014.01.26 15:06:00 | 000,001,150 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2013.11.20 16:56:07 | 000,000,093 | ---- | C] () -- C:\Users\****\AppData\Roaming\WB.CFG
[2013.11.20 16:56:07 | 000,000,006 | ---- | C] () -- C:\Users\****\AppData\Roaming\WBPU-TTL.DAT
[2013.11.15 22:54:22 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2012.11.27 19:58:53 | 000,007,634 | ---- | C] () -- C:\Users\****\AppData\Local\Resmon.ResmonCfg
[2012.09.23 14:11:04 | 000,291,128 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.09.23 14:11:02 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.07.02 21:11:02 | 000,016,384 | ---- | C] () -- C:\Windows\SysWow64\theowl.dll
[2010.11.29 14:43:24 | 000,000,094 | ---- | C] () -- C:\Users\****\AppData\Local\fusioncache.dat
[2010.09.05 19:28:27 | 000,000,680 | RHS- | C] () -- C:\Users\****\ntuser.pol
 
========== ZeroAccess Check ==========
 
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.07.26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >
         
__________________

Alt 10.02.2014, 19:50   #4
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Code:
ATTFilter
OTL Extras logfile created on: 10.02.2014 19:30:53 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\****\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,25 Gb Total Physical Memory | 1,63 Gb Available Physical Memory | 50,14% Memory free
9,11 Gb Paging File | 7,24 Gb Available in Paging File | 79,45% Paging File free
Paging file location(s): c:\pagefile.sys 6000 12000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,56 Gb Total Space | 18,12 Gb Free Space | 18,58% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 23,45 Gb Free Space | 6,37% Space Free | Partition Type: NTFS
Drive E: | 7,82 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
 
Computer Name: ****-PC | User Name: **** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)
 
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Classes\<extension>]
.html [@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{09D51DC6-E5A7-4895-9D03-DCCC01C03EDA}" = lport=6995 | protocol=6 | dir=in | name=league of legends launcher | 
"{0A4B24FD-4A52-4E4E-838E-DB1278D0239F}" = lport=6961 | protocol=6 | dir=in | name=league of legends launcher | 
"{0B326919-37C1-4AAF-AC26-6F97B40AC719}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | 
"{0C995D49-3DD2-4BD1-B381-BF4804B4EFC8}" = lport=8395 | protocol=17 | dir=in | name=league of legends launcher | 
"{0DF12E11-3136-4AD6-B796-80F116959AF2}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{1505AF11-47FE-48F3-B861-7ACBAA9A5ABE}" = lport=8397 | protocol=6 | dir=in | name=league of legends launcher | 
"{17D9A654-7E1D-4F9E-B9BC-4DB15E1B86C4}" = lport=6957 | protocol=6 | dir=in | name=league of legends launcher | 
"{18B6220D-3B7D-4632-8DBB-8AA1AA9C4292}" = lport=6971 | protocol=6 | dir=in | name=league of legends launcher | 
"{1932BBCD-3E24-4696-9812-A67316C41DB0}" = lport=6963 | protocol=6 | dir=in | name=league of legends launcher | 
"{199B2D57-145D-47F0-8C13-1461B5245174}" = lport=6994 | protocol=6 | dir=in | name=league of legends launcher | 
"{1AB0455F-DECC-45C3-BFE4-D8C4B035F98F}" = lport=6922 | protocol=6 | dir=in | name=league of legends launcher | 
"{1B179930-93A4-4621-98C2-4D4717FAFE02}" = lport=6887 | protocol=17 | dir=in | name=league of legends launcher | 
"{1BF53AE1-31FF-4A30-BDBF-5AEC60AE4F43}" = lport=6899 | protocol=6 | dir=in | name=league of legends launcher | 
"{1CFD066A-D1D2-4176-8595-84CFFB806856}" = lport=6977 | protocol=6 | dir=in | name=league of legends launcher | 
"{1D570BD8-FE36-41EC-8685-BC7179EBE64D}" = lport=6951 | protocol=6 | dir=in | name=league of legends launcher | 
"{1E4156BA-5E7B-4498-A4B1-14BBD1297A53}" = lport=8398 | protocol=6 | dir=in | name=league of legends launcher | 
"{1E6FA923-B42D-4E66-90B9-0B8E3F8E6B1E}" = lport=6912 | protocol=17 | dir=in | name=league of legends launcher | 
"{21FEEFA1-464E-429A-8A6A-93EAB6CAE3CB}" = lport=6899 | protocol=17 | dir=in | name=league of legends launcher | 
"{24E8EA51-60BD-4B3A-B76D-1ECAB56C25A0}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{299D621C-31C8-457F-B08B-DEF8D35F4CC8}" = lport=8397 | protocol=17 | dir=in | name=league of legends launcher | 
"{2B61C206-9B79-4F05-8711-C38D1CE58E40}" = lport=6951 | protocol=17 | dir=in | name=league of legends launcher | 
"{3087E387-3BC7-45AD-B5C8-CC8E32DFC694}" = lport=6957 | protocol=17 | dir=in | name=league of legends launcher | 
"{357DE545-3577-4C96-BBE8-FC1B86215551}" = lport=6942 | protocol=6 | dir=in | name=league of legends launcher | 
"{3651D5ED-E9A5-491E-AC2E-C8E15302B6BF}" = lport=6885 | protocol=6 | dir=in | name=league of legends launcher | 
"{3731F138-4390-473D-BDF1-CA32A329F9E2}" = lport=6984 | protocol=6 | dir=in | name=league of legends launcher | 
"{37334455-961C-4696-A276-233C1ADE8A30}" = rport=445 | protocol=6 | dir=out | app=system | 
"{37A7738C-9933-45FB-8083-931E1095BF20}" = lport=8393 | protocol=17 | dir=in | name=league of legends lobby | 
"{39D60D7C-611B-4361-B5EF-E8C139C26628}" = lport=6894 | protocol=17 | dir=in | name=league of legends launcher | 
"{3B2F3E14-85A9-408D-9C13-69281C4183C0}" = lport=6886 | protocol=17 | dir=in | name=league of legends launcher | 
"{3B43C694-7A29-4D65-96F9-15DE553DC2BC}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{3E126C5B-ED3D-4D16-B225-B8582EBFB629}" = lport=6891 | protocol=17 | dir=in | name=league of legends launcher | 
"{3EFDCC33-5B6B-4C92-BDFC-FE0C6413142B}" = lport=137 | protocol=17 | dir=in | app=system | 
"{3F23F16D-1355-4302-AE2A-74357A00218B}" = lport=6895 | protocol=6 | dir=in | name=league of legends launcher | 
"{3FC53EE3-326E-45AD-9719-638350E1FF84}" = lport=6955 | protocol=17 | dir=in | name=league of legends launcher | 
"{3FCBCC09-6834-4622-902A-EC7D9AF4AC52}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{41886711-5CBE-454A-B8D7-D9D72FBBF287}" = lport=6990 | protocol=17 | dir=in | name=league of legends launcher | 
"{420839CD-73EA-46E4-AC29-CDDEBAD593E3}" = lport=6924 | protocol=6 | dir=in | name=league of legends launcher | 
"{42B1AF0C-9DDB-475F-8189-B2C2B54C4DD4}" = lport=6947 | protocol=6 | dir=in | name=league of legends launcher | 
"{4593434B-D585-438C-B40E-D987A6D33891}" = lport=8393 | protocol=6 | dir=in | name=league of legends lobby | 
"{45941ED9-ECE6-473D-90BE-59671EA9A4F5}" = lport=6996 | protocol=6 | dir=in | name=league of legends launcher | 
"{483469C7-FB7F-41FF-83C4-84D06AC7F0C1}" = lport=6894 | protocol=6 | dir=in | name=league of legends launcher | 
"{483E0722-8E34-41B1-81CF-F0B4E692A28C}" = lport=138 | protocol=17 | dir=in | app=system | 
"{499A46A3-B2D7-417A-AC0D-D0EB722BB77D}" = lport=49280 | protocol=6 | dir=in | name=akamai netsession interface | 
"{4B5A1494-152F-4A3E-9589-BC3F48236F78}" = lport=6978 | protocol=6 | dir=in | name=league of legends launcher | 
"{4D05F1D1-7834-45C3-BA4F-D34A10F38327}" = lport=6954 | protocol=17 | dir=in | name=league of legends launcher | 
"{50407699-180A-4987-A802-7E986FCFB3CE}" = lport=6947 | protocol=6 | dir=in | name=league of legends launcher | 
"{533CA3E8-0E28-4B9A-87BE-9CB0ECE9ADA2}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{55805267-6B3B-4CA2-8864-27846E89ECE1}" = lport=6993 | protocol=17 | dir=in | name=league of legends launcher | 
"{56E1DDE4-4F9A-4346-A1BA-C5FFB13184B4}" = lport=6954 | protocol=17 | dir=in | name=league of legends launcher | 
"{5757F5C2-2BB8-4726-B289-05D2D59D5CC3}" = lport=6891 | protocol=6 | dir=in | name=league of legends launcher | 
"{585858DE-CE87-4635-AA78-C141699484AC}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | 
"{58B7B1CA-738C-487C-930C-35360002DE34}" = lport=6965 | protocol=17 | dir=in | name=league of legends launcher | 
"{596F8968-F264-4A94-B20A-02D8305B4572}" = lport=6907 | protocol=6 | dir=in | name=league of legends launcher | 
"{5C6F1C9C-C543-4E1C-B244-F5DD33AADAE3}" = lport=6897 | protocol=6 | dir=in | name=league of legends launcher | 
"{5C93E361-2A0A-4649-AB69-AC7423BD573A}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{5D576D32-9105-4454-BD43-67D36C7B467F}" = lport=49231 | protocol=6 | dir=in | name=akamai netsession interface | 
"{5EE72E15-3614-49A1-B6B2-308380D0BF14}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{5FC883C4-33EE-4C94-AA54-DA29470B08EB}" = lport=6917 | protocol=17 | dir=in | name=league of legends launcher | 
"{60577A1B-A007-4319-9AF1-CDC995C9EB3B}" = lport=6947 | protocol=17 | dir=in | name=league of legends launcher | 
"{6137C44D-C17F-49DA-90D0-5FDA256D1335}" = lport=6922 | protocol=17 | dir=in | name=league of legends launcher | 
"{61A8FD12-904B-4C47-9C38-CA9D61ADDE39}" = lport=6908 | protocol=17 | dir=in | name=league of legends launcher | 
"{61B41E4B-1597-4999-8BAE-33CEEDE058B5}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher | 
"{61F050F9-5954-4CF0-945A-D7B079D2D288}" = lport=6949 | protocol=6 | dir=in | name=league of legends launcher | 
"{6312E7CF-58BB-4148-A40A-0E6CE49378AD}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | 
"{64CBD9BC-F749-481D-9312-BE6CDFA0D062}" = lport=6897 | protocol=17 | dir=in | name=league of legends launcher | 
"{66EF1C9C-E98E-4CC5-AA14-1F9190EEC44A}" = lport=8390 | protocol=17 | dir=in | name=league of legends game client | 
"{672A7C28-EBD5-4393-A251-7DCABEC58E77}" = lport=6977 | protocol=17 | dir=in | name=league of legends launcher | 
"{67E80E49-765A-499A-A894-17B6DC23C23A}" = lport=6965 | protocol=6 | dir=in | name=league of legends launcher | 
"{69057DEF-F1A9-4358-8CFC-6C0552F035E6}" = lport=6953 | protocol=17 | dir=in | name=league of legends launcher | 
"{6AB23C9C-0F87-4509-8436-3160CB74B8B6}" = lport=6946 | protocol=17 | dir=in | name=league of legends launcher | 
"{6BB5DC2C-B54C-4AFB-AF7C-0128D4A887DB}" = lport=6988 | protocol=17 | dir=in | name=league of legends launcher | 
"{6DF96881-7FD3-4E1A-AA1C-AFE7CF5047F3}" = lport=6954 | protocol=6 | dir=in | name=league of legends launcher | 
"{6FDE2814-325E-4C1E-A340-A9E7E0CC731F}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{70947143-505E-46CE-9592-89E9506CD3A2}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{718C411C-9BFA-4BE9-9917-413E70CCBC3F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{71F1F673-310B-4400-8150-61AFA30A8F3C}" = lport=6910 | protocol=17 | dir=in | name=league of legends launcher | 
"{77F323DF-E24C-49C1-BA6E-E266F68D0D17}" = lport=6995 | protocol=17 | dir=in | name=league of legends launcher | 
"{782A2AD2-D780-48E4-A185-7F03C58E174C}" = lport=6994 | protocol=17 | dir=in | name=league of legends launcher | 
"{79B61E34-C45E-4BB0-BA28-69D846CCCBD1}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher | 
"{80EB3C0E-C14B-4F5C-BBEB-2DE56C9082A4}" = lport=6966 | protocol=17 | dir=in | name=league of legends launcher | 
"{825F7DC6-EA15-45A9-AF83-52F427CFCF76}" = lport=8390 | protocol=6 | dir=in | name=league of legends game client | 
"{83C55782-1529-4E28-B2EE-516F4BFDCC06}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{849E6529-6CF1-4209-AB77-CCA0D72F22CC}" = lport=6957 | protocol=6 | dir=in | name=league of legends launcher | 
"{856AE681-7627-4755-80C6-E2066D1AB11D}" = lport=6990 | protocol=6 | dir=in | name=league of legends launcher | 
"{859FD016-D086-495F-8A58-C7795986DB31}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{864C6BB5-12FB-4D79-BD4E-1747609DAF1D}" = lport=6988 | protocol=6 | dir=in | name=league of legends launcher | 
"{86E62FBE-0284-4857-9BE7-18BD8FD6A226}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{89178E94-96FD-4AA1-A355-D7B059EDD9BC}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{891E04FC-9C32-42C9-B08B-D15883D4B0FD}" = lport=6914 | protocol=6 | dir=in | name=league of legends launcher | 
"{897742AE-E4CF-4CCF-98FF-FEBBF989CB84}" = lport=6920 | protocol=6 | dir=in | name=league of legends launcher | 
"{89D62576-D8E0-4133-B5E0-D89FD570BB4B}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | 
"{8D76E03A-4BA8-40D6-8E65-401DEE509E01}" = lport=6926 | protocol=6 | dir=in | name=league of legends launcher | 
"{8E3B3362-54B7-4C90-B47C-B19133B2E900}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher | 
"{8F4F6B8B-4267-40F6-8F7B-99223CA3C040}" = lport=6909 | protocol=17 | dir=in | name=league of legends launcher | 
"{8FA48E2C-B159-40E6-8153-C85F15A4309F}" = lport=6890 | protocol=6 | dir=in | name=league of legends launcher | 
"{91587E0F-218B-4629-8073-43BC9D79B5E1}" = lport=6961 | protocol=17 | dir=in | name=league of legends launcher | 
"{922A98F7-7F5A-46D6-989E-3A8CAB4A4906}" = lport=6926 | protocol=17 | dir=in | name=league of legends launcher | 
"{9259195D-99AE-4157-A880-EFA45D832A25}" = lport=6917 | protocol=6 | dir=in | name=league of legends launcher | 
"{977158B5-2477-4126-809A-E3B9C30858A7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{97EB4397-D0FD-4440-BCC4-9B033D5F398E}" = rport=139 | protocol=6 | dir=out | app=system | 
"{9A00BC5C-F7D8-4C14-A80F-C9494743E307}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | 
"{9A2AE71D-2733-4B0E-99CC-8FFADE97BDC8}" = lport=6993 | protocol=6 | dir=in | name=league of legends launcher | 
"{9A7A99E8-26BB-4773-B5AD-8E4875479D1C}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{9B7CD857-1F73-4A3E-B24C-6F4C887032D1}" = lport=6966 | protocol=6 | dir=in | name=league of legends launcher | 
"{9D6FC794-73B3-4D95-AE82-18482F190307}" = lport=6910 | protocol=6 | dir=in | name=league of legends launcher | 
"{A016BF8B-DF52-4483-ACE9-1C274CAE3D36}" = lport=6904 | protocol=6 | dir=in | name=league of legends launcher | 
"{A09B9466-C4F2-4900-AC6E-10CC260CCFA4}" = lport=6896 | protocol=6 | dir=in | name=league of legends launcher | 
"{A348A8F3-C2EE-4F42-96BD-6A351C30C0E5}" = lport=6983 | protocol=17 | dir=in | name=league of legends launcher | 
"{A6EA4D8C-F881-4D37-B657-8E23DE519BED}" = lport=6927 | protocol=17 | dir=in | name=league of legends launcher | 
"{A7A1F4A5-8E7E-4A74-8F3A-92796B96B59A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{A8655E08-E33A-4BF3-A4A7-FA2DFDE7E843}" = lport=6886 | protocol=6 | dir=in | name=league of legends launcher | 
"{AB559E9F-0127-4095-9AED-9CD2C74884AC}" = lport=6908 | protocol=6 | dir=in | name=league of legends launcher | 
"{B18C20A3-B786-4ADB-9E74-6F70BA2962E4}" = lport=6909 | protocol=6 | dir=in | name=league of legends launcher | 
"{B9B6AD0F-87AF-4DB9-A7B0-4E607E1D3CD8}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{B9CA96A4-27AD-40FB-B59B-A605311F7FA6}" = lport=6885 | protocol=17 | dir=in | name=league of legends launcher | 
"{BABD8999-A5FD-4CF7-9FEF-5F62BEAC9371}" = lport=6890 | protocol=17 | dir=in | name=league of legends launcher | 
"{BB25528D-4D45-4C9E-91B0-1D7EE53A7BCB}" = lport=6912 | protocol=6 | dir=in | name=league of legends launcher | 
"{BB7F4ED1-5D1B-49E6-9C4F-B885DD95D439}" = lport=6983 | protocol=6 | dir=in | name=league of legends launcher | 
"{BE6C5FE7-6B08-4BEB-A79F-C36B2CD685F5}" = lport=8398 | protocol=17 | dir=in | name=league of legends launcher | 
"{BE8404F1-99B8-4E5B-A33B-7BD01C9E409F}" = lport=6927 | protocol=6 | dir=in | name=league of legends launcher | 
"{C10814DC-38A4-43FE-87BD-9E8C1D159232}" = lport=6947 | protocol=17 | dir=in | name=league of legends launcher | 
"{C1098F80-4138-47FA-B6DB-563179FB89F1}" = lport=6971 | protocol=17 | dir=in | name=league of legends launcher | 
"{C401573F-0EF1-4380-BFA5-D2A0F7D5690F}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{C6939A6B-D306-4D2D-A0A5-685FAE273A58}" = lport=6954 | protocol=6 | dir=in | name=league of legends launcher | 
"{C828E18E-56B2-4057-9BDA-2129685C98B2}" = lport=139 | protocol=6 | dir=in | app=system | 
"{CA15C6FB-AB87-4ACC-952E-248B99DDD64A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{CA4925D0-184A-4A70-9829-A6FF353CC32D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | 
"{CCC02706-4529-4C23-A3B4-6D3A4F82633F}" = lport=445 | protocol=6 | dir=in | app=system | 
"{CE913828-A6D2-48B0-A5F3-FE2C03F62149}" = lport=6957 | protocol=17 | dir=in | name=league of legends launcher | 
"{CF1EE737-BEDC-439F-97D2-389817039D08}" = lport=6904 | protocol=17 | dir=in | name=league of legends launcher | 
"{D13EC841-4F77-4AAA-AE7E-8368A6A481AC}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{D1CCEA9E-19BC-4EFA-A5D1-679EC7B5139D}" = lport=6978 | protocol=17 | dir=in | name=league of legends launcher | 
"{D9CDD98D-9095-42A6-B510-CB86B72F2329}" = lport=8395 | protocol=6 | dir=in | name=league of legends launcher | 
"{DADD591C-7E49-46EF-93D3-0A8F132248F1}" = lport=6949 | protocol=17 | dir=in | name=league of legends launcher | 
"{DC358656-74A0-45F5-B1F9-C21C61155F3A}" = lport=6946 | protocol=6 | dir=in | name=league of legends launcher | 
"{DD85FF71-0BCB-423F-8B7C-37E7849B6F43}" = lport=6924 | protocol=17 | dir=in | name=league of legends launcher | 
"{DDD38956-5854-4F87-B37C-396331EF14BB}" = lport=6896 | protocol=17 | dir=in | name=league of legends launcher | 
"{E01AD69E-2955-4CD7-89B0-60CA80590BE8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{E2116667-C3AB-41E5-9123-1CF5181F2D79}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{E27C6B62-73BE-44C3-9EAF-A6DBBCE0BAF0}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{E4E96E8C-57A9-4C88-9069-9094BD0A49CA}" = lport=6942 | protocol=17 | dir=in | name=league of legends launcher | 
"{E5C5E522-E005-40AA-B039-E901A713B342}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{E6005E26-26B9-4D08-838F-081A3B4B3840}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher | 
"{E66021EC-EEC4-4173-B6C9-3AB0F95E795C}" = lport=6887 | protocol=6 | dir=in | name=league of legends launcher | 
"{E66DF45A-6FBA-40FD-99F2-5826EE6CA7F4}" = lport=6984 | protocol=17 | dir=in | name=league of legends launcher | 
"{ECAF8AF8-5D53-4EDC-AC59-4359F2ED4026}" = lport=6950 | protocol=6 | dir=in | name=league of legends launcher | 
"{ED89A8E4-B115-4660-B196-D7336202F81F}" = rport=137 | protocol=17 | dir=out | app=system | 
"{EF7D1F47-7742-4749-83D8-5AAF2D1106BA}" = lport=6953 | protocol=6 | dir=in | name=league of legends launcher | 
"{F2572323-2669-45D4-9B0C-239E723554E8}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{F2AA1919-9BA5-4F9D-A99F-E8569EABBD08}" = lport=6963 | protocol=17 | dir=in | name=league of legends launcher | 
"{F34DD684-1A1C-4553-8CC4-D58FCD487111}" = lport=6895 | protocol=17 | dir=in | name=league of legends launcher | 
"{F4C35C18-558C-416E-9E71-1D3C702B5CB2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{F538720B-A46B-4354-A5E0-12D2EF1995B1}" = rport=138 | protocol=17 | dir=out | app=system | 
"{F6D5FA94-DBFC-4759-A539-B7FB4C94FE98}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{F8254800-E899-455A-BC35-710B4B1DE6EA}" = lport=6950 | protocol=17 | dir=in | name=league of legends launcher | 
"{FA801DCC-DAF0-464F-BB20-0F4DDE7BA309}" = lport=6907 | protocol=17 | dir=in | name=league of legends launcher | 
"{FC2F4BC0-B0ED-4053-8A77-9286377617FA}" = lport=6996 | protocol=17 | dir=in | name=league of legends launcher | 
"{FCD1786E-2F70-4EDD-988B-5E90FEF3A7D7}" = lport=6920 | protocol=17 | dir=in | name=league of legends launcher | 
"{FF22AFF4-D792-40CF-927F-17EA3F88507C}" = lport=6914 | protocol=17 | dir=in | name=league of legends launcher | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00229D3B-89F5-461F-ABF1-929C98041EB5}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe | 
"{00EE25C7-1281-4A7F-997E-DF6A8A1580AC}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\fc3editor.exe | 
"{02C8C521-ECEA-468E-B81B-3CEEBD24BFC9}" = protocol=6 | dir=in | app=d:\combat arms\combat arms eu\nmservice.exe | 
"{03DE3666-D92E-471C-976B-1AF0B7C71DEC}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{060DB38A-2BF3-413E-A575-DF68AA2BF7D7}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"{07C0168D-257E-4239-AA36-80BF080A8C5A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bit.trip runner\runner.exe | 
"{08CC0E76-1A45-4CB9-9FE4-EE2CCA6FB78D}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{08F356D4-C475-477B-B749-6CB9AE5D5B2E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\terraria\terraria.exe | 
"{09961791-E827-4D5F-AF1D-48B3F7FDA99A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe | 
"{0A222ECC-5F90-4768-852B-B4DC002684F5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe | 
"{0A355306-CA7E-4ECD-88A7-5865E2B8F024}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{0A55A2EE-3B1A-46AD-9A25-F7B6F9EADA14}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe | 
"{0A5BBB93-4A4E-4160-84D8-CBF16BA3901B}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"{0B246E27-1CCE-4785-ADBB-840C2D1197C7}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{0B9EF7A8-2E45-4D09-BEE4-F7702CB84374}" = dir=in | app=d:\brickforce\brickforce.exe | 
"{0BBBE328-D103-408E-8594-0EE1408C90B3}" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"{0C0D87AE-6D96-4844-B697-A84DFB0F1401}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe | 
"{0DA38131-017D-443F-9C01-F7E86F6FD516}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{1128EC55-130D-4F5A-9F51-5786CA70A5CB}" = protocol=6 | dir=in | app=d:\program files (x86)\origin\battlefield 1942\bf1942.exe | 
"{11C5828C-B1B3-4BC8-8BE8-1259CAE313F7}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{12039257-771E-43E1-9927-259185E065ED}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe | 
"{120CC378-EAE1-40B0-9CD5-3D6848682623}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe | 
"{128C5A61-5325-49D0-A4CA-61DA418D2CE7}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe | 
"{12AC8C8A-542F-4924-A607-1981445CE39A}" = protocol=6 | dir=in | app=d:\program files (x86)\tunngle\tunngle.exe | 
"{13BE8EE5-A090-47AB-BE2D-5FEB3FBA6373}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe | 
"{1478B81E-1CF0-402A-8215-2EECE87E5526}" = protocol=6 | dir=in | app=c:\users\gast\appdata\local\akamai\netsession_win.exe | 
"{1746DDC0-DF43-4FBD-AA8E-EA4599814A39}" = protocol=17 | dir=in | app=d:\program files (x86)\tunngle\tunngle.exe | 
"{17B1324D-D968-4294-B51E-E675F410A47E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{19D694A4-D9D8-4EF5-A5FE-BE301AA59DF9}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe | 
"{1BFD6839-4D9D-4E88-8491-03F8D860EC98}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | 
"{1E0A5340-6462-466B-A680-AE2A2F45A590}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{2277A73D-C230-4883-AC84-FAA46FECD58F}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{23CB086F-C063-4047-B696-28DA7EB54991}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe | 
"{24BABC15-910F-413F-862F-581F541618AE}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 
"{26ACDD56-F322-4D0A-8910-45E44CB87446}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{27780EC8-C7E4-40F9-987F-822C960F0CC9}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\brawl busters\bin\pbclient.exe | 
"{27931568-E615-4261-B672-AC77A46B34FE}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"{28F65305-06FD-44FA-BA66-0CA670E529BE}" = protocol=17 | dir=in | app=d:\program files (x86)\tunngle\tnglctrl.exe | 
"{29B59CDE-FD99-44C0-A974-40D9C5D75834}" = dir=in | app=d:\users\****\documents\the war z\warz.exe | 
"{2BA97C39-85B3-48F2-8DD4-E88E5DBD1ECA}" = protocol=17 | dir=in | app=d:\program files (x86)\origin\battlefield 1942\bf1942.exe | 
"{2BB0196A-9F98-4E4C-B8EA-D13A33A55FE6}" = protocol=6 | dir=in | app=d:\program files (x86)\origin\need for speed(tm) most wanted\nfs13.exe | 
"{2C127980-FACC-416A-8BAC-80B9C05C0B1A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{2C244A54-11B5-4023-95D9-0A05E17AEC91}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{2DF0B575-76C9-4FEF-AE36-11D197776724}" = protocol=17 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | 
"{2EA15708-8420-450D-9059-27D4FAAEE6E3}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{315CB085-AB00-4F96-A931-112D33024B85}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe | 
"{31E58A26-80CB-42D4-9C4F-58EB6A11B5A2}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{34EEAA25-65DB-4ACF-B112-879EFDB365F8}" = protocol=17 | dir=in | app=d:\combat arms\combat arms eu\nmservice.exe | 
"{35205067-0011-425C-B1D7-AF70EE12CD92}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"{3564BE0A-734F-4E15-B81E-22E9018EE47A}" = protocol=6 | dir=in | app=d:\program files (x86)\origin\battlefield 3\bf3.exe | 
"{35F14422-0A2D-4613-BEF2-3FE31E47BD8B}" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\starcraft ii.exe | 
"{366A05FB-A0BA-4DE8-A985-05BCE85DED33}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{3831BA3D-37E4-4BDC-B48C-B1C1E32C579F}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
"{3A723BA8-E584-4188-886F-CF4E4014D647}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe | 
"{3A9C54BA-AFB6-416A-8CB4-A4C785DBD3EF}" = protocol=6 | dir=in | app=d:\program files (x86)\league of legends\lol.launcher.exe | 
"{3B38251A-6AE4-49F4-9A39-E0A5E7CC3E5E}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\brawl busters\bin\pblauncher.exe | 
"{3C12D8F9-0A02-42A3-8183-A73D8F847B6B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe | 
"{3DC0F060-8B6E-45FA-B8C0-C5A9A3007185}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"{3E5BE7F0-5EDD-4F0C-B046-89E217C96391}" = dir=in | app=d:\brickforce\bflauncher.exe | 
"{3F2215A1-5DE6-4648-A5EF-DFE42E0284A0}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"{3F574BD3-FDDB-4762-ACC8-2A139EB64DCA}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{3FD6A581-7AB8-4922-982A-DB43A571F3BC}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\darkness ii demo\darknessii.exe | 
"{40CD9D84-A66B-4A2C-B9BB-BCE6AECA3D5C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{41896DCF-4864-4AA9-B6A3-218608E29FE1}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe | 
"{41CB28C2-5EFC-4888-80FF-29B723FD655C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | 
"{4250CD1C-1BE1-4626-8A58-53565EB519AB}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{43B3B1ED-235A-42E6-8BA6-D2F59D900A78}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | 
"{4409EF84-A8A8-4A22-96EA-17858EE9E5A8}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
"{44FBA5B7-5A98-4339-8611-72BBA5C5E85A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{46DB96F3-E8A6-4C09-BDDE-2A2FE925AC27}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2launcher.exe | 
"{4734F717-3E39-4C8D-9169-8BBF5B97E063}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
"{48F9C3BF-7C81-40F7-B6F9-778AB031C0B3}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{4A1D5026-8F2E-45C8-AA8E-D89A841D0259}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{4AA23372-9631-4497-A1D9-A1C685045722}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe | 
"{4BED7B29-48F8-40D2-9454-F259F1D4F05C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe | 
"{4C7272BA-4B14-4F2A-87A7-C278C658BA23}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{4C83ED7D-20B7-468B-956D-AE2E176D8CBE}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
"{5131297E-C8F4-42DB-867F-BA46ABE31969}" = protocol=6 | dir=in | app=d:\program files (x86)\league of legends\game\league of legends.exe | 
"{513A7950-AA30-48E5-8314-FAE92ACFE8A5}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\realm of the mad god\realm of the mad god.exe | 
"{523695FC-6369-431C-9825-3334D402CE60}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe | 
"{5259AFCA-D69D-44F9-BF9D-DE3857492322}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
"{52F6CAF8-C4A5-4437-BE2C-C6089F672856}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"{56E9A0AE-5E88-411F-A485-E5442FA314C4}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{589F2BB8-16A7-4B11-BF41-55B451BBAE22}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
"{5BB6F168-F80C-47CD-8A1E-735669456FCA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{5D9F546B-CBC3-4777-893E-3B29907A035E}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\ironheart121\source sdk base 2007\hl2.exe | 
"{5E97195F-ECF9-4EE1-8AB0-404BAB595ED9}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{5FA1206C-22AB-40B2-B715-78B5D7943037}" = protocol=17 | dir=in | app=d:\program files (x86)\origin\need for speed(tm) most wanted\nfs13.exe | 
"{602B3AB9-92A6-429D-9E12-2625C7CA0B9C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2launcher.exe | 
"{60A3773C-3D15-4967-B6BA-014B2C7FB92E}" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\starcraft ii public test.exe | 
"{61C1F6BF-FC9F-4315-9C2F-1720A6329642}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"{62ADDB80-48A6-47ED-964D-1F553EBD0CF4}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe | 
"{639AB5D6-1431-4114-858B-A7EF35942D9E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe | 
"{656284C9-0DB0-4E90-BAC7-4F5550E2B260}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"{65C4E393-AB6A-4C42-B4DC-A7E2366B6482}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe | 
"{673C6F97-D581-4E15-BE0A-E870E8FCE007}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | 
"{673F5F65-0D5B-4AC5-B7D5-1B80D32B7DC0}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe | 
"{6817785C-8896-41C6-8011-83285E490361}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{683B229F-9DC1-4C92-AB6E-42CDECD83127}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | 
"{6B9F225B-B324-4F24-BC01-5DC68596AB8E}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{6CD8B0C8-EBD7-4FF5-9834-3A6AFA2A8CDD}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{6DAEE39E-D923-4718-9ADA-FEE9C67A5992}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\fc3updater.exe | 
"{6FA499E7-4525-4D6A-98D4-404A3FD09A66}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
"{6FAF8D6A-0F03-46A5-92E9-240EA1D59787}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{706583AF-A3A3-4E7C-8BE6-AEE862016369}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{72EA493B-2C42-488C-9481-69640A0C8F52}" = protocol=6 | dir=in | app=d:\program files (x86)\league of legends\game\league of legends.exe | 
"{72F44C69-CFEB-4A79-96F6-6E56E21D134A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"{7759AD71-91AE-49A9-89CE-86EAAC1E15C5}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\limbo\limbo.exe | 
"{77B4A36E-5576-4A6B-BC24-8AD0193FBF2D}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe | 
"{77F061D6-757B-48D9-B069-D4135189FA94}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe | 
"{7BF95D56-FB4C-4416-B316-74E6EDE501E5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{7C1D7ED0-457B-451C-8DAF-8C87EB9F0B81}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe | 
"{7C6B5E23-1E33-476B-9845-C1878AE8892E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\realm of the mad god\realm of the mad god.exe | 
"{7DF590D6-4CB0-4B7B-B6E8-6567980A7E2B}" = protocol=6 | dir=in | app=c:\users\****\appdata\roaming\spotify\spotify.exe | 
"{7E97A110-BDA1-495C-9425-9004DDF7C20C}" = protocol=6 | dir=in | app=d:\program files (x86)\league of legends\air\lolclient.exe | 
"{84D0AAB3-FC1E-4425-BCAE-02A5D0D426B6}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third - initiation station\initiationstation.exe | 
"{853F6AD7-71A3-4329-BCA9-18B779E29148}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | 
"{86066A18-93A9-4510-AAC0-800F89B0D28E}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | 
"{884E42B8-9F23-47A8-B6B0-B5D2A0E88D04}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\ironheart121\source sdk base 2007\hl2.exe | 
"{89292D7A-1C8D-4355-A036-ECCF19854495}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\vvvvvv\vvvvvv.exe | 
"{89E6CEA6-43EB-46BB-9FCD-AE9294C1B8CA}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"{8AB18DB6-6B17-4F43-AE0C-8CFA922352E9}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{8BD5838B-DF46-4D65-A178-EC8DDA6C1442}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\brawl busters\bin\pblauncher.exe | 
"{8C9778D2-7BCD-499E-BE49-1A776FE66AD4}" = protocol=17 | dir=in | app=c:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe | 
"{8CEDD93E-0A1D-44F4-A122-BF7D9CEC8ACA}" = protocol=6 | dir=in | app=d:\program files (x86)\tunngle\tunngle.exe | 
"{90700F13-822D-4548-935B-19B583881D14}" = protocol=17 | dir=in | app=c:\users\gast\appdata\local\akamai\netsession_win.exe | 
"{921D4B26-B900-4833-8368-D6293323ECAD}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\mp\builds\binaries\bioshock2launcher.exe | 
"{92565D2D-F57D-4A92-AD18-FB0399BCE9BE}" = protocol=6 | dir=in | app=d:\program files (x86)\tmnationsforever\tmforever.exe | 
"{9304C99D-B51E-4DD7-938F-CBAAC234C090}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third - initiation station\initiationstation.exe | 
"{9325BC84-F1D8-41E7-A3C3-9DF0DCD1605A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{932F9D52-39E1-4918-877C-6F5A265EB1D1}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\amnesia the dark descent demo\launcher.exe | 
"{9375E469-B694-4747-BD9A-C258081BB802}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe | 
"{938512BD-DB16-49A9-A763-B037BC184914}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\terraria\terraria.exe | 
"{93A62574-B7F7-48A4-AD6B-B871F215358E}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{9636BCF2-A661-40A1-B601-FBDBA49F9E57}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
"{97553C07-7D4A-4335-8588-D82766089279}" = protocol=6 | dir=in | app=d:\program files (x86)\tunngle\tnglctrl.exe | 
"{9938AAA5-55F3-4D44-A0D0-B7C8E47E0F02}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
"{9AF978FA-2A42-4093-9216-D5DA06EDA91D}" = protocol=17 | dir=in | app=c:\users\****\appdata\roaming\spotify\spotify.exe | 
"{9BDD8AE6-2C2A-4280-8FA2-E9D62A5C36DF}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | 
"{9C11C184-9CEA-461C-9648-F3C303742A94}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{9D11CC0E-A8B9-4CDB-B31C-C87166987257}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"{9F0FB929-ED1A-4FC4-86CF-BC906616427D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
"{9F7893DE-0CD3-421F-B39A-7EC69271225C}" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\versions\base24944\sc2.exe | 
"{A00826C4-32D8-4117-9741-CA6D428E3CB8}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe | 
"{A07AAA25-112F-466C-8263-B0AA0BB0ACB3}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
"{A2983C09-30EB-4BC1-AF6D-3678C6FE8CC2}" = protocol=17 | dir=in | app=d:\program files (x86)\league of legends\air\lolclient.exe | 
"{A30CC9D5-0A58-428F-9010-A9F87BB4C632}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm | 
"{A3194540-4BA1-4595-9CAD-632E4CE88E6E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{A3F03201-C19A-48DA-B4CB-B6EB878B512E}" = protocol=17 | dir=in | app=d:\program files (x86)\origin\battlefield 3\bf3.exe | 
"{A51F7F73-A810-4783-AF96-9E8D9A2BED5A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
"{A5E560F3-8A3A-40B5-B65B-FF4617EE89A9}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{A5F5702D-6EC9-4CEF-9780-B7A9BA9995A8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 
"{A70D60E9-02BD-400C-A732-4517F19B089C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\vvvvvv\vvvvvv.exe | 
"{A73EE32F-3BE6-4E9E-A159-A160C39A94FD}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe | 
"{A7A190A5-EA05-46BB-8896-C362B7D19FBC}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{A94D0186-4AFE-401B-B8CA-DDFF17CF0B2C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{AABAC7AE-3692-462F-82E9-C6E1D6030468}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{AD3ED86F-FE73-4EA3-AB13-C7A55F1D1CA5}" = dir=in | app=d:\users\****\documents\the war z\infestation.exe | 
"{AE332661-3686-4540-AF0E-CE940864F9BC}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
"{AF3B3BED-443F-4E1F-A4E6-5C20922C9DCC}" = protocol=6 | dir=in | app=c:\windows\system32\java.exe | 
"{B0193DC4-89A2-4AC3-B80A-CCAAF6BB997F}" = protocol=6 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin | 
"{B2F76A53-54BA-42F0-98B8-C0179940FB0F}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\mp\builds\binaries\bioshock2launcher.exe | 
"{B38188E3-F112-45CF-A5BA-D82692C4086B}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe | 
"{B6C4A5B3-DA17-4CE7-A35C-708FCEE313EB}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe | 
"{B7F547E5-80A0-431E-904D-F0BFF50992D5}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe | 
"{B952B6B5-3E6F-40E8-8E4B-6F2FC36282CA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe | 
"{BB28A449-2652-4418-B591-77931F450BC3}" = protocol=6 | dir=in | app=d:\program files (x86)\league of legends\air\lolclient.exe | 
"{BBD23FCB-A8A7-42B0-8427-D8F0912824BA}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{BBDC94B3-7F65-44E8-B81A-B74820F9EC0D}" = protocol=17 | dir=in | app=d:\program files (x86)\tunngle\tnglctrl.exe | 
"{BC3CA4F3-969C-4825-B690-F0EB3C09E61A}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | 
"{BC685A9A-CBB5-43E0-9077-7CDCD5AA00FC}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe | 
"{C01135BB-6D45-4C55-9CF4-A71428453F19}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{C301BA17-5524-464C-A319-F4AE168B0F66}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe | 
"{C3976FD0-F68D-41EA-BBE2-16DDF7C7F771}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{C506DC0E-AEE1-41F5-A0E0-14A51F02597E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
"{C715B0AA-59E3-45FF-A15B-17389CAF8381}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bit.trip runner\runner.exe | 
"{C76E7470-2592-4D1D-88C3-BC6C5CD8F2FC}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\fc3editor.exe | 
"{CA2FC1A6-18D6-4639-B1BD-D716D8E36B1B}" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\starcraft ii.exe | 
"{CB628CD6-3CAF-41CD-9950-B7892E319483}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"{CBF9DF60-DF34-40B0-B953-3B66B2E7CD16}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe | 
"{CF41EB21-520B-400C-9111-C2402CC43653}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe | 
"{CF551043-258F-48C4-A82A-C169892AA11A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{D0034C3C-F196-4F84-9562-0F42AD315DEC}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe | 
"{D1A32A73-8399-404F-8534-BF7177E2ACB1}" = protocol=6 | dir=in | app=c:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe | 
"{D1F90BD4-6630-4971-A99F-0312C1069C07}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe | 
"{D3E8685F-C49F-40FD-894B-8251CEB1B35D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{D4CF561D-6902-480F-9E42-BE414A51F19A}" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\starcraft ii public test.exe | 
"{D4F891DD-3D64-40CE-B387-14C917FE6797}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\amnesia the dark descent demo\launcher.exe | 
"{D52E42C0-F57B-4485-8222-9437126AB295}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe | 
"{D5649BAD-DDE1-4369-9D05-8570E9915D34}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe | 
"{D5C69F99-CF05-4E74-83F6-CAA74CEA1E52}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | 
"{D5F50D48-D2B2-4079-BAE5-41CE1756A39C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe | 
"{D705B43D-341B-45A7-AD24-63F75D35C032}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\fc3updater.exe | 
"{D95B70CE-FB25-4875-AD92-24AB8550EB50}" = protocol=6 | dir=in | app=d:\program files (x86)\tunngle\tnglctrl.exe | 
"{D9E61BA7-9B15-4F9B-8FC9-D432DBBAF099}" = protocol=17 | dir=in | app=c:\windows\system32\java.exe | 
"{DAFA5EAA-11FF-4D62-82E0-C8F221181D3E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{DC827F76-5101-4BF1-B85C-FD6AC9AD9148}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 
"{DE87C101-490C-4EFF-9AD2-A35AF484A612}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{DFB45410-7AD3-454E-8DFA-518FCBAD3A8E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | 
"{E1816131-4202-478E-9F89-9AD3420C8639}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{E1D3CA43-B1E4-4B0F-A870-E1CBF25697E9}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\limbo\limbo.exe | 
"{E2390D82-54E4-4F4D-95C1-ABF50A85AFE0}" = protocol=17 | dir=in | app=d:\program files (x86)\league of legends\game\league of legends.exe | 
"{E45B5C3B-9BDA-4AA4-8A00-5E262D913160}" = protocol=17 | dir=in | app=d:\program files (x86)\tmnationsforever\tmforever.exe | 
"{E490F70B-34B7-4864-87FB-59AAB6B6436D}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe | 
"{E50AF080-7873-4543-B18B-2E3C02061CE5}" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\versions\base24944\sc2.exe | 
"{E70D8556-5F45-46FA-B40A-1EC9C4C1FA9A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\darkness ii demo\darknessii.exe | 
"{E7A150A7-E63D-4BE3-A0D9-BDF0660EA6BB}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe | 
"{E7F25BDA-2463-47B5-AD9F-A76901F41F12}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe | 
"{E84CBBB1-32BD-4583-A10D-DC49575049F4}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | 
"{E8B10564-690B-43B4-B559-3BD79CA78EDC}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm | 
"{E918D5A3-9740-4A8D-8C60-8D392F9FFAF5}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"{E967F35D-F8FA-420E-9318-E93CF56CFE6E}" = protocol=17 | dir=in | app=d:\program files (x86)\league of legends\game\league of legends.exe | 
"{E9CEB6D9-818D-40E8-97F9-8481B7FA8B35}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe | 
"{EAF413E2-9823-4E85-9601-6C51A59AC465}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe | 
"{ECD6C48C-6FD0-49C1-9DAB-C859931AFAC7}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dayz\dayz.exe | 
"{ED04DCCD-1E07-4537-A319-80B19D6A1EFF}" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"{EDD2A843-EE27-41D6-AFAE-A99792DFABC8}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe | 
"{EF8AB3CA-BF71-4B29-87AD-50365056AE6F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe | 
"{EFCCF060-5E7C-4EF3-9455-E44606068359}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 
"{F00A618A-BFC7-453F-81F9-5B49D403926B}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{F0A1150A-B20B-441B-9C79-05E2DB94F297}" = protocol=17 | dir=in | app=d:\program files (x86)\league of legends\air\lolclient.exe | 
"{F1C3B2D9-30B9-4BC4-9AFB-43775A17E529}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe | 
"{F1F8E6F2-2074-4228-9BA2-C19747B4AEF1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{F2F94A2F-30BA-4058-9320-B9B14E04857C}" = protocol=17 | dir=in | app=d:\program files (x86)\league of legends\lol.launcher.exe | 
"{F3D1A000-0841-48E4-9C36-09C28A607B2E}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe | 
"{F55E5ACF-AC53-48F3-8A52-B0B182D32F2D}" = protocol=17 | dir=in | app=d:\program files (x86)\tunngle\tunngle.exe | 
"{F74AB4E0-9C89-43F2-8055-24716C31429B}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | 
"{FC5C23A8-470A-496B-ACED-A923C4286DB8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | 
"{FEF44961-B4D5-4BAD-B4F3-8A908CFB73D9}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\brawl busters\bin\pbclient.exe | 
"{FF91DF2B-EE73-4CA4-97B0-BB919404CE6C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe | 
"TCP Query User{0A5D2BAA-20E5-43FB-877E-80792F1E675E}C:\users\****\appdata\local\temp\gw2.exe" = protocol=6 | dir=in | app=c:\users\****\appdata\local\temp\gw2.exe | 
"TCP Query User{1DA327BA-7A6A-4CB9-82F0-6AF0BB410D8C}D:\aeriagames\wolfteam-de\wolfteam.bin" = protocol=6 | dir=in | app=d:\aeriagames\wolfteam-de\wolfteam.bin | 
"TCP Query User{1E7497F0-6D93-4D98-A05A-FC97A4C95C7C}C:\users\****\downloads\runes_of_magic_4_0_1_2430_eu_slim.exe" = protocol=6 | dir=in | app=c:\users\****\downloads\runes_of_magic_4_0_1_2430_eu_slim.exe | 
"TCP Query User{1E86D4E6-2D82-4460-ABA3-F148ECB5DEA1}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.exe | 
"TCP Query User{246D2D63-B498-49AE-A786-6E91651FB022}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"TCP Query User{3AAA5B49-8ACA-4EA8-85A6-40106D091481}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe | 
"TCP Query User{3E062769-35F8-478B-BBBC-A1F02B7DDDD3}D:\program files (x86)\steam\steamapps\ironheart12\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\ironheart12\team fortress 2\hl2.exe | 
"TCP Query User{4278C165-22AB-484F-9134-80D2E1DE09C7}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=6 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin | 
"TCP Query User{506A633E-AEDD-4B9C-926A-772ECEA5CD98}D:\brickforce\starcraft ii\versions\base24944\sc2.exe" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\versions\base24944\sc2.exe | 
"TCP Query User{53606F89-A4D6-4665-9D22-3155FA55A71F}C:\program files (x86)\icq7.1\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.1\icq.exe | 
"TCP Query User{5DCDB7AD-3466-484C-9EBD-1C58DCC6F856}D:\program files (x86)\runes of magic\client.exe" = protocol=6 | dir=in | app=d:\program files (x86)\runes of magic\client.exe | 
"TCP Query User{61A68BFA-10CC-40A1-AC31-4644AEA3662B}D:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe | 
"TCP Query User{61D99F25-0637-448A-BA01-89013599A88C}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"TCP Query User{675BB8EF-314D-4F1B-809F-A827A1E024F8}D:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=6 | dir=in | app=d:\programdata\electronic arts\need for speed world\data\nfsw.exe | 
"TCP Query User{70C4C7F1-7C38-430E-A4AD-DB87827449C0}D:\program files (x86)\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\guild wars 2\gw2.exe | 
"TCP Query User{727C20F9-6CF4-4ACC-BE67-A42BB58B48C8}C:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe | 
"TCP Query User{79375FA6-674C-483F-A769-BD09A907EA7E}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe | 
"TCP Query User{816FA36E-F9FE-4947-A197-DE2851EBBB26}D:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe | 
"TCP Query User{85805220-6EC2-4053-BABA-CA70BE36BA75}D:\combat arms\combat arms eu\engine.exe" = protocol=6 | dir=in | app=d:\combat arms\combat arms eu\engine.exe | 
"TCP Query User{883335D7-7BF6-45C7-B485-DE5250281A79}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | 
"TCP Query User{8881CE5E-7D34-4B47-A44C-7235F395F52E}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{8CE1567F-F468-464E-B78D-15F3F3D6DB23}D:\brickforce\starcraft ii\versions\base26490\sc2.exe" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\versions\base26490\sc2.exe | 
"TCP Query User{95DA4E32-CB96-4AEF-B2E7-9B237CEFA09F}C:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe | 
"TCP Query User{970574E5-A31C-4C9A-B81B-24A4724B4124}D:\program files (x86)\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\program files (x86)\tmnationsforever\tmforever.exe | 
"TCP Query User{99E52FD9-868C-41AB-B8E1-F6217284200D}D:\aeriagames\wolfteam-de\wolfteam.bin" = protocol=6 | dir=in | app=d:\aeriagames\wolfteam-de\wolfteam.bin | 
"TCP Query User{B3B4EF43-CBF3-4997-8C97-263275F8A6D6}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | 
"TCP Query User{BB76757F-0684-4F86-BA24-54B58E460F92}C:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | 
"TCP Query User{C7BCAF27-2FB6-4B42-A054-CA65198A7EDC}D:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe | 
"TCP Query User{CB1A6EFB-69CA-4194-BE3E-099C1CAE92A3}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"TCP Query User{DEE08008-52E0-453D-865E-81F784076D00}D:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe | 
"TCP Query User{E011F720-B6E6-459D-92B3-44C739B9B4EC}C:\program files (x86)\windows live\messenger\msnmsgr.exe" = protocol=6 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | 
"TCP Query User{E16B9715-B3A6-41FE-8508-CE1718951658}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | 
"TCP Query User{E2A7B425-0D97-4386-91FE-B273A0CEBF74}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.exe | 
"TCP Query User{E3124C0C-AA5C-42D6-9441-B814C39DC1E7}D:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe | 
"TCP Query User{E4EA5B00-2CB8-49F8-BC94-6893538DB8F7}D:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe | 
"TCP Query User{F1D607FA-2D30-4EC5-9E33-1E08778D27CB}D:\fireflies\firefly studios\stronghold crusader\stronghold crusader.exe" = protocol=6 | dir=in | app=d:\fireflies\firefly studios\stronghold crusader\stronghold crusader.exe | 
"TCP Query User{F49833E7-FAD1-4880-A350-4B59B3385511}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | 
"TCP Query User{FA12C450-AB10-4B30-8539-B0A5B8AAE486}C:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe" = protocol=6 | dir=in | app=c:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe | 
"TCP Query User{FD24D37D-B951-4890-8BF7-508A3EE1288E}C:\users\****\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\****\appdata\roaming\spotify\spotify.exe | 
"TCP Query User{FDE223AC-0F6E-4F2A-AD74-FD5521372996}D:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=6 | dir=in | app=d:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"UDP Query User{00968EA7-9A09-4003-8D7F-3394BF2B9FBA}D:\brickforce\starcraft ii\versions\base24944\sc2.exe" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\versions\base24944\sc2.exe | 
"UDP Query User{0304C51D-D5AB-4321-B363-F5C4BEB0BCA1}D:\fireflies\firefly studios\stronghold crusader\stronghold crusader.exe" = protocol=17 | dir=in | app=d:\fireflies\firefly studios\stronghold crusader\stronghold crusader.exe | 
"UDP Query User{0510D398-0CFD-4BE3-A722-3177F3D84516}C:\users\****\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\****\appdata\roaming\spotify\spotify.exe | 
"UDP Query User{0FA28F84-8D95-434C-B5FF-B33A54005C4B}D:\program files (x86)\steam\steamapps\ironheart12\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\ironheart12\team fortress 2\hl2.exe | 
"UDP Query User{209AC652-9BB8-4FD4-8F44-75B853DF594F}C:\program files (x86)\windows live\messenger\msnmsgr.exe" = protocol=17 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | 
"UDP Query User{20E7F9DE-A26C-4BE3-B77F-657539214C4C}D:\aeriagames\wolfteam-de\wolfteam.bin" = protocol=17 | dir=in | app=d:\aeriagames\wolfteam-de\wolfteam.bin | 
"UDP Query User{21DE1DAF-D048-4221-9B4F-B848514DFDB2}D:\aeriagames\wolfteam-de\wolfteam.bin" = protocol=17 | dir=in | app=d:\aeriagames\wolfteam-de\wolfteam.bin | 
"UDP Query User{2393502F-06F2-4801-98C1-F19F3EA63B6E}D:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\farcry 3\bin\farcry3.exe | 
"UDP Query User{2AA9F8EC-EA64-4AA5-BBAB-F6B50A28826B}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{2BCEAC0A-F276-4FA7-AE75-60ED83866C92}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe | 
"UDP Query User{2DB375BA-43AF-49C9-87D9-4F4D6F4B71C0}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | 
"UDP Query User{35D9901B-69FE-4E4E-8DA5-DFABCACD4412}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.exe | 
"UDP Query User{3F141F49-1D4F-40CB-8343-DB72C549258D}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"UDP Query User{3F80FF88-9D5A-4EC0-9D29-7711D3A7B0D3}D:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe | 
"UDP Query User{481261CD-3D5C-46AA-9CDB-6D3EE95940DE}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
"UDP Query User{4D78E1FA-9E73-4A03-8F89-D842C8109220}D:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=17 | dir=in | app=d:\programdata\electronic arts\need for speed world\data\nfsw.exe | 
"UDP Query User{4EC20AA7-A442-4702-B804-07688B7FE795}D:\program files (x86)\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\program files (x86)\tmnationsforever\tmforever.exe | 
"UDP Query User{4EC84725-04BA-4A61-B4E1-383B8F0A1674}C:\users\****\downloads\runes_of_magic_4_0_1_2430_eu_slim.exe" = protocol=17 | dir=in | app=c:\users\****\downloads\runes_of_magic_4_0_1_2430_eu_slim.exe | 
"UDP Query User{554032D5-87E4-425B-B4F6-211FCE41534B}D:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bioshock 2\sp\builds\binaries\bioshock2.exe | 
"UDP Query User{66618BE3-8A1F-46B4-B0AF-64FB6F274738}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=17 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin | 
"UDP Query User{6876C7EE-BF7D-4319-8936-743E5C68FE80}C:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe | 
"UDP Query User{6E204E68-01D3-41A1-A5B7-C52DD634299F}D:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe | 
"UDP Query User{73618F5D-3826-414E-AD90-5380AE22C8A5}C:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\codemasters\der herr der ringe online\lotroclient.exe | 
"UDP Query User{75FA480C-065B-4451-A582-0D158277EB9F}C:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | 
"UDP Query User{7613163E-52D7-496D-ACEE-F36A3CD3161F}D:\program files (x86)\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\guild wars 2\gw2.exe | 
"UDP Query User{767B9472-1962-4281-9539-4AE62FBBB252}C:\users\****\appdata\local\temp\gw2.exe" = protocol=17 | dir=in | app=c:\users\****\appdata\local\temp\gw2.exe | 
"UDP Query User{97DFF51D-D882-4347-B964-79F4B7F19119}D:\program files (x86)\runes of magic\client.exe" = protocol=17 | dir=in | app=d:\program files (x86)\runes of magic\client.exe | 
"UDP Query User{A5B7B1BE-0F91-4A3B-80D9-0F0496BDD5CB}C:\program files (x86)\icq7.1\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.1\icq.exe | 
"UDP Query User{A983B2F9-8A46-4866-8D1B-969A359E78E5}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe | 
"UDP Query User{AE5653C4-E7C6-40E4-8A8B-A6AA0E817AFF}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"UDP Query User{AEAD279A-BA1E-4096-B30B-C56E5D8776AE}D:\brickforce\starcraft ii\versions\base26490\sc2.exe" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\versions\base26490\sc2.exe | 
"UDP Query User{AECE6598-13B8-4676-AD43-B2BCC0D3EBE5}D:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=17 | dir=in | app=d:\brickforce\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"UDP Query User{BA3CB97C-5B77-494D-8C29-C9843B8A4FAC}C:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe" = protocol=17 | dir=in | app=c:\users\****\appdata\roaming\flyforheroinstaller\flyforheroinstaller.exe | 
"UDP Query User{C3F1F806-3FE5-4B23-BF83-95699D0300D5}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | 
"UDP Query User{C4B883E6-AD3C-401C-9F7F-BC3BD10C1B29}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | 
"UDP Query User{C6FAC6BF-BDA3-4A63-8ACF-3A494D7DEBE0}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | 
"UDP Query User{D44AA35F-94E5-4A91-9B23-F858808C6BFC}D:\combat arms\combat arms eu\engine.exe" = protocol=17 | dir=in | app=d:\combat arms\combat arms eu\engine.exe | 
"UDP Query User{DF8DA700-1F67-4BE4-9106-C46E587F422C}D:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe | 
"UDP Query User{E7449A8E-174E-47E1-960B-41DBB4B956E9}D:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe | 
"UDP Query User{FA8EC17D-4E5C-4D96-B9AB-B451648D2A77}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86416031FF}" = Java(TM) 6 Update 31 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417025FF}" = Java 7 Update 25 (64-bit)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{987FE247-4E69-4A2E-A961-D14F901FDBF6}" = Logitech Webcam Software
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 332.21
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 332.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 332.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.8.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 332.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 10.11.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 10.11.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.19
"{B8AD779A-82DA-4365-A7D0-AD3DCFC55CFF}" = Apple Mobile Device Support
"{CF8FFD12-602B-422D-AF1D-511B411E7632}" = iTunes
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"CCleaner" = CCleaner
"lvdrivers_12.10" = Logitech Webcam Software-Treiberpaket
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver Drive" = Samsung Mobile phone USB driver Drive Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Sylenth1Demo_is1" = Sylenth1 Demo v2.20
"ZDFmediathek_is1" = ZDFmediathek Version 2.1.5
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05B1529B-C423-42AA-B981-4ECA247E9FC0}" = DayZ Commander
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20C3DEAF-801D-4C3E-9826-E62EE16DB7AB}" = phase6_18
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{28999392-5871-4A39-863A-D2A6EA3260AF}" = League of Legends
"{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{32519DF6-0A95-470B-B339-B77C4F920755}" = S4 League_EU
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}" = Smite
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service
"{46BE6D86-7BEF-4DAB-B3E6-7B932D3872F3}_is1" = Dragonica Version TEST
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{52E225FC-FCB4-41F7-837B-6E37FB05BD7B}" = Adobe AIR
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{586509F0-350D-48B5-B763-9CC2F8D96C4C}" = Windows Live Sync
"{5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}" = Battlefield 1942™
"{66B6D13A-9CC1-417D-B6F2-58AA539D1031}" = Nero 7 Essentials
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{7E210E1C-52A1-40E3-817B-D504E9F64DFA}_is1" = Flyff
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Deutsch
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{BC3051A7-1021-4B57-A3DA-AAC24566FAE7}_is1" = Infestation Survivor Stories version 1.0
"{BD11E3C6-065E-40BB-A129-435C4530A159}_is1" = Jewel Master - Cradle Of Rome
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FB0127F3-985B-44CE-AE29-378CAF60B361}" = Need for Speed™ Most Wanted
"{FBCF2ED3-AFB5-475E-BF9A-30BEAD366FBC}" = Sprachtrainer Fonts
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"5513-1208-7298-9440" = JDownloader 0.9
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Akamai" = Akamai NetSession Interface Service
"Armagetron Advanced" = Armagetron Advanced 0.2.8.3.2
"Audacity_is1" = Audacity 2.0.5
"avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Battlelog Web Plugins" = Battlelog Web Plugins
"BattlEye for A2" = BattlEye Uninstall
"BattlEye for OA" = BattlEye for OA Uninstall
"Blobby Volley 2 Version 1.0RC3_is1" = Blobby Volley 2 Version 1.0RC3
"BrickForce" = BrickForce 1.9.87
"ESN Sonar-0.70.4" = ESN Sonar
"FL Studio 11" = FL Studio 11
"FlowStone" = FlowStone FL 3.0
"Fraps" = Fraps
"Google Chrome" = Google Chrome
"Guild Wars 2" = Guild Wars 2
"Hearthstone" = Hearthstone
"IL Download Manager" = IL Download Manager
"IL Shared Libraries" = IL Shared Libraries
"League of Legends_is1" = League of Legends
"Logitech Vid" = Logitech Vid HD
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox 23.0.1 (x86 de)" = Mozilla Firefox 23.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Neffy" = Neffy 1,3,29,0
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"OpenAL" = OpenAL
"Opera 18.0.1284.68" = Opera Stable 18.0.1284.68
"Origin" = Origin
"Pivot Stickfigure Animator_is1" = Pivot Stickfigure Animator version 2.2.6
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PunkBusterSvc" = PunkBuster Services
"StarCraft II" = StarCraft II
"Steam App 105600" = Terraria
"Steam App 113400" = APB Reloaded
"Steam App 17410" = Mirror's Edge
"Steam App 200210" = Realm of the Mad God
"Steam App 204410" = The Darkness II Demo
"Steam App 211420" = Dark Souls: Prepare to Die Edition
"Steam App 211820" = Starbound
"Steam App 218" = Source SDK Base 2007
"Steam App 219540" = ARMA 2: Operation Arrowhead Beta
"Steam App 220" = Half-Life 2
"Steam App 221100" = DayZ
"Steam App 33910" = ARMA 2
"Steam App 33930" = ARMA 2: Operation Arrowhead
"Steam App 340" = Half-Life 2: Lost Coast
"Steam App 4000" = Garry's Mod
"Steam App 42680" = Call of Duty: Modern Warfare 3
"Steam App 42690" = Call of Duty: Modern Warfare 3 - Multiplayer
"Steam App 4540" = Titan Quest
"Steam App 4550" = Titan Quest: Immortal Throne
"Steam App 48000" = LIMBO
"Steam App 550" = Left 4 Dead 2
"Steam App 55230" = Saints Row: The Third
"Steam App 55370" = Saints Row: The Third - Initiation Station
"Steam App 570" = Dota 2
"Steam App 57310" = Amnesia: The Dark Descent Demo 
"Steam App 63710" = BIT.TRIP RUNNER
"Steam App 70300" = VVVVVV
"Steam App 730" = Counter-Strike: Global Offensive
"Steam App 745" = Counter-Strike: Global Offensive - SDK
"Steam App 8850" = BioShock 2
"TmNationsForever_is1" = TmNationsForever
"Tunngle beta_is1" = Tunngle beta
"Uplay" = Uplay
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WolfTeam-DE" = WolfTeam-DE
 
========== HKEY_USERS Uninstall List ==========
 
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"DigitalSite" = Update for Codec Package
"Spotify" = Spotify
"TeamSpeak 3 Client" = TeamSpeak 3 Client
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 05.02.2014 17:33:10 | Computer Name = **** | Source = Steam Client Service | ID = 1
Description = Error: Failed to poke open firewall
 
Error - 05.02.2014 17:40:49 | Computer Name = **** | Source = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe | ID = 131073
Description = 
 
Error - 10.02.2014 12:10:23 | Computer Name = ****| Source = Steam Client Service | ID = 1
Description = Error: Failed to poke open firewall
 
Error - 10.02.2014 12:11:08 | Computer Name = ****| Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NvBackend.exe, Version: 10.11.15.0,
 Zeitstempel: 0x52a6776c  Name des fehlerhaften Moduls: nvspcap.dll_unloaded, Version:
 0.0.0.0, Zeitstempel: 0x52a67618  Ausnahmecode: 0xc0000005  Fehleroffset: 0x100be510
ID
 des fehlerhaften Prozesses: 0x11c  Startzeit der fehlerhaften Anwendung: 0x01cf267a75eaee30
Pfad
 der fehlerhaften Anwendung: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Pfad
 des fehlerhaften Moduls: nvspcap.dll  Berichtskennung: f2c3d610-926d-11e3-8f7a-000000000002
 
Error - 10.02.2014 12:11:27 | Computer Name = **** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NvBackend.exe, Version: 10.11.15.0,
 Zeitstempel: 0x52a6776c  Name des fehlerhaften Moduls: nvspcap.dll_unloaded, Version:
 0.0.0.0, Zeitstempel: 0x52a67618  Ausnahmecode: 0xc0000005  Fehleroffset: 0x100077e2
ID
 des fehlerhaften Prozesses: 0x11c  Startzeit der fehlerhaften Anwendung: 0x01cf267a75eaee30
Pfad
 der fehlerhaften Anwendung: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Pfad
 des fehlerhaften Moduls: nvspcap.dll  Berichtskennung: fe500350-926d-11e3-8f7a-000000000002
 
Error - 10.02.2014 12:41:05 | Computer Name = **** | Source = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe | ID = 131073
Description = 
 
Error - 10.02.2014 12:42:33 | Computer Name = **** | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 10.02.2014 12:42:33 | Computer Name = **** | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 10.02.2014 12:42:33 | Computer Name = **** | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 10.02.2014 12:44:13 | Computer Name = **** | Source = Steam Client Service | ID = 1
Description = Error: Failed to poke open firewall
 
[ Media Center Events ]
Error - 11.01.2013 10:28:36 | Computer Name = **** | Source = MCUpdate | ID = 0
Description = 15:28:33 - Fehler beim Herstellen der Internetverbindung.  15:28:33 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 15.01.2013 10:59:11 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 15:59:11 - Fehler beim Herstellen der Internetverbindung.  15:59:11 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 24.01.2013 08:55:48 | Computer Name = **** | Source = MCUpdate | ID = 0
Description = 13:55:48 - Fehler beim Herstellen der Internetverbindung.  13:55:48 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 25.01.2013 10:24:15 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 15:24:10 - Fehler beim Herstellen der Internetverbindung.  15:24:10 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 31.01.2013 11:00:04 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 16:00:03 - Fehler beim Herstellen der Internetverbindung.  16:00:04 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 21.02.2013 11:15:32 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 16:15:32 - Fehler beim Herstellen der Internetverbindung.  16:15:32 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 21.02.2013 11:18:29 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 16:18:25 - Fehler beim Herstellen der Internetverbindung.  16:18:25 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 26.02.2013 10:23:51 | Computer Name = **** | Source = MCUpdate | ID = 0
Description = 15:23:47 - Fehler beim Herstellen der Internetverbindung.  15:23:47 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 18.03.2013 10:18:21 | Computer Name = ****| Source = MCUpdate | ID = 0
Description = 15:18:21 - Fehler beim Herstellen der Internetverbindung.  15:18:21 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 18.03.2013 10:21:19 | Computer Name = **** | Source = MCUpdate | ID = 0
Description = 15:21:15 - Fehler beim Herstellen der Internetverbindung.  15:21:15 
-     Serververbindung konnte nicht hergestellt werden..  
 
[ System Events ]
Error - 05.02.2014 09:04:23 | Computer Name = ****| Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
 
Error - 05.02.2014 09:04:23 | Computer Name = **** | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
 
Error - 05.02.2014 09:04:24 | Computer Name = **** | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
 
Error - 05.02.2014 10:56:13 | Computer Name = **** | Source = DCOM | ID = 10010
Description = 
 
Error - 05.02.2014 17:33:09 | Computer Name = ****| Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   Lbd
 
Error - 10.02.2014 12:09:44 | Computer Name =**** | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   Lbd
 
Error - 10.02.2014 12:11:16 | Computer Name = ****| Source = Service Control Manager | ID = 7030
Description = Der Dienst "LogMeIn Hamachi Tunneling Engine" ist als interaktiver
 Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive
 Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
 
Error - 10.02.2014 12:30:56 | Computer Name = **** | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?10.?02.?2014 um 17:20:20 unerwartet heruntergefahren.
 
Error - 10.02.2014 12:31:35 | Computer Name = **** | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   Lbd
 
Error - 10.02.2014 12:42:50 | Computer Name = **** | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   Lbd
 
 
< End of report >
         

Alt 10.02.2014, 19:51   #5
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



und zu letzt... (Nachtrag: Defogger habe ich noch nicht verwendet, da ich ja Probleme mit dem Pc starten habe und dieses Programm ,laut der Forum-Definition, ein Restart benötigt;nötigenfalls kann ich dieses Logfile auch noch erstellen)

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-02-10 19:24:34
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-5 WDC_WD5000AAKS-00V1A0 rev.05.01D05 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\****\AppData\Local\Temp\ufdiypow.sys


---- User code sections - GMER 2.1 ----

.text    C:\Windows\system32\wininit.exe[576] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\services.exe[640] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\lsass.exe[656] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                  0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\winlogon.exe[728] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[812] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\nvvsvc.exe[900] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[924] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                            0000000074a3a2ba 1 byte [62]
.text    C:\Windows\System32\svchost.exe[304] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Windows\System32\svchost.exe[392] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[528] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[612] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe[1048] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                              0000000074a3a2ba 1 byte [62]
.text    C:\Windows\system32\svchost.exe[1172] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\System32\spoolsv.exe[1608] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[1660] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe[1892] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                  0000000074a3a2ba 1 byte [62]
.text    C:\Windows\SysWOW64\svchost.exe[1912] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                               0000000074a3a2ba 1 byte [62]
.text    C:\Windows\SysWOW64\svchost.exe[1912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                             0000000076e61465 2 bytes [E6, 76]
.text    C:\Windows\SysWOW64\svchost.exe[1912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                            0000000076e614bb 2 bytes [E6, 76]
.text    ...                                                                                                                                                       * 2
.text    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[1932] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112  0000000074a3a2ba 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1116] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                      0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\nvvsvc.exe[1292] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                0000000076aeeecd 1 byte [62]
.text    D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe[1964] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189                                      0000000076aeeecd 1 byte [62]
.text    C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe[2292] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                    0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe[2324] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                              0000000074a3a2ba 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe[2352] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                     0000000074a3a2ba 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2400] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                              0000000074a3a2ba 1 byte [62]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                                   0000000074651a22 2 bytes [65, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                                   0000000074651ad0 2 bytes [65, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                                   0000000074651b08 2 bytes [65, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                                   0000000074651bba 2 bytes [65, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                                   0000000074651bda 2 bytes [65, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                            0000000076e61465 2 bytes [E6, 76]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[2448] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                           0000000076e614bb 2 bytes [E6, 76]
.text    ...                                                                                                                                                       * 2
.text    C:\Windows\system32\svchost.exe[2508] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\Explorer.EXE[2788] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                       0000000076aeeecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2876] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\conhost.exe[2884] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2920] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                       0000000076aeeecd 1 byte [62]
.text    C:\Windows\System32\rundll32.exe[3104] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                              0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[3496] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                           0000000074a3a2ba 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[3496] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                         0000000076e61465 2 bytes [E6, 76]
.text    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[3496] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                        0000000076e614bb 2 bytes [E6, 76]
.text    ...                                                                                                                                                       * 2
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3680] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                        0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\SearchIndexer.exe[3804] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                         0000000076aeeecd 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[3848] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                       0000000074a3a2ba 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[3848] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                     0000000076e61465 2 bytes [E6, 76]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[3848] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                    0000000076e614bb 2 bytes [E6, 76]
.text    ...                                                                                                                                                       * 2
.text    C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe[3976] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                             0000000074a3a2ba 1 byte [62]
.text    C:\Program Files\Alwil Software\Avast5\AvastUI.exe[4052] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                            0000000074a3a2ba 1 byte [62]
.text    C:\Windows\System32\svchost.exe[5100] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Windows\system32\AUDIODG.EXE[4988] C:\Windows\System32\kernel32.dll!GetBinaryTypeW + 189                                                               0000000076aeeecd 1 byte [62]
.text    C:\Users\****\Downloads\Gmer-19357.exe[4456] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                      0000000074a3a2ba 1 byte [62]

---- Threads - GMER 2.1 ----

Thread   C:\Windows\System32\svchost.exe [5100:3616]                                                                                                               000007feedcb9688

---- Services - GMER 2.1 ----

Service  C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (*** hidden *** )                                                                                     [AUTO] avast! Antivirus                                                                                                                                                                                                                                                                                                <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Type                                                                                                      2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Start                                                                                                     2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@ErrorControl                                                                                              1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DisplayName                                                                                               aswFsBlk
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Group                                                                                                     FSFilter Activity Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DependOnService                                                                                           FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Description                                                                                               Avast! Mini-filter Driver
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Tag                                                                                                       3
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@ImagePath                                                                                                 \??\C:\Windows\system32\drivers\aswFsBlk.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances                                                                                                 
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances@DefaultInstance                                                                                 aswFsBlk Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance                                                                               
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude                                                                      388400
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Flags                                                                         0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk                                                                                                           
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Type                                                                                                     2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Start                                                                                                    2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ErrorControl                                                                                             1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ImagePath                                                                                                \??\C:\Windows\system32\drivers\aswMonFlt.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DisplayName                                                                                              aswMonFlt
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Group                                                                                                    FSFilter Anti-Virus
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DependOnService                                                                                          FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Description                                                                                              avast! mini-filter driver (aswMonFlt)
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances                                                                                                
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances@DefaultInstance                                                                                aswMonFlt Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude                                                                    320700
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Flags                                                                       0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt                                                                                                          
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Type                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Start                                                                                                       1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ErrorControl                                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DisplayName                                                                                                 aswRdr
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Group                                                                                                       PNP_TDI
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DependOnService                                                                                             tcpip?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Description                                                                                                 avast! WFP Redirect driver
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ImagePath                                                                                                   \??\C:\Windows\system32\drivers\aswRdr2.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters                                                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@MSIgnoreLSPDefault                                                                               
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@WSIgnoreLSPDefault                                                                               nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr                                                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Type                                                                                                       1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Start                                                                                                      0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@ErrorControl                                                                                               1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@DisplayName                                                                                                avast! Revert
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Description                                                                                                avast! Revert
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters                                                                                                 
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@BootCounter                                                                                     127
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@TickCounter                                                                                     2014569
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@SystemRoot                                                                                      \Device\Harddisk0\Partition2\Windows
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@ImproperShutdown                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069                                                                                      
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@                                                                                     Commited
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@BootTimeout                                                                          0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@TickTimeout                                                                          0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@CreationTime                                                                         0x90 0xDE 0x01 0x60 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@SetupOperations                                                                      MoveFile("\??\c:\program files\alwil software\avast5\setup\instup.dll.1387461069","\??\c:\program files\alwil software\avast5\setup\instup.dll",TRUE)?MoveFile("\??\c:\program files\alwil software\avast5\setup\instup.dll.sum.1387461069","\??\c:\program files\alwil software\avast5\setup\instup.dll.sum",TRUE)?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@StartBootCounter                                                                     48
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\1387461069@StartTickCounter                                                                     674497
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt                                                                                                            
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Type                                                                                                        2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Start                                                                                                       1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@ErrorControl                                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DisplayName                                                                                                 aswSnx
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Group                                                                                                       FSFilter Virtualization
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DependOnService                                                                                             FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Description                                                                                                 avast! virtualization driver (aswSnx)
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Tag                                                                                                         2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@ImagePath                                                                                                   \??\C:\Windows\system32\drivers\aswSnx.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances                                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances@DefaultInstance                                                                                   aswSnx Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Altitude                                                                          137600
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Flags                                                                             0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters                                                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@ProgramFolder                                                                                    \??\C:\Program Files\Alwil Software\Avast5
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@DataFolder                                                                                       \??\C:\ProgramData\Alwil Software\Avast5
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx                                                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Type                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Start                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@DisplayName                                                                                                  aswSP
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Description                                                                                                  avast! Self Protection
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@ImagePath                                                                                                    \??\C:\Windows\system32\drivers\aswSP.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters                                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFolder                                                                                     \??\C:\Program Files\Alwil Software\Avast5
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@DataFolder                                                                                        \??\C:\ProgramData\Alwil Software\Avast5
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@BehavShield                                                                                       0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFilesFolder                                                                                \??\C:\Program Files
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@GadgetFolder                                                                                      \??\C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@NoWelcomeScreen                                                                                   1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@Enabled                                                                                           1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP                                                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Type                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Start                                                                                                       1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@ErrorControl                                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DisplayName                                                                                                 aswTdi
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Group                                                                                                       PNP_TDI
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DependOnService                                                                                             tcpip?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Description                                                                                                 aswTdi
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Tag                                                                                                         9
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@ImagePath                                                                                                   \??\C:\Windows\system32\drivers\aswTdi.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi                                                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Type                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Start                                                                                                       0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@ErrorControl                                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@DisplayName                                                                                                 avast! VM Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Description                                                                                                 avast! VM Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm\Parameters                                                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm                                                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Type                                                                                              288
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Start                                                                                             2
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ErrorControl                                                                                      1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ImagePath                                                                                         "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DisplayName                                                                                       avast! Antivirus
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Group                                                                                             ShellSvcGroup
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DependOnService                                                                                   aswMonFlt?RpcSS?
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@WOW64                                                                                             1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ObjectName                                                                                        LocalSystem
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Description                                                                                       Verwaltet und implementiert die avast! Antivirus Dienste auf diesem Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus Container sowie die Zeitplan.
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ServiceSidType                                                                                    1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus\Parameters                                                                                        
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus                                                                                                   
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Type                                                                                                          2
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Start                                                                                                         2
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@ErrorControl                                                                                                  1
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DisplayName                                                                                                   aswFsBlk
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Group                                                                                                         FSFilter Activity Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DependOnService                                                                                               FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Description                                                                                                   Avast! Mini-filter Driver
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Tag                                                                                                           3
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@ImagePath                                                                                                     \??\C:\Windows\system32\drivers\aswFsBlk.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances (not active ControlSet)                                                                             
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances@DefaultInstance                                                                                     aswFsBlk Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance (not active ControlSet)                                                           
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude                                                                          388400
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Flags                                                                             0
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Type                                                                                                         2
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Start                                                                                                        2
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ImagePath                                                                                                    \??\C:\Windows\system32\drivers\aswMonFlt.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DisplayName                                                                                                  aswMonFlt
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Group                                                                                                        FSFilter Anti-Virus
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DependOnService                                                                                              FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Description                                                                                                  avast! mini-filter driver (aswMonFlt)
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances (not active ControlSet)                                                                            
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances@DefaultInstance                                                                                    aswMonFlt Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance (not active ControlSet)                                                         
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude                                                                        320700
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Flags                                                                           0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Type                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Start                                                                                                           1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@ErrorControl                                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@DisplayName                                                                                                     aswRdr
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Group                                                                                                           PNP_TDI
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@DependOnService                                                                                                 tcpip?
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Description                                                                                                     avast! WFP Redirect driver
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@ImagePath                                                                                                       \??\C:\Windows\system32\drivers\aswRdr2.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters (not active ControlSet)                                                                              
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@MSIgnoreLSPDefault                                                                                   
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@WSIgnoreLSPDefault                                                                                   nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Type                                                                                                           1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Start                                                                                                          0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@ErrorControl                                                                                                   1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@DisplayName                                                                                                    avast! Revert
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Description                                                                                                    avast! Revert
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters (not active ControlSet)                                                                             
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@BootCounter                                                                                         127
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@TickCounter                                                                                         2014569
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@SystemRoot                                                                                          \Device\Harddisk0\Partition2\Windows
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@ImproperShutdown                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069 (not active ControlSet)                                                                  
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@                                                                                         Commited
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@BootTimeout                                                                              0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@TickTimeout                                                                              0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@CreationTime                                                                             0x90 0xDE 0x01 0x60 ...
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@SetupOperations                                                                          MoveFile("\??\c:\program files\alwil software\avast5\setup\instup.dll.1387461069","\??\c:\program files\alwil software\avast5\setup\instup.dll",TRUE)?MoveFile("\??\c:\program files\alwil software\avast5\setup\instup.dll.sum.1387461069","\??\c:\program files\alwil software\avast5\setup\instup.dll.sum",TRUE)?
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@StartBootCounter                                                                         48
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\1387461069@StartTickCounter                                                                         674497
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Type                                                                                                            2
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Start                                                                                                           1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@ErrorControl                                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@DisplayName                                                                                                     aswSnx
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Group                                                                                                           FSFilter Virtualization
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@DependOnService                                                                                                 FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Description                                                                                                     avast! virtualization driver (aswSnx)
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Tag                                                                                                             2
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@ImagePath                                                                                                       \??\C:\Windows\system32\drivers\aswSnx.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances (not active ControlSet)                                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances@DefaultInstance                                                                                       aswSnx Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance (not active ControlSet)                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Altitude                                                                              137600
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Flags                                                                                 0
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters (not active ControlSet)                                                                              
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@ProgramFolder                                                                                        \??\C:\Program Files\Alwil Software\Avast5
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@DataFolder                                                                                           \??\C:\ProgramData\Alwil Software\Avast5
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Type                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Start                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@ErrorControl                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@DisplayName                                                                                                      aswSP
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Description                                                                                                      avast! Self Protection
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@ImagePath                                                                                                        \??\C:\Windows\system32\drivers\aswSP.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters (not active ControlSet)                                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFolder                                                                                         \??\C:\Program Files\Alwil Software\Avast5
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@DataFolder                                                                                            \??\C:\ProgramData\Alwil Software\Avast5
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@BehavShield                                                                                           0
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFilesFolder                                                                                    \??\C:\Program Files
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@GadgetFolder                                                                                          \??\C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@NoWelcomeScreen                                                                                       1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@Enabled                                                                                               1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Type                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Start                                                                                                           1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@ErrorControl                                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@DisplayName                                                                                                     aswTdi
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Group                                                                                                           PNP_TDI
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@DependOnService                                                                                                 tcpip?
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Description                                                                                                     aswTdi
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Tag                                                                                                             9
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@ImagePath                                                                                                       \??\C:\Windows\system32\drivers\aswTdi.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Type                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Start                                                                                                           0
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@ErrorControl                                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@DisplayName                                                                                                     avast! VM Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Description                                                                                                     avast! VM Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm\Parameters (not active ControlSet)                                                                              
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Type                                                                                                  288
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Start                                                                                                 2
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ErrorControl                                                                                          1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ImagePath                                                                                             "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DisplayName                                                                                           avast! Antivirus
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Group                                                                                                 ShellSvcGroup
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DependOnService                                                                                       aswMonFlt?RpcSS?
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@WOW64                                                                                                 1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ObjectName                                                                                            LocalSystem
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Description                                                                                           Verwaltet und implementiert die avast! Antivirus Dienste auf diesem Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus Container sowie die Zeitplan.
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ServiceSidType                                                                                        1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus\Parameters (not active ControlSet)                                                                    

---- EOF - GMER 2.1 ----
         


Geändert von Swaqtz (10.02.2014 um 20:36 Uhr)

Alt 11.02.2014, 16:48   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
--> Win7:Pc startet erst mit dem"start up repair"-Programm

Alt 11.02.2014, 17:33   #7
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Vielen Dank, dass Sie sich freiwillig Zeit nehmen um mir und anderen ForumUsern bei ihren Problemen mit Viren und anderen Problemen zu helfen ! Großes Lob!
Code:
ATTFilter
ComboFix 14-02-11.01 - **** 11.02.2014  18:05:55.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.3327.1790 [GMT 1:00]
ausgeführt von:: c:\users\****\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\ReadMe.txt
D:\install.exe
c:\windows\TEMP\logishrd\LVPrcInj01.dll . . . . Nicht in der Lage zu löschen
c:\windows\TEMP\logishrd\LVPrcInj02.dll . . . . Nicht in der Lage zu löschen
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-01-11 bis 2014-02-11  ))))))))))))))))))))))))))))))
.
.
2014-02-11 17:21 . 2014-02-11 17:21	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2014-02-11 14:47 . 2014-02-11 14:47	80184	----a-w-	c:\windows\system32\drivers\aswStm.sys
2014-02-11 14:10 . 2014-02-11 14:10	108968	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2014-02-11 13:38 . 2014-02-11 15:17	--------	d-----w-	c:\windows\ERUNT
2014-02-11 12:25 . 2014-02-11 12:25	--------	d-----w-	c:\users\****\AppData\Roaming\Malwarebytes
2014-02-11 12:25 . 2014-02-11 12:25	--------	d-----w-	c:\programdata\Malwarebytes
2014-02-11 12:25 . 2013-04-04 13:50	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-02-11 12:11 . 2013-12-16 00:54	10315576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7F9E0AA-C5C7-4843-A820-FB4084011714}\mpengine.dll
2014-02-05 13:09 . 2014-02-05 13:09	--------	d-----w-	c:\program files (x86)\musik projekt 1+
2014-02-04 14:51 . 2014-02-05 21:30	--------	d-----w-	c:\program files (x86)\Realspawn productions
2014-02-01 07:49 . 2013-12-05 08:42	39200	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2014-02-01 07:49 . 2013-12-05 08:42	32544	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2014-01-29 13:19 . 2014-01-29 13:19	--------	d-----w-	c:\windows\Migration
2014-01-26 16:45 . 2014-01-26 16:45	--------	d-----w-	c:\users\***\AppData\Local\Blizzard
2014-01-26 14:11 . 2014-01-26 16:45	--------	d-----w-	c:\program files (x86)\Hearthstone
2014-01-26 14:06 . 2014-01-26 14:06	--------	d-----w-	c:\users\****\AppData\Local\Blizzard Entertainment
2014-01-26 14:06 . 2014-01-30 20:11	--------	d-----w-	c:\users\****\AppData\Local\Battle.net
2014-01-26 14:06 . 2014-01-26 14:11	--------	d-----w-	c:\users\****\AppData\Roaming\Battle.net
2014-01-26 14:05 . 2014-01-26 14:06	--------	d-----w-	c:\program files (x86)\Battle.net
2014-01-15 13:07 . 2013-11-27 01:41	343040	----a-w-	c:\windows\system32\drivers\usbhub.sys
2014-01-15 13:07 . 2013-11-27 01:41	99840	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2014-01-15 13:07 . 2013-11-27 01:41	53248	----a-w-	c:\windows\system32\drivers\usbehci.sys
2014-01-15 13:07 . 2013-11-27 01:41	325120	----a-w-	c:\windows\system32\drivers\usbport.sys
2014-01-15 13:07 . 2013-11-27 01:41	25600	----a-w-	c:\windows\system32\drivers\usbohci.sys
2014-01-15 13:07 . 2013-11-27 01:41	30720	----a-w-	c:\windows\system32\drivers\usbuhci.sys
2014-01-15 13:07 . 2013-11-27 01:41	7808	----a-w-	c:\windows\system32\drivers\usbd.sys
2014-01-15 13:07 . 2013-11-26 10:32	3156480	----a-w-	c:\windows\system32\win32k.sys
2014-01-15 13:07 . 2013-11-26 11:40	376768	----a-w-	c:\windows\system32\drivers\netio.sys
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-11 14:47 . 2013-06-09 11:22	207904	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2014-02-11 14:47 . 2011-12-11 18:56	1038072	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2014-02-11 14:47 . 2011-02-11 11:26	334136	----a-w-	c:\windows\system32\aswBoot.exe
2014-02-11 14:47 . 2010-12-18 13:36	421704	----a-w-	c:\windows\system32\drivers\aswSP.sys
2014-02-11 14:47 . 2010-12-18 13:36	78648	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2014-02-11 14:47 . 2010-12-18 13:36	43152	----a-w-	c:\windows\avastSS.scr
2014-02-10 16:40 . 2012-10-27 21:42	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-02-10 16:40 . 2011-05-13 12:07	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-15 21:48 . 2009-12-29 10:32	86054176	----a-w-	c:\windows\system32\MRT.exe
2013-12-31 16:35 . 2013-12-31 16:35	466456	----a-w-	c:\windows\system32\wrap_oal.dll
2013-12-31 16:35 . 2013-12-31 16:35	444952	----a-w-	c:\windows\SysWow64\wrap_oal.dll
2013-12-31 16:35 . 2013-12-31 16:35	122904	----a-w-	c:\windows\system32\OpenAL32.dll
2013-12-31 16:35 . 2013-12-31 16:35	109080	----a-w-	c:\windows\SysWow64\OpenAL32.dll
2013-12-19 20:33 . 2013-05-24 14:46	2698272	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-12-19 20:33 . 2013-02-25 22:32	15230352	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-12-19 20:33 . 2013-02-25 22:32	3071656	----a-w-	c:\windows\system32\nvapi64.dll
2013-12-19 18:53 . 2011-01-07 19:50	6671648	----a-w-	c:\windows\system32\nvcpl.dll
2013-12-19 18:53 . 2011-01-07 19:49	3490080	----a-w-	c:\windows\system32\nvsvc64.dll
2013-12-19 18:53 . 2011-01-07 19:49	386336	----a-w-	c:\windows\system32\nvmctray.dll
2013-12-19 18:53 . 2011-01-07 19:49	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2013-12-19 18:53 . 2011-01-07 19:49	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-12-19 18:53 . 2011-01-07 19:49	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2013-12-19 17:54 . 2012-09-23 13:13	291128	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2013-12-19 17:54 . 2012-09-23 13:11	291128	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2013-12-19 17:32 . 2012-09-23 13:11	291128	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2013-12-19 11:20 . 2013-12-19 11:20	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-12-18 05:13 . 2009-12-29 10:32	270496	------w-	c:\windows\system32\MpSigStub.exe
2013-12-11 13:18 . 2013-12-11 13:18	940032	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-12-11 13:18 . 2013-12-11 13:18	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-12-11 13:18 . 2013-12-11 13:18	942592	----a-w-	c:\windows\system32\jsIntl.dll
2013-12-11 13:18 . 2013-12-11 13:18	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-12-11 13:18 . 2013-12-11 13:18	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2013-12-11 13:18 . 2013-12-11 13:18	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-12-11 13:18 . 2013-12-11 13:18	84992	----a-w-	c:\windows\system32\mshtmled.dll
2013-12-11 13:18 . 2013-12-11 13:18	81408	----a-w-	c:\windows\system32\icardie.dll
2013-12-11 13:18 . 2013-12-11 13:18	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-12-11 13:18 . 2013-12-11 13:18	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-11 13:18 . 2013-12-11 13:18	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-11 13:18 . 2013-12-11 13:18	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2013-12-11 13:18 . 2013-12-11 13:18	626176	----a-w-	c:\windows\system32\msfeeds.dll
2013-12-11 13:18 . 2013-12-11 13:18	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-12-11 13:18 . 2013-12-11 13:18	61952	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2013-12-11 13:18 . 2013-12-11 13:18	61952	----a-w-	c:\windows\SysWow64\iesetup.dll
2013-12-11 13:18 . 2013-12-11 13:18	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2013-12-11 13:18 . 2013-12-11 13:18	548352	----a-w-	c:\windows\system32\vbscript.dll
2013-12-11 13:18 . 2013-12-11 13:18	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-12-11 13:18 . 2013-12-11 13:18	51200	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2013-12-11 13:18 . 2013-12-11 13:18	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-12-11 13:18 . 2013-12-11 13:18	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-12-11 13:18 . 2013-12-11 13:18	454656	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-12-11 13:18 . 2013-12-11 13:18	453120	----a-w-	c:\windows\system32\dxtmsft.dll
2013-12-11 13:18 . 2013-12-11 13:18	413696	----a-w-	c:\windows\system32\html.iec
2013-12-11 13:18 . 2013-12-11 13:18	40448	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-11 13:18 . 2013-12-11 13:18	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-12-11 13:18 . 2013-12-11 13:18	34816	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-11 13:18 . 2013-12-11 13:18	337408	----a-w-	c:\windows\SysWow64\html.iec
2013-12-11 13:18 . 2013-12-11 13:18	30208	----a-w-	c:\windows\system32\licmgr10.dll
2013-12-11 13:18 . 2013-12-11 13:18	296960	----a-w-	c:\windows\system32\dxtrans.dll
2013-12-11 13:18 . 2013-12-11 13:18	263376	----a-w-	c:\windows\system32\iedkcs32.dll
2013-12-11 13:18 . 2013-12-11 13:18	247808	----a-w-	c:\windows\system32\msls31.dll
2013-12-11 13:18 . 2013-12-11 13:18	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-12-11 13:18 . 2013-12-11 13:18	243200	----a-w-	c:\windows\system32\webcheck.dll
2013-12-11 13:18 . 2013-12-11 13:18	235520	----a-w-	c:\windows\system32\url.dll
2013-12-11 13:18 . 2013-12-11 13:18	235008	----a-w-	c:\windows\system32\elshyph.dll
2013-12-11 13:18 . 2013-12-11 13:18	195584	----a-w-	c:\windows\system32\msrating.dll
2013-12-11 13:18 . 2013-12-11 13:18	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2013-12-11 13:18 . 2013-12-11 13:18	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-12-11 13:18 . 2013-12-11 13:18	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-12-11 13:18 . 2013-12-11 13:18	143872	----a-w-	c:\windows\system32\wextract.exe
2013-12-11 13:18 . 2013-12-11 13:18	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2013-12-11 13:18 . 2013-12-11 13:18	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2013-12-11 13:18 . 2013-12-11 13:18	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2013-12-11 13:18 . 2013-12-11 13:18	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-12-11 13:18 . 2013-12-11 13:18	1228800	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-12-11 13:18 . 2013-12-11 13:18	112128	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-12-11 13:18 . 2013-12-11 13:18	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-12-11 13:18 . 2013-12-11 13:18	105984	----a-w-	c:\windows\system32\iesysprep.dll
2013-12-11 13:18 . 2013-12-11 13:18	1051136	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-12-11 13:18 . 2013-12-11 13:18	101376	----a-w-	c:\windows\system32\inseng.dll
2013-12-11 13:17 . 2013-12-11 13:17	83968	----a-w-	c:\windows\system32\MshtmlDac.dll
2013-12-11 13:17 . 2013-12-11 13:17	774144	----a-w-	c:\windows\system32\jscript.dll
2013-12-11 13:17 . 2013-12-11 13:17	62464	----a-w-	c:\windows\system32\pngfilt.dll
2013-12-11 13:17 . 2013-12-11 13:17	48128	----a-w-	c:\windows\system32\imgutil.dll
2013-12-11 13:17 . 2013-12-11 13:17	147968	----a-w-	c:\windows\system32\occache.dll
2013-12-11 13:17 . 2013-12-11 13:17	13824	----a-w-	c:\windows\system32\mshta.exe
2013-12-11 13:17 . 2013-12-11 13:17	135680	----a-w-	c:\windows\system32\iepeers.dll
2013-12-10 02:13 . 2013-11-15 21:44	982232	----a-w-	c:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13 . 2013-11-15 21:44	1100248	----a-w-	c:\windows\system32\nvspcap64.dll
2013-12-05 08:42 . 2013-11-15 21:39	35104	----a-w-	c:\windows\system32\nvaudcap64v.dll
2013-11-26 11:54 . 2013-12-12 21:21	23183360	----a-w-	c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-12 21:21	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-12 21:21	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-12 21:21	66048	----a-w-	c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-12 21:21	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-12 21:21	2764288	----a-w-	c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-12 21:21	53760	----a-w-	c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-12 21:21	33792	----a-w-	c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-12 21:21	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-12 21:21	574976	----a-w-	c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-12 21:21	139264	----a-w-	c:\windows\system32\ieUnatt.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="d:\program files (x86)\Steam\steam.exe" [2014-01-27 1815976]
"Spotify Web Helper"="c:\users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-12-06 1168896]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"AvastUI.exe"="c:\program files\Alwil Software\Avast5\AvastUI.exe" [2014-02-11 3767096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys;c:\windows\SYSNATIVE\DRIVERS\Lbd.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 dump_wmimmc;dump_wmimmc;d:\aeriagames\WolfTeam-DE\GameGuard\dump_wmimmc.sys;d:\aeriagames\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys;c:\windows\SYSNATIVE\DRIVERS\lvpopf64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;Logitech Webcam 200(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TunngleService;TunngleService;d:\program files (x86)\Tunngle\TnglCtrl.exe;d:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 wolf;wolf;d:\aeriagames\WolfTeam-DE\avital\wolf64.sys;d:\aeriagames\WolfTeam-DE\avital\wolf64.sys [x]
R3 X6va003;X6va003;c:\users\****\AppData\Local\Temp\003407.tmp;c:\users\****\AppData\Local\Temp\003407.tmp [x]
R3 X6va005;X6va005;c:\users\****\AppData\Local\Temp\005BF68.tmp;c:\users\****\AppData\Local\Temp\005BF68.tmp [x]
R3 X6va008;X6va008;c:\windows\SysWOW64\Drivers\X6va008;c:\windows\SysWOW64\Drivers\X6va008 [x]
R3 X6va011;X6va011;c:\windows\SysWOW64\Drivers\X6va011;c:\windows\SysWOW64\Drivers\X6va011 [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys;c:\windows\SYSNATIVE\drivers\acedrv11.sys [x]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;d:\program files (x86)\Hi-Rez Studios\HiPatchService.exe;d:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [x]
S2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [x]
S2 MBAMScheduler;MBAMScheduler;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys;c:\windows\SYSNATIVE\DRIVERS\LVPr2M64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai	REG_MULTI_SZ   	Akamai
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-11 12:42	1211720	----a-w-	c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-02-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-27 16:40]
.
2014-02-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-20 18:59]
.
2014-02-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-20 18:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-02-11 14:47	287280	----a-w-	c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: An OneNote s&enden - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/firefox
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-DigitalSite - c:\users\****\AppData\Roaming\DIGITA~1\UpdateProc\UpdateTask.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va003]
"ImagePath"="\??\c:\users\****\AppData\Local\Temp\003407.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va005]
"ImagePath"="\??\c:\users\****\AppData\Local\Temp\005BF68.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va008]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va008"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va011]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va011"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Classes\CLSID]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:86,21,ee,da,de,e4,9f,61,a9,08,0e,8d,78,4b,5d,25,1e,c7,81,64,de,2e,59,
   8b,f6,74,81,37,e9,59,4b,bf,fa,f8,f8,9e,26,52,cc,74,a5,e3,eb,e5,1b,07,44,2b,\
"??"=hex:6d,1e,4b,f7,8a,7e,4f,c1,e8,6f,94,ea,c6,0b,5c,fb
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000\Software\SecuROM\License information*]
@Allowed: (Read) (RestrictedCode)
"datasecu"=hex:ff,f0,01,94,2a,06,63,f8,ab,cf,7a,5d,b7,3c,c8,10,ae,c5,6b,96,65,
   26,ce,9c,6c,42,1d,b5,e1,16,33,fb,65,3d,05,1b,33,87,4b,f5,28,39,33,4b,85,d4,\
"rkeysecu"=hex:46,bb,43,e1,97,38,b7,01,02,d1,9f,76,5d,d2,a1,9e
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.1_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.1_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.4.2"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.5.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_26"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_27"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_28"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_29"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_30"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_31"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_32"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_33"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_34"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_35"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_36"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_37"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_38"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_39"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_40"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_41"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_42"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_43"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_44"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_45"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_46"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_47"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_48"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_49"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_50"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0_51"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.6.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_01"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_02"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_03"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_04"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_05"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_06"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_07"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_08"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_09"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_10"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_11"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_12"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_13"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_14"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_15"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_16"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_17"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_18"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_19"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_20"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_21"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_22"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_23"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_24"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_25"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0"
.
[HKEY_USERS\S-1-5-21-3188514930-1841695624-1999835867-1000_Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.0_02"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10a.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10a.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10a.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10a.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10a.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10a.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
d:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-02-11  18:29:36 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-02-11 17:29
.
Vor Suchlauf: 13 Verzeichnis(se), 20.012.347.392 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 21.404.782.592 Bytes frei
.
- - End Of File - - 0C93C95D5D996C1CA173800E16BDAD1C
A36C5E4F47E84449FF07ED3517B43A31
         

Alt 12.02.2014, 16:46   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 12.02.2014, 19:38   #9
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.11.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
**** :: ROBIN [Administrator]

Schutz: Aktiviert

12.02.2014 19:27:15
mbam-log-2014-02-11 (13-27-15).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 247836
Laufzeit: 7 Minute(n), 7 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Daten: {547F88F5-E536-43EF-B299-8A5ED9CB98F4} -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Program Files (x86)\Mozilla Firefox\Neuz.exe (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Code:
ATTFilter
# AdwCleaner v3.018 - Bericht erstellt am 12/02/2014 um 20:10:59
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : **** - ROBIN
# Gestartet von : C:\Users\****\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\OCS

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v27.0 (en-US)

[ Datei : C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\prefs.js ]


[ Datei : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\tvuf66da.default\prefs.js ]


-\\ Google Chrome v32.0.1700.107

[ Datei : C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1115 octets] - [12/02/2014 20:09:20]
AdwCleaner[S0].txt - [991 octets] - [12/02/2014 20:10:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1050 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 7 Home Premium x64
Ran by **** on 12.02.2014 at 20:18:16,35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.02.2014 at 20:27:43,75
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-02-2014 01
Ran by **** (administrator) on ROBIN on 12-02-2014 20:29:45
Running from C:\Users\****\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3767096 2014-02-11] (AVAST Software)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Run: [Steam] - D:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Run: [Spotify Web Helper] - C:\Users\****\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-06] (Spotify Ltd)
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3188514930-1841695624-1999835867-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF09B0C6E3F5DCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
URLSearchHook: HKCU - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/firefox
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-16.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-17.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-18.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-19.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-20.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-21.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-22.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-23.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-24.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-25.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-26.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-27.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-28.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-29.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\icqplugin-30.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\ixquickde-https.xml
FF SearchPlugin: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Heroes Updater - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\battlefieldheroespatcher@ea.com [2012-11-30]
FF Extension: No Name - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}-trash [2010-03-24]
FF Extension: PageTweak - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{15312e9a-4905-48da-aae4-15b24bdc2a24}.xpi [2012-02-08]
FF Extension: Adblock Plus - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\3bb5lk75.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-08-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-12-11]
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR HomePage: hxxp://google.de/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Adblock Plus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-11]
CHR Extension: (Google Wallet) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-20]

==================== Services (Whitelisted) =================

R2 Akamai; c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-02-11] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2013-10-25] (Hi-Rez Studios)
R2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4868640 2013-08-25] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-02] ()
S3 TunngleService; D:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-11] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-11] ()
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20568 2010-05-25] (Devguru Co., Ltd)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-04] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-02-22] (Anchorfree Inc.)
S3 wolf; D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [82472 2013-07-24] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 dump_wmimmc; \??\D:\AeriaGames\WolfTeam-DE\GameGuard\dump_wmimmc.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 X6va003; \??\C:\Users\****\AppData\Local\Temp\003407.tmp [X]
S3 X6va005; \??\C:\Users\****\AppData\Local\Temp\005BF68.tmp [X]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-12 20:29 - 2014-02-12 20:30 - 00022451 _____ () C:\Users\****\Desktop\FRST.txt
2014-02-12 20:28 - 2014-02-12 20:29 - 00000000 ____D () C:\FRST
2014-02-12 20:27 - 2014-02-12 20:27 - 00000626 _____ () C:\Users\****\Desktop\JRT.txt
2014-02-12 20:18 - 2014-02-12 20:17 - 02151424 _____ (Farbar) C:\Users\****\Desktop\FRST64.exe
2014-02-12 20:17 - 2014-02-12 20:16 - 01037530 _____ (Thisisu) C:\Users\****\Desktop\JRT.exe
2014-02-12 20:15 - 2014-02-12 20:17 - 02151424 _____ (Farbar) C:\Users\****\Downloads\FRST64.exe
2014-02-12 20:15 - 2014-02-12 20:16 - 01037530 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-02-12 20:13 - 2014-02-12 20:13 - 00001124 _____ () C:\Users\****\Desktop\AdwCleaner[S0].txt
2014-02-12 20:09 - 2014-02-12 20:11 - 00000000 ____D () C:\AdwCleaner
2014-02-12 20:08 - 2014-02-12 20:08 - 01166132 _____ () C:\Users\****\Downloads\adwcleaner.exe
2014-02-11 18:29 - 2014-02-11 18:29 - 00118118 _____ () C:\ComboFix.txt
2014-02-11 17:59 - 2014-02-11 18:29 - 00000000 ____D () C:\Qoobox
2014-02-11 17:59 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-11 17:59 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-11 17:59 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-11 17:59 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-11 17:59 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-11 17:59 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-11 17:59 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-11 17:59 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-11 17:58 - 2014-02-11 18:28 - 00000000 ____D () C:\Windows\erdnt
2014-02-11 16:17 - 2014-02-11 16:17 - 00001883 _____ () C:\DelFix.txt
2014-02-11 15:47 - 2014-02-11 15:47 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-11 15:16 - 2014-02-11 15:16 - 01769680 _____ () C:\Users\****\Downloads\wrar501.exe
2014-02-11 15:14 - 2014-02-11 15:14 - 00000812 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-11 15:12 - 2014-02-11 15:13 - 24656704 _____ (Mozilla) C:\Users\****\Downloads\Firefox Setup 27.0.exe
2014-02-11 15:10 - 2014-02-11 15:10 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-02-11 15:07 - 2014-02-11 15:08 - 30796712 _____ (Oracle Corporation) C:\Users\****\Downloads\jre-7u51-windows-x64.exe
2014-02-11 15:03 - 2014-02-11 15:05 - 35581992 _____ (Opera Software ASA) C:\Users\****\Downloads\Opera_19.0.1326.59_Setup.exe
2014-02-11 15:01 - 2014-02-11 15:02 - 18126032 _____ (Adobe Systems Inc.) C:\Users\****\Downloads\AdobeAIRInstaller.exe
2014-02-11 14:38 - 2014-02-11 16:17 - 00000000 ____D () C:\Windows\ERUNT
2014-02-11 13:25 - 2014-02-11 13:25 - 00000000 ____D () C:\Users\****\AppData\Roaming\Malwarebytes
2014-02-11 13:25 - 2014-02-11 13:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-11 13:25 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-10 20:02 - 2014-02-10 20:02 - 00614792 _____ (Chip Digital GmbH) C:\Users\****\Downloads\7 Zip 64 Bit - CHIP-Downloader.exe
2014-02-10 19:10 - 2014-02-10 19:10 - 00380416 _____ () C:\Users\****\Downloads\Gmer-19357.exe
2014-02-10 18:12 - 2014-02-10 18:13 - 10852352 _____ () C:\Users\****\Downloads\dban-2.2.6_i586.iso
2014-02-05 14:09 - 2014-02-05 14:09 - 00000000 ____D () C:\Program Files (x86)\musik projekt 1+
2014-02-04 16:08 - 2014-02-04 16:36 - 461345002 _____ () C:\Users\****\Downloads\The_Train.zip
2014-02-04 15:51 - 2014-02-05 22:30 - 00000000 ____D () C:\Program Files (x86)\Realspawn productions
2014-02-04 15:48 - 2014-02-04 15:49 - 18309502 _____ () C:\Users\****\Downloads\Ghostbusters3D.zip
2014-02-04 15:45 - 2014-02-04 15:51 - 113753846 _____ () C:\Users\****\Downloads\OneLateNight_x86.zip
2014-02-01 09:08 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-01 09:08 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-01 09:08 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-01 08:49 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-01 08:49 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-01-29 19:30 - 2014-01-29 19:30 - 00614784 _____ (Chip Digital GmbH) C:\Users\****\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-26 17:45 - 2014-01-26 17:45 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard
2014-01-26 15:11 - 2014-01-26 17:45 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-26 15:11 - 2014-01-26 15:11 - 00001161 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-26 15:06 - 2014-01-30 21:11 - 00000000 ____D () C:\Users\****\AppData\Local\Battle.net
2014-01-26 15:06 - 2014-01-26 15:11 - 00000000 ____D () C:\Users\****\AppData\Roaming\Battle.net
2014-01-26 15:06 - 2014-01-26 15:06 - 00001150 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-01-26 15:06 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard Entertainment
2014-01-26 15:05 - 2014-01-26 15:06 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-01-26 15:03 - 2014-01-26 15:03 - 05971128 _____ (Blizzard Entertainment) C:\Users\****\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-15 14:07 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 14:07 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 14:07 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 14:07 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

2014-02-12 20:30 - 2014-02-12 20:29 - 00022451 _____ () C:\Users\****\Desktop\FRST.txt
2014-02-12 20:29 - 2014-02-12 20:28 - 00000000 ____D () C:\FRST
2014-02-12 20:27 - 2014-02-12 20:27 - 00000626 _____ () C:\Users\****\Desktop\JRT.txt
2014-02-12 20:20 - 2009-07-14 05:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-12 20:20 - 2009-07-14 05:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-12 20:18 - 2009-12-29 11:22 - 01357505 _____ () C:\Windows\WindowsUpdate.log
2014-02-12 20:17 - 2014-02-12 20:18 - 02151424 _____ (Farbar) C:\Users\****\Desktop\FRST64.exe
2014-02-12 20:17 - 2014-02-12 20:15 - 02151424 _____ (Farbar) C:\Users\****\Downloads\FRST64.exe
2014-02-12 20:16 - 2014-02-12 20:17 - 01037530 _____ (Thisisu) C:\Users\****\Desktop\JRT.exe
2014-02-12 20:16 - 2014-02-12 20:15 - 01037530 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-02-12 20:13 - 2014-02-12 20:13 - 00001124 _____ () C:\Users\****\Desktop\AdwCleaner[S0].txt
2014-02-12 20:12 - 2013-11-17 12:30 - 00357428 _____ () C:\Windows\PFRO.log
2014-02-12 20:12 - 2013-11-17 12:30 - 00049426 _____ () C:\Windows\setupact.log
2014-02-12 20:12 - 2011-03-08 15:37 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-12 20:12 - 2010-01-20 19:59 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-12 20:12 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-12 20:11 - 2014-02-12 20:09 - 00000000 ____D () C:\AdwCleaner
2014-02-12 20:08 - 2014-02-12 20:08 - 01166132 _____ () C:\Users\****\Downloads\adwcleaner.exe
2014-02-12 19:56 - 2012-09-25 14:40 - 00004184 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-11 20:40 - 2013-03-09 10:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-11 20:40 - 2010-01-20 19:59 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-11 18:29 - 2014-02-11 18:29 - 00118118 _____ () C:\ComboFix.txt
2014-02-11 18:29 - 2014-02-11 17:59 - 00000000 ____D () C:\Qoobox
2014-02-11 18:29 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-11 18:28 - 2014-02-11 17:58 - 00000000 ____D () C:\Windows\erdnt
2014-02-11 18:24 - 2009-07-14 03:34 - 00000213 _____ () C:\Windows\system.ini
2014-02-11 17:59 - 2011-11-23 16:31 - 00000000 ____D () C:\Users\****\AppData\Roaming\TS3Client
2014-02-11 16:17 - 2014-02-11 16:17 - 00001883 _____ () C:\DelFix.txt
2014-02-11 16:17 - 2014-02-11 14:38 - 00000000 ____D () C:\Windows\ERUNT
2014-02-11 15:54 - 2012-05-02 18:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-11 15:48 - 2013-12-10 17:53 - 00001977 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-11 15:47 - 2014-02-11 15:47 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-02-11 15:47 - 2013-06-09 12:22 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-02-11 15:47 - 2011-12-11 19:56 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-11 15:47 - 2011-02-11 12:26 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-11 15:47 - 2010-12-18 14:36 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-02-11 15:47 - 2010-12-18 14:36 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-11 15:47 - 2010-12-18 14:36 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-02-11 15:35 - 2009-12-29 18:46 - 00000000 ____D () C:\Users\****\AppData\Local\Mozilla
2014-02-11 15:17 - 2010-04-22 13:37 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-11 15:17 - 2010-04-22 13:37 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-02-11 15:16 - 2014-02-11 15:16 - 01769680 _____ () C:\Users\****\Downloads\wrar501.exe
2014-02-11 15:14 - 2014-02-11 15:14 - 00000812 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-11 15:14 - 2013-08-26 14:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-11 15:13 - 2014-02-11 15:12 - 24656704 _____ (Mozilla) C:\Users\****\Downloads\Firefox Setup 27.0.exe
2014-02-11 15:10 - 2014-02-11 15:10 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-02-11 15:10 - 2012-04-28 22:17 - 00000000 ____D () C:\Program Files\Java
2014-02-11 15:08 - 2014-02-11 15:07 - 30796712 _____ (Oracle Corporation) C:\Users\****\Downloads\jre-7u51-windows-x64.exe
2014-02-11 15:06 - 2013-12-22 13:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-02-11 15:05 - 2014-02-11 15:03 - 35581992 _____ (Opera Software ASA) C:\Users\****\Downloads\Opera_19.0.1326.59_Setup.exe
2014-02-11 15:02 - 2014-02-11 15:01 - 18126032 _____ (Adobe Systems Inc.) C:\Users\****\Downloads\AdobeAIRInstaller.exe
2014-02-11 13:42 - 2013-04-28 20:34 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-11 13:25 - 2014-02-11 13:25 - 00000000 ____D () C:\Users\****\AppData\Roaming\Malwarebytes
2014-02-11 13:25 - 2014-02-11 13:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-10 20:02 - 2014-02-10 20:02 - 00614792 _____ (Chip Digital GmbH) C:\Users\Elster\Downloads\7 Zip 64 Bit - CHIP-Downloader.exe
2014-02-10 19:10 - 2014-02-10 19:10 - 00380416 _____ () C:\Users\****\Downloads\Gmer-19357.exe
2014-02-10 18:13 - 2014-02-10 18:12 - 10852352 _____ () C:\Users\****\Downloads\dban-2.2.6_i586.iso
2014-02-10 17:40 - 2013-03-09 10:30 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-10 17:40 - 2012-10-27 22:42 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-10 17:40 - 2011-05-13 13:07 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-10 17:08 - 2009-12-29 11:22 - 00000000 ____D () C:\Users\****
2014-02-10 17:06 - 2013-11-20 18:46 - 00000000 ____D () C:\Users\****\AppData\Roaming\Audacity
2014-02-10 17:06 - 2010-09-16 18:34 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-10 17:06 - 2009-12-29 17:04 - 00000000 ____D () C:\Users\Gast
2014-02-10 17:06 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-02-10 17:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-05 22:30 - 2014-02-04 15:51 - 00000000 ____D () C:\Program Files (x86)\Realspawn productions
2014-02-05 22:30 - 2009-07-14 19:18 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-05 21:44 - 2010-09-16 18:34 - 00000000 ____D () C:\Users\****\AppData\Local\PMB Files
2014-02-05 14:09 - 2014-02-05 14:09 - 00000000 ____D () C:\Program Files (x86)\musik projekt 1+
2014-02-04 16:36 - 2014-02-04 16:08 - 461345002 _____ () C:\Users\****\Downloads\The_Train.zip
2014-02-04 15:51 - 2014-02-04 15:45 - 113753846 _____ () C:\Users\****\Downloads\OneLateNight_x86.zip
2014-02-04 15:49 - 2014-02-04 15:48 - 18309502 _____ () C:\Users\****\Downloads\Ghostbusters3D.zip
2014-02-01 09:11 - 2011-03-08 15:38 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-01-31 23:24 - 2013-11-29 22:04 - 00107684 _____ () C:\Windows\DirectX.log
2014-01-30 21:11 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Battle.net
2014-01-29 20:08 - 2013-05-23 16:44 - 00000000 ____D () C:\Users\****\AppData\Roaming\.minecraft
2014-01-29 19:30 - 2014-01-29 19:30 - 00614784 _____ (Chip Digital GmbH) C:\Users\****\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-29 14:22 - 2009-07-14 18:58 - 00709900 _____ () C:\Windows\system32\perfh007.dat
2014-01-29 14:22 - 2009-07-14 18:58 - 00154336 _____ () C:\Windows\system32\perfc007.dat
2014-01-29 14:22 - 2009-07-14 06:13 - 01670374 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-29 14:21 - 2010-11-29 14:43 - 01622836 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-26 17:45 - 2014-01-26 17:45 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard
2014-01-26 17:45 - 2014-01-26 15:11 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-26 15:11 - 2014-01-26 15:11 - 00001161 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-26 15:11 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Roaming\Battle.net
2014-01-26 15:06 - 2014-01-26 15:06 - 00001150 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-01-26 15:06 - 2014-01-26 15:06 - 00000000 ____D () C:\Users\****\AppData\Local\Blizzard Entertainment
2014-01-26 15:06 - 2014-01-26 15:05 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-01-26 15:03 - 2014-01-26 15:03 - 05971128 _____ (Blizzard Entertainment) C:\Users\****\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-25 19:48 - 2013-12-20 20:20 - 00000000 ____D () C:\Users\****\Documents\DayZ
2014-01-25 19:36 - 2013-12-20 20:20 - 00000000 ____D () C:\Users\****\AppData\Local\DayZ
2014-01-24 15:05 - 2014-01-01 20:30 - 00000000 ____D () C:\Users\****\Documents\Guild Wars 2
2014-01-18 00:59 - 2012-02-13 17:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-16 15:01 - 2009-07-14 05:45 - 00353096 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-15 22:51 - 2013-08-15 01:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 22:48 - 2009-12-29 11:32 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\****\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-11 19:24

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 12.02.2014, 19:50   #10
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



soo

Alt 13.02.2014, 20:40   #11
schrauber
/// the machine
/// TB-Ausbilder
 

Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 15.02.2014, 20:55   #12
Swaqtz
 
Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



vielen dank schonmal!! mein rechner läuft wieder ohne Beschwerden und startet ganz normal!
Nun habe ich mir Eset gedownloadet und es sucht ewig deshalb habe ich den Scan noch nicht zeitlich geschafft. Ich werde es spätestens morgen mit dem securitycheck log file und dem frischen FRST posten

Alt 16.02.2014, 07:12   #13
schrauber
/// the machine
/// TB-Ausbilder
 

Win7:Pc startet erst mit dem"start up repair"-Programm - Standard

Win7:Pc startet erst mit dem"start up repair"-Programm



ok
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Win7:Pc startet erst mit dem"start up repair"-Programm
betriebssystem, brauch, cleaner, computer, cpu, dateien, diverse, einstellungen, freeze, funktioniert, langsam, logfiles, lüfter, maus, minuten, neustarten, nicht mehr, problem, quarantäne, reset, stand-by, start up, start up repair, startet, win, win7, windows, windows 7, youtube, öffnet



Ähnliche Themen: Win7:Pc startet erst mit dem"start up repair"-Programm


  1. Win7: LAN ok, Netzwerktreiber ok, aber "Netzwerk" -> "Adaptereinstellungen ändern" ist leer
    Log-Analyse und Auswertung - 22.01.2015 (15)
  2. Diverse Malware ("CoolSaleCoupon", "ddownlloaditkeep", "omiga-plus", "SaveSense", "SaleItCoupon"); lahmer PC & viel Werbung!
    Plagegeister aller Art und deren Bekämpfung - 11.01.2015 (16)
  3. ~ 3 BitCoin Miner, Avira + Malwarebytes finden nichts. Beim Start startet sich Browser "unsichtbar"
    Plagegeister aller Art und deren Bekämpfung - 18.09.2014 (13)
  4. Avira: (Win7) Trojaner "TR/Rogue.11186992" in "C:\Windows\Temp\44158_updater.exe" gefunden
    Plagegeister aller Art und deren Bekämpfung - 25.04.2014 (77)
  5. Win7 nach AntiVir Funden "TR/Crypt.zpack.Gen7" und "Adspy.Gen2" stark verlangsamt
    Log-Analyse und Auswertung - 13.04.2014 (28)
  6. Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme
    Log-Analyse und Auswertung - 05.01.2014 (11)
  7. Programm "Advanced system protector" - Computer startet total langsam und braucht ewig
    Plagegeister aller Art und deren Bekämpfung - 11.12.2013 (10)
  8. Windows XP Nach Installation von HP Player immer zwei Startseiten beim Öffnen von Google chrome "start.iminent.com" und "Search gol"
    Log-Analyse und Auswertung - 08.10.2013 (5)
  9. Ich brauche Unterstützung bei der Bekämpfung von "System Repair"
    Plagegeister aller Art und deren Bekämpfung - 19.02.2013 (42)
  10. Win7 Virus "Dieses Programm kann die Webseite nicht anzeigen"
    Plagegeister aller Art und deren Bekämpfung - 31.12.2012 (11)
  11. Diverse Fehlermeldungen bei Start des Systems nach "Entfernen" des "Polizei-Virus"
    Log-Analyse und Auswertung - 27.10.2012 (10)
  12. Fake-Programm "Security Shield 2012" beim PC-Start
    Plagegeister aller Art und deren Bekämpfung - 28.06.2012 (1)
  13. "Alle Programme" leer in Windows 7 nach S.M.A.R.T Repair Trojaner Befall
    Plagegeister aller Art und deren Bekämpfung - 08.06.2012 (11)
  14. Schwarzer Bildschirm bei win7 start mit Feld "Bezahlen und runterladen"
    Log-Analyse und Auswertung - 12.01.2012 (11)
  15. Trojaner "System Repair" in Windows Vista wirklich entfernt?
    Log-Analyse und Auswertung - 18.12.2011 (82)
  16. Trojaner "System Repair, P1kAIMiG2Kb7Fz.exe", Desktop Schwarz, Programme und Dokumente weg
    Log-Analyse und Auswertung - 31.08.2011 (5)
  17. Win XP Start " Net Reactor 10 Fenster"danach "Firefox Problem 2 Fenster" danach "Blue Screen"
    Log-Analyse und Auswertung - 09.07.2011 (3)

Zum Thema Win7:Pc startet erst mit dem"start up repair"-Programm - Hallo Ihr Lieben, ich habe seit ein paar Tagen das Problem, dass mein Computer (Betriebssystem: Windows 7) nicht richtig startet, sodass ich den Pc neustarten muss. Der Computer startet sich - Win7:Pc startet erst mit dem"start up repair"-Programm...
Archiv
Du betrachtest: Win7:Pc startet erst mit dem"start up repair"-Programm auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.