| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: .scr Datei ausversehen heruntergeladen.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
24.11.2015, 17:29
| #1 |
 |  .scr Datei ausversehen heruntergeladen. Soll ich also die gesamte Creative Suite deinstallieren und die ursprüngliche Datei, welche den Crack durchführt (Keygen) löschen? Also ich hab auf vielerlei Seiten nachgelesen, dass wenn man die Datei nicht ausführt, keine Bedrohung bestehen sollte. Ich hab die Datei wirklich nicht geöffnet, sondern gleich aus dem Chrome-Download-Ordner gelöscht. Gibt es hier eine Sicherheitslücke? |
|
24.11.2015, 21:08
| #2 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™   | .scr Datei ausversehen heruntergeladen.Zitat:
Zitat:
Warum fragst du nach Sicherheitslücke? Begründung? Den anderen Schrott im FRST-Log hast du gesehen? (schau mal nach Zeilen mit ATTENTION am Ende)
__________________ |
|
25.11.2015, 01:45
| #3 |
| | .scr Datei ausversehen heruntergeladen. Ich hab die besagte Software deinstalliert und einen neuen Scan durchgeführt.
__________________FRST.txt: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (25-11-2015 01:50:38)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32: c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
Chrome:
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 01:50 - 2015-11-25 01:50 - 00025690 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-25 01:03 - 2015-11-25 01:03 - 00000588 _____ C:\Users\Nerdy By Nerds\Desktop\Attention einträge.txt
2015-11-25 00:55 - 2015-11-25 01:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\New folder (2)
2015-11-24 16:53 - 2015-11-24 16:53 - 00000302 _____ C:\Windows\PFRO.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000168 _____ C:\Windows\setupact.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000000 _____ C:\Windows\setuperr.log
2015-11-24 03:48 - 2015-11-24 03:48 - 00083577 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 3.txt
2015-11-24 03:47 - 2015-11-24 03:48 - 00083625 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 2.txt
2015-11-24 03:46 - 2015-11-24 03:48 - 00063335 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller.txt
2015-11-24 02:37 - 2015-11-25 01:50 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-24 16:55 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 01:49 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-25 01:49 - 2011-04-16 09:48 - 00000000 ____D C:\Program Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:37 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:28 - 00000000 ____D C:\ProgramData\Adobe
2015-11-25 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-25 01:37 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-25 01:21 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds
2015-11-25 01:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-25 01:16 - 2014-11-06 18:07 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Games
2015-11-25 01:14 - 2011-03-14 19:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-25 01:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-25 01:10 - 2011-03-14 20:17 - 00000000 ____D C:\Users\Jeremy J. Erb\Adobe Flash Builder 4
2015-11-25 01:08 - 2011-02-13 12:20 - 00000000 ____D C:\Users\Jeremy J. Erb\AppData\Roaming\Adobe
2015-11-25 01:07 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-25 00:54 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 23:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-24 23:27 - 2011-02-13 00:09 - 01339443 _____ C:\Windows\WindowsUpdate.log
2015-11-24 19:18 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 16:54 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-24 16:53 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-24 16:53 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-24 16:53 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-24 16:53 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-24 16:53 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-24 16:53 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity
==================== Files in the root of some directories =======
2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes
Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-20 15:56
==================== End of FRST.txt ============================
--- --- --- Geändert von MrButsch (25.11.2015 um 01:52 Uhr) |
|
25.11.2015, 01:47
| #4 |
| | .scr Datei ausversehen heruntergeladen. Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-11-2015
Ran by Nerdy By Nerds (2015-11-25 01:51:03)
Running from C:\Users\Nerdy By Nerds\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-02-12 23:09:27)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
7E281115A23343249B54 (S-1-5-21-1020473624-1478330774-1937670132-1004 - Limited - Enabled)
Administrator (S-1-5-21-1020473624-1478330774-1937670132-500 - Administrator - Disabled)
BE38876218914F369445 (S-1-5-21-1020473624-1478330774-1937670132-1005 - Limited - Enabled)
Guest (S-1-5-21-1020473624-1478330774-1937670132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1020473624-1478330774-1937670132-1008 - Limited - Enabled)
Jeremy J. Erb (S-1-5-21-1020473624-1478330774-1937670132-1000 - Administrator - Enabled) => C:\Users\Jeremy J. Erb
Nerdy By Nerds (S-1-5-21-1020473624-1478330774-1937670132-1009 - Administrator - Enabled) => C:\Users\Nerdy By Nerds
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Aimersoft DVD Ripper(Build 2.7.2.0) (HKLM-x32\...\Aimersoft DVD Ripper_is1) (Version: - Aimersoft Software)
Amnesia - The Dark Descent (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
ANNO 1404 - Königsedition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version: 1.0.9.9 - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - )
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Auto Mouse Clicker v4.0 (HKLM-x32\...\{C83F056D-E3D5-4308-B3ED-9FAFA8ACF821}_is1) (Version: - MurGee Softwares)
Avid EDL Manager (HKLM-x32\...\{830A8D89-D744-449C-ACE1-0A1A345D9B02}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid FilmScribe (HKLM-x32\...\{ED85F920-DC3C-44FD-80F3-93FA4C484039}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Log Exchange (HKLM-x32\...\{B0AA273D-06D3-46F2-8E21-E395A7BFC731}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{06928D63-80CF-4563-9E36-0BA52FAD7A1F}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid MediaLog (HKLM-x32\...\{B204C364-9D67-4F5A-A54C-56ED809BF76F}) (Version: 28.0.1 - Avid Technology, Inc.)
Avira Savings Advisor (HKLM-x32\...\{A18A516C-AA41-46A9-92DB-60208917E442}) (Version: 1.5.14 - Avira)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blur Busters Strobe Util (HKLM-x32\...\{57BDAE81-2BE7-4ABA-8B03-1520FBF41AF9}) (Version: 1.0.0 - Blur Busters)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadband Internet Router (HKLM-x32\...\Template One Sample App) (Version: - )
Brorsoft Video Converter Ver 1.1.1.3688 (HKLM-x32\...\{3231B80A-455C-497a-8425-3E44C006D76C}_is1) (Version: - )
CamStudio (HKLM-x32\...\CamStudio) (Version: - )
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.4.0.15 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.2.0.10 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.3.0.15 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.7 (HKLM-x32\...\DPP) (Version: 3.7.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.7.0.2 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.6.0.0 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility (HKLM-x32\...\WFTK) (Version: 3.4.0.2 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.4.1.11 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Click Bot (HKLM-x32\...\Click Bot) (Version: - )
ContinueToSave (HKLM\...\{CFD13E7B-203C-2497-C67C-681E14321C8D}) (Version: 1.0 - ) <==== ATTENTION
ContinueToSave (HKLM\...\ContinueToSave) (Version: 1.0 - BetterSoft) <==== ATTENTION
continuetosave (HKLM-x32\...\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}) (Version: - continue to save) <==== ATTENTION
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.4.0024 - DT Soft Ltd) <==== ATTENTION
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
DeialExpresss (HKLM-x32\...\{25F259ED-12F6-429F-5783-527C3E2F8586}) (Version: - DeaLLExpress) <==== ATTENTION
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.3.0 - devolo AG)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.22 - DivX, LLC)
DVDFab 9.0.1.5 (08/12/2012) Qt (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Easy Video to Gif Converter V3.0 (HKLM-x32\...\Easy Video to Gif Converter_is1) (Version: - corksot.com)
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
EasyTax 2012 AG 1.04 (HKLM-x32\...\3785-6780-1293-3574) (Version: 1.04 - HWI Solutions AG)
Elgato Game Capture HD (HKLM-x32\...\{A04501E6-ED4D-43C9-9D69-9C78224B5BDC}) (Version: 2.01.49.776 - Elgato Systems GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.0) (Version: 0.70.0 - ESN Social Software AB)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
ffdshow v1.3.4500 [2013-01-06] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4500.0 - )
ffdshow x64 v1.1.4284 [2012-01-28] (HKLM\...\ffdshow64_is1) (Version: 1.1.4284.0 - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
Game Capture HD v2.3.3.38 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.38 - Elgato Systems)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hauppauge HDPVR Scheduler (HKLM-x32\...\Hauppauge HDPVR Scheduler) (Version: - Hauppauge Computer Works)
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iPhone Backup Extractor (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\iPhone Backup Extractor) (Version: 5.7.2.322 - Reincubate Ltd)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version: - AppWork UG (haftungsbeschränkt))
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version: - DONTNOD Entertainment)
Lime OCR 2.4.1 (HKLM-x32\...\Lime OCR) (Version: 2.4.1 - Lime Consultants)
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Macro Recorder 5.7.8 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.8 - Jitbit Software)
Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software)
Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden
Magic Bullet LooksBuilder (HKLM-x32\...\Magic Bullet LooksBuilder) (Version: - )
MAGIX Screenshare (HKLM-x32\...\{B1FEBE01-42BB-4D05-8180-6C5ABD91E97E}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{6FC5FA2A-1D40-41B9-920B-0F2A758E24A6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
MAGIX Video deluxe 17 Premium (x32 Version: 10.0.0.32 - MAGIX AG) Hidden
ManyCam 3.1.58 (HKLM-x32\...\ManyCam) (Version: 3.1.58 - ManyCam LLC)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
mkv2vob (HKLM-x32\...\{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}) (Version: 2.4.9 - 3r1c)
MKVToolNix 6.1.0 (HKLM-x32\...\MKVToolNix) (Version: 6.1.0 - Moritz Bunkus)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - www.motioninjoy.com)
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video v2.0 Demo plug-in for Virtual Dub (HKLM-x32\...\Neat Video for VirtualDub_is1) (Version: - Neat Video team, ABSoft)
Neat Video v3.0 Demo plug-in for VirtualDub (32-bit) (HKLM-x32\...\Neat Video for VirtualDub (32-bit)_is1) (Version: - Neat Video team, ABSoft)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlueFX Premium Effects (HKLM-x32\...\NewBlueFX Premium Effects) (Version: 1.4 - NewBlue)
NVIDIA 3D Vision Controller Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenSubtitlesPlayer V4.X (HKLM-x32\...\OpenSubtitlesPlayer_is1) (Version: - ALLCinema Ltd.)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version: - )
PDF OCR X Community Edition (HKLM-x32\...\ca.weblite.pdfocrx.CommunityEdition_is1) (Version: 2.0.8 - Web Lite Solutions Corp.)
PDFMate Free PDF Merger 1.0.6 (HKLM-x32\...\PDFMate Free PDF Merger_is1) (Version: - pdfmate.com)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PluralEyes® 2.0.4 for Premiere® Pro (HKLM-x32\...\{CE9ACBCA-B429-4DA7-9728-2A621C6479FA}_is1) (Version: 1.0 - Singular Software Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Python 2.7.10 (Anaconda 2.3.0 64-bit) (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Python 2.7.10 (Anaconda 2.3.0 64-bit)) (Version: 2.3.0 - Continuum Analytics, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Razer Lachesis (HKLM-x32\...\{CB4532F7-A1BD-46D2-9938-3E7D4656FB18}) (Version: 1.10.0000 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version: - )
Scan Tailor (HKLM-x32\...\Scan Tailor) (Version: - )
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SixaxisPairTool 0.2.3 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.2.3 - Dancing Pixel Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version: - )
Sony RAW Driver (HKLM-x32\...\{166FCF01-AC98-4288-A01C-90BEB808C059}) (Version: 2.0.00.08130 - Sony Corporation)
SparkoCam (HKLM-x32\...\SparkoCam) (Version: 2.2.7 - Sparkosoft)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version: - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version: - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version: - FireFly Studios)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version: - FireFly Studios)
SunnyPage 2,1 (HKLM-x32\...\SunnyPage 2,1 2.1) (Version: 2.1 - Daylight)
SunnyPage 2,1 (x32 Version: 2.1 - Daylight) Hidden
Sweet Home 3D version 4.4 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Movies(TM) (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.0 - Activision)
The Movies(TM) (x32 Version: 1.0 - Activision) Hidden
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
TwitchAlerts (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UnderCoverXP 1.23 (HKLM-x32\...\UnderCoverXP_is1) (Version: - Wicked & Wild Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.1.7-3 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.7.8 - Shark007)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinSpeed (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}) (Version: - Jingo Ltd) <==== ATTENTION
XMind 6 (v3.5.1) (HKLM-x32\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XviD v1.3.0 CVS (HKLM\...\XviD MPEG-4 Video Codec_is1) (Version: - Celtic Druid)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
15-11-2015 19:00:05 Windows Backup
22-11-2015 19:00:05 Windows Backup
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2011-03-22 17:10 - 00004232 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 192.168.112.207
127.0.0.1 192.168.112.2o7.net
127.0.0.1 194.224.66.48
127.0.0.1 199.7.52.190
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.54.72
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73:443
There are 80 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {030BA824-1EBF-4741-BB03-AC0F8C9C29AC} - System32\Tasks\schedule!1143840799 => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe <==== ATTENTION
Task: {03C829C4-EDE1-458E-8F84-72CEC5E1E1ED} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {15621ED5-31F4-4D4E-A807-6E295BF15837} - System32\Tasks\{FB5116E4-4389-41E1-9A09-780C90D44DEA} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {1EDD8CF6-4990-4EE8-9807-64A85F05AB8A} - System32\Tasks\Funmoods => C:\Users\Jeremy J. Erb\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {272575DA-5C7A-4A65-ABE2-F486D293560F} - System32\Tasks\{7F832122-3F8F-4D25-9882-326F0B4C3165} => C:\Users\Jeremy J. Erb\Desktop\Downloads\qc1150_x64.exe
Task: {2A2FA555-C451-4521-9A5D-DD13F0986D94} - System32\Tasks\{95760577-A417-454F-946F-F273DEF6AEF9} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II"
Task: {2F63A731-0606-4930-A601-2327BF3A8620} - System32\Tasks\Google Updater and Installer => C:\Users\Jeremy J. Erb\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3647D943-139B-4687-839E-25826213499F} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {5349671D-0EC9-4118-A29D-0923FA4ED050} - System32\Tasks\{910FE053-B1B9-4E3E-8194-E339FB2E55B1} => pcalua.exe -a "C:\Program Files (x86)\QuickTime Alternative\QTSystem\quicktime.cpl"
Task: {5CF9750A-6450-4EFD-9927-DC778DEDCA1F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {60BCEAB1-F0F3-4806-BC13-A5FE6AC06B32} - System32\Tasks\{BF4F3FA7-43C4-4E38-B12C-4D20E90DB4B5} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-10-14] (Skype Technologies S.A.)
Task: {68E90B7B-4B83-4297-85D3-D6458DF10048} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {71D1DF21-A84B-4D78-BA3B-615E0F1C6D57} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {77CD2ACA-8A4C-404B-BC8B-BB5F0A37B2B9} - System32\Tasks\ALL Update => C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe [2011-08-17] ()
Task: {78D29609-E3A5-4F52-BFB5-7F07A1F03B74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {86276313-9C3C-48E4-B04A-A577D228FBE2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {8749126C-4094-40D6-B31E-4895C6EBF6B6} - System32\Tasks\{C685A2F9-46D7-40D3-96D8-7441DA20A811} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings"
Task: {9558289A-AB6B-4D56-A301-8FF5147534CB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9855C353-7204-49C4-8577-9EE90EB63E90} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-30] ()
Task: {A07A5FC7-47C3-4F0F-B511-10ED1F8BBF3F} - System32\Tasks\{472589C8-95B4-4B3D-89C8-F8B42E801DD2} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
Task: {A9FA069D-926D-4804-95D4-E41F29C8F627} - System32\Tasks\{4D2B59AF-6764-4EEA-9C74-43C49BE71FC3} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\quicktime\QuickTimeInstaller.exe" -d "C:\Users\Jeremy J. Erb\Desktop\quicktime"
Task: {C2BECC7A-CF6D-4BA9-B822-744AD1B542DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {C6B49042-7A95-4284-A5D6-F9385029CC05} - System32\Tasks\{83CE1FA0-67E1-46C6-9DC4-286B3FA41D9E} => pcalua.exe -a "C:\Users\Jeremy J. Erb\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCG7T566\ChromeSetup[1].exe" -d "C:\Users\Jeremy J. Erb\Desktop"
Task: {D2F2CD1A-7ABE-4378-B597-F4DF9E36BCED} - System32\Tasks\{04DE06AE-4EA6-4876-9BC2-D7357D945528} => C:\Program Files (x86)\Lime OCR\lime-ocr.exe [2009-12-14] (Lime Consultants)
Task: {D51A8F7F-5346-4104-AF50-E70883CB02A7} - System32\Tasks\{1F59B7F6-019B-43CA-85E9-7654146C0CE6} => pcalua.exe -a D:\Setup\Setup.exe -d D:\Setup
Task: {D7BC1633-093D-4305-864E-34609FB0E643} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {F09A251D-75C2-4E59-B680-390D878D5896} - System32\Tasks\aviraSWU => Cscript.exe "C:\Program Files (x86)\avira\Internet Explorer\swu.vbs"
Task: {F2C0F94D-473F-4834-BE74-9B57677BACCB} - System32\Tasks\{A98696DE-F69D-43AC-849F-62CF462DA4A1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.5.0.114.259/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {FBAD0F83-4AD2-4905-AEFC-07D438571815} - System32\Tasks\{6E5B4A10-2158-4ACD-9074-4242EDA117A2} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Downloads\vcredist_x86.exe" -d "C:\Users\Jeremy J. Erb\Desktop\Downloads"
Task: {FDAF9943-EAF8-4716-8677-23E57E4E0EC7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Funmoods.job => C:\Users\JEREMY~1.ERB\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\schedule!1143840799.job => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exeM/schedule /profile c:\programdata\bettersoft\continuetosave\1143840799.ini <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Anaconda Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Users\Nerdy By Nerds\Anaconda\Scripts\anaconda.bat" <==== ATTENTION
==================== Loaded Modules (Whitelisted) ==============
2011-10-03 14:31 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-20 00:24 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2011-10-02 16:52 - 2013-10-31 15:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-23 20:11 - 2015-06-23 20:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2011-02-13 13:50 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2015-03-14 06:49 - 2015-03-14 06:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2011-11-20 00:24 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-04-18 12:59 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-04-18 12:59 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 00181592 _____ () C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 00126464 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamFilter.dll
2014-04-02 14:57 - 2014-04-02 14:57 - 00014336 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamServer.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 11632640 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamLib.dll
2015-05-20 03:29 - 2015-05-20 03:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-01-11 23:45 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Nerdy By Nerds\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:DWq8NyBLbUmrYhkdKsN
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:WAD8mEFaKluOpOHzime
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:CCQZHaNqy9CftkQxXk97VvK
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temporary Internet Files:fHhhMOyoB8Xe79tna24YLG
AlternateDataStreams: C:\Users\Nerdy By Nerds\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\Control Panel\Desktop\\Wallpaper -> C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Jeremy J. Erb^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DS3 Tool => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe -mini
MSCONFIG\startupreg: Facebook Update => "C:\Users\Jeremy J. Erb\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: itype => "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
MSCONFIG\startupreg: Lachesis => C:\Program Files (x86)\Razer\Lachesis\razerhid.exe
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Logitech Vid => "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RAVCpl64.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium\TrayServer.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B3089B53-A18E-4423-83E4-E2548BB4FB3A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D904C0F-5692-4943-8F3C-308E83E4D84C}] => (Allow) LPort=2869
FirewallRules: [{E3F8EBB6-E140-4760-A57B-C762C512431F}] => (Allow) LPort=1900
FirewallRules: [{C13ECE6C-DA99-442A-8605-B5024E3F0A6E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{35E6B91E-A266-41D7-8B48-5FAA7474EE37}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3230E683-D14B-4C9E-9DAE-D5BAA114D5A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAFA3D1E-3BB4-42AF-B20F-10494F59496A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A08C6421-CBFA-4102-9412-9B69F11C439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2849588F-C80E-418B-B547-8BFE21093330}] => (Allow) LPort=443
FirewallRules: [{46661EA1-5DCE-4640-B86C-851D5B35D24C}] => (Allow) LPort=443
FirewallRules: [{8D0F4AE5-1103-4E6F-A7B5-B6D92B0DCCF8}] => (Allow) LPort=37674
FirewallRules: [{FE7E891E-A49F-48D4-A706-2F1E24BBA7E0}] => (Allow) LPort=37674
FirewallRules: [{A1F2BD87-36B1-4FFE-B8C5-B86E1307AC76}] => (Allow) LPort=37675
FirewallRules: [{7A5CF0EC-6C92-4905-B53B-A65FEFE14542}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E6655D3D-E4B9-4C36-80DD-361861D06D1D}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DD6DEC08-1F91-45B0-8627-CF66CDE67920}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{F9F8D5A2-0602-4D18-9FA4-25D22CB411F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{10C827B3-9E49-408E-8DBB-FCFC3E097254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{46763EE7-65D0-486B-A95F-4ED62BEC9DAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0CC6DD64-524C-41CD-B9C6-037013484FAB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{16C78BD6-573E-48FB-A5E7-149DC022CAC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{8BDE7445-4064-448C-90A8-C79DAEB81A81}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{A0DDD748-F67F-4E08-8702-9E204771CD52}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{B56AA11F-94C5-43AB-85DC-EC65A292A32D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{E2851692-182C-4D46-9399-1ED26334DBBE}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{558CE498-087D-4834-BCDA-AC92FE1B9A8D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{E05D69B4-5B46-46F9-BF6E-F90879B469C0}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{0D867BC3-352B-42B5-998F-914CA8358F47}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{FA588CB5-D82C-4283-9727-7E754618F4E5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{7A085870-5072-4966-A9F2-9A53C59BAEF4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{139682CD-AE8C-43C5-825D-8F7FFF6C1544}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6482A75B-C655-436E-8CB8-714F8F49E583}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3DDE1B71-821B-42EC-8D38-12FACFD5F0FA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{509842BD-C49F-4ED4-9E23-40316B5D2505}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5032B6EC-EB39-48CC-A349-013A0269064E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E6327220-3954-4078-B800-D2002E6C8967}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B7341029-635E-4D5A-86FF-7B08B1AD2275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E067F01F-214A-4A88-9465-C87D6CA5355A}] => (Allow) LPort=1542
FirewallRules: [{0672198B-A6C6-4866-BCBD-0F660326EF58}] => (Allow) LPort=1542
FirewallRules: [{F832F4C4-7E03-43DF-AADF-1F07BC0E99BB}] => (Allow) LPort=53
FirewallRules: [{D4ED452C-8340-411B-9919-1254187078C4}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5F623167-EAF0-4CE2-A1A0-91ACAE68A30E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{50AB2368-7A48-4233-BC5B-A30007C01AA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6F86BBB-AFAA-47B0-A1D9-FF8CCBD5843A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3C1F393-6978-4258-9F48-EE735A4571DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78380C2C-D685-4316-84E3-E5828A5E00DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FC91A540-2416-4EDE-A070-A9A41A8A6571}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889E6F14-57C7-4708-BCC7-FD61F4AAD7C5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{CF5ABD4F-11D6-46C2-A56B-FF14D105CB29}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{320DD975-38FF-403B-A3C7-11BD40E835EF}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{921C7B44-3BE2-4131-94BD-66DD3D5057E7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{EF2D6E1F-8AFD-4095-B53F-3E0A739BD9BE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{857A5521-2C35-4540-A2A9-31F8A3015D62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{AD220482-DEE5-4658-B2D8-076937135A9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [TCP Query User{268D900A-062B-45AF-9290-DA73D8A93F34}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{A3ED1398-191F-444F-AAEB-7BDDBAF3D41B}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{5DE3A298-10DF-48CA-8DF7-48975AE72916}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B3B83EC8-9825-432B-BFF8-E401D2E7BD50}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2CC8427D-0D11-4CEC-890A-4D78C51F68EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{7EEA9D61-1060-444E-8E51-46BE4D847A34}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [TCP Query User{33A59297-AAFD-47B7-8F7E-2E5B64EEB830}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{C8C65F90-6D28-4A9A-BCA6-3EE8B75528AF}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{53623AFE-2E23-45A7-BD98-AF3702E7193E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [UDP Query User{F8F088A7-9ECB-45FE-9F8D-023B649088B3}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [TCP Query User{6F272D99-A5BC-4EA5-A435-365C3396B27E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [UDP Query User{3898B6F0-D702-483F-8D81-EBAB50E1C10D}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [TCP Query User{CD49B4D6-6CA6-4EA7-8388-D4556D18D5F4}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [UDP Query User{F60A2571-7427-44A7-A6A1-861184CB2F75}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [TCP Query User{490A7CC4-C50A-4150-BEA4-7D74D376515F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{45F48BBB-7111-4818-8172-C2DB431C9287}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{308C6B17-DAA3-494C-B667-F580F309FD58}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C477CCFA-35F3-49D5-B21E-3280270F9BA4}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{7C587571-A3EA-4D36-816B-00CC0E873E18}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B0D33493-F397-4A7C-8DB1-168CE9BE2068}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8D309D6F-3B1E-4F3C-9D8F-F9E3D755911E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{33D88020-980C-48F3-A984-DE4F2118B8CE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{CFAA433F-C550-476E-83B8-B4EEA81B2D9E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{A5812739-171F-4670-99BD-115B41973A72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{A559722E-5EDF-4645-BFA7-80ABEC58E616}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{DF905607-22CE-4A99-B825-7E7AA930DC19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{F33ECC4C-2B38-43B8-B79B-EB196316A26E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6400F51C-0AAB-44CE-BBBD-96F50F89D618}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{1A8CBDC6-3352-48DC-8F35-4751B55DC78F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F7CE9C11-4B36-4E7C-9478-6A9962CE73F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B7CA082-31A9-4280-A4E0-9FA986E8EB39}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{86B1782C-D965-4E6A-9507-2218D5F8E002}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{01E68ACC-9405-4076-869D-1F8B12B6EE69}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{213C180E-0C7F-46A3-A1EF-FC3D6451726A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A9D2B053-42CC-446F-8497-ECA45ED6677E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0067E024-6C09-4645-9FBB-28D7FC8F8AFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B07D1D8D-507C-4853-879A-E5AB7C11D441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1FAC999B-3895-4C49-BF04-C8A07BA31E6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{817CFB99-FC3C-4B67-8C34-A4ED21FD2522}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{F24096C2-395A-44C6-8735-0C086989479A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{A374E69E-E34B-4CA4-8AEF-CDCC5EED7531}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{570E5612-75E4-44E9-A29E-9BC79D5D6008}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{6C3FEF28-30B1-424A-A38D-19966FFBD843}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{72270E0E-7AA7-4C3E-906F-2370041855E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{60393738-78EF-4929-BA5B-164294E01C36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{B171A631-B783-4E4D-999F-F452B98B3431}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{8AF5319D-70EA-4257-B8BA-E830F4F60818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{D25A3A56-32C1-4C00-A044-15DD19D3CC70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [TCP Query User{4DFB828C-533E-4E75-9591-FB6DE29BFAFC}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{70915809-3C26-4448-B5C5-928E914444E8}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{612A565C-0DAD-4BDE-B291-679E062E835C}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [UDP Query User{D066544D-E8EC-4AA3-8B5F-A0993A772D64}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [{91DE01F1-5D35-425D-A3A5-02B84BCEBBF8}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{834EA968-90AC-474C-A55F-7C2DFD793FCF}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{26A8DCE8-1F8E-4057-ADED-46063E29E46E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{61EAE32D-A30F-49CB-9A74-F987499D65B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8B54B150-2580-439A-94C9-EE29932615B1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{140FB3D5-989F-44F7-A496-B4C3D88ADC5A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{D70E7A5C-C964-4E52-9F27-EFAC27D2BDE0}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{CE6B7F3C-4745-4135-B63F-C70AD81E5C1B}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{7E517574-BF1A-4F8A-A45B-57102F53C094}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{33EF6873-EF32-4378-8524-2593FB62D7B2}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{0AA28FA5-90DA-48FC-8176-F583B92551BE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{C167C2E4-E3D3-4BF8-A5DB-5EB666F19D5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{7545ED54-35F4-4C9E-B411-97A081BBA2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{07BA8574-3EC9-4912-A3F8-A3D41B080007}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942E330D-3678-40E4-9BF8-BA625830E639}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{A5B5245F-1EAE-4D36-BC01-98442D1AE5DA}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{708E1B13-703A-4450-9BE9-67950874C758}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{3FC0CBC2-70B1-4EF8-9906-D24CF2334EF4}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D5F51D91-8A76-474E-9FC1-9103DE29D51E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E5A3D1EF-2042-4A07-8B29-D88D38D96B0A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{898B97AB-7D6E-416C-B194-C0179BBF9F69}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{C7818B31-D93E-4C21-B661-039568AB34C5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{37666EE0-052A-43F4-B000-4626C71FE8EF}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{CFB49C33-DABC-4923-A619-01EB6361AADE}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{56C078AA-9E52-4DA5-AFB5-231C285325F1}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0AF347F8-3417-480C-A523-359F337CB9E5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{14D7CAB3-ED49-473D-B758-74AD2D235F5B}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{241AA8F9-366F-49CA-A9D7-EE64E7E3208D}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{133AC2D7-1DCD-478B-BAFB-33CAB293E6CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6675A05A-5F86-4BDC-B36E-21D47F3DA3CA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4568144A-F313-420D-9783-83FD94F1701D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64FCD208-E752-4E2F-A14B-0C8168611060}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{4503E5D3-48FB-491E-902D-6C52383B21C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{EA131BF6-F6EA-439C-858B-52FB2C05859E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{3D1F4E66-B650-4B06-8C35-5D4EFB2F28F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{B0A9CC4C-B368-4058-81C9-6C06E3E46309}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [TCP Query User{61839F24-6C8E-4390-9103-B4E00D392893}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2F7C1461-B677-492E-982D-1E50C743CB8A}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{D50B9E70-35C6-4D68-B130-524BE2E7C832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{92929856-8DD7-49E8-BCCE-FB341943C55A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{AA4BCFBD-99F5-4F61-8DCB-6A475F69D846}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2B5EF94F-3A91-4278-9CAE-7388545B9E9D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{EA73ABF4-BE8B-43FC-9B45-965F793CB45B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D6BCD7A3-6759-49ED-8D43-70B174B052F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9A811C76-3ECC-4556-B3C7-E0BD13CB043A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C9D33F34-8363-4FA7-8895-7A529AA32590}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{C82CF0EC-BA56-439E-A88E-380DEC6F84D8}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CFD504F0-E120-496D-B6EB-0BA17BBB979B}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [{F56AA18C-8E42-4AD6-ACF4-141A3A1779B8}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{75D8EF84-478B-4BD0-8B79-A2250DFADF5B}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [TCP Query User{35C610BD-4772-4FC3-BB1D-5BE439559B28}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{30B9A0ED-72B4-4957-92DF-1EC959D2913D}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{714CBFCA-8A91-42AF-A7F1-72AC0E143F03}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CDBF40EC-26B7-4B28-A231-D5A68F106425}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [{A930F9BC-EE63-4D3D-9A31-7F5AF164B1F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{769D782C-743E-4466-8210-C39597B86982}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0AC09FDD-F6E9-48B7-B345-55635E6ED446}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{615EFD5A-3553-4428-9F6E-534433654BE6}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{9DA4E55A-4B01-42FD-BBEE-D24F524D2BAB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2BEB840B-1B88-40DB-BB64-6AF73A8F2A14}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4374BC2-E39C-4EF1-AABC-AF0CD94DE1EB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{6C58B778-C50F-4C03-9020-4153EEDD0E40}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3E19199C-A6CE-493A-A5F6-93CFB382ED56}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8CB7949C-B8BC-4F23-A915-1C049BA634C3}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6DC8547C-7C40-4336-9747-0C8362ACEA88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{C95AF62A-F728-473F-AB7D-292292C32FAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{F96D0567-41A0-427C-A121-0E7EBC92888F}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{FE16D034-8D76-4283-A933-878885CFD05E}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{7D4F5D8B-3F24-42ED-9A37-542017DCDE84}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{35B082F1-FAFC-42C2-9DB5-DC3FD961672D}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{935C2433-8086-4728-8930-9704C543300D}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{14A7A8D0-0BD1-4665-A424-4CFA3288B397}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{3AC9BFE3-6A72-46C7-B079-20B4C8BE9A76}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CBCA031-1D3D-45F0-9844-142EF4CBE220}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{6139767E-D08E-4345-A3AF-BEC5206405EC}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7E5AD342-B1A2-437C-BB0F-E2FEAFB15619}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4A91C949-A6E3-4FB3-8E65-9429F220F0ED}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{E279F273-BCF3-4363-8677-0BAAD1E58BAF}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{04818325-9BA0-4230-99BF-704A03D5A91C}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{ACF1BE82-F196-4FF4-8A94-17C816FCA113}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{AAEAF55C-F675-4F1C-9B78-7360FFF10B6E}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{29AF9C9A-4025-4267-83F7-1836DE46F489}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{2B80A7F5-9D0C-4684-BD0D-A16483101C5A}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{1098A087-9F4A-4A7C-807C-309DCB1400C0}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{DDF28D39-8364-4F49-9B30-DEE4C01D7BE7}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{4C767AFA-D976-4A2E-B34B-CAA85B865EC9}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{600BD4D4-7789-4971-808A-9177412E7066}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4587B165-D351-40AF-8A29-207EFBBB93A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C0FD4A12-2BC8-48C7-A292-166D1E218DBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD5F8C6B-D73A-4E00-A7E4-59ACE92C4270}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [UDP Query User{F3018188-720E-49C7-BF48-6634E366FFBA}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [{105654C7-8991-4FBE-8007-F3D1FFE252DA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{1FE79A1B-A207-4B01-9CFC-6DB75229337F}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4727EFDF-9EFC-4B00-B244-FF5804B0BBEB}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{18DB1C7D-E0E6-43E7-98B5-0FFC6BCDF9FA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [TCP Query User{FE2DB56E-A1A4-4F7C-B46C-3FD52FCE9C8B}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9933450E-9580-4658-9BD4-3B45609020D1}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{562B43D0-3D99-4A53-BD9F-E3C2ADB787AA}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{354359F5-607D-44D5-88B9-CAFB845DB3DB}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{8978604F-5CCA-4731-B39F-085C58CD20BE}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CBD07C30-193D-4F81-A499-F296AD7ECC7E}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{BC1D5345-4089-4CB4-993A-47FFA6A7327B}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{18A2105B-F91A-4A04-9E1C-27D44A702B6E}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EF8AF549-382B-4390-BD4E-231F42EAAC8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/25/2015 01:28:49 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 23.11.2015.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1848
Start Time: 01d127180d7f5dcb
Termination Time: 2
Application Path: C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
Report Id: 5a89e92f-930b-11e5-beea-50e5493c3802
Error: (11/24/2015 06:06:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x858
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/20/2015 08:08:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/17/2015 08:24:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: MATRIX)
Description: Product: Adobe Reader XI - Deutsch - Update '{AC76BA86-7AD7-0000-2550-7A8C40011013}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (11/15/2015 07:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xae0
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/14/2015 02:47:33 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x898
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/11/2015 03:48:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xb78
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/10/2015 01:18:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xa8c
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
System errors:
=============
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
CodeIntegrity:
===================================
Date: 2011-02-13 18:09:10.937
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:34:39.964
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:00:03.729
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 14:28:49.982
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 51%
Total physical RAM: 8189.55 MB
Available physical RAM: 3960.12 MB
Total Virtual: 16377.31 MB
Available Virtual: 12164.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:596.07 GB) (Free:61.81 GB) NTFS
Drive d: (MOVIES) (CDROM) (Total:1.89 GB) (Free:0 GB) UDF
Drive j: (2TerraDrive) (Fixed) (Total:1863.01 GB) (Free:1587.85 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3AE3C223)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 11821181)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
|
|
| Themen zu .scr Datei ausversehen heruntergeladen. |
| .scr datei, .scr trojaner, befallen, compu, computer, daraus, datei, dnsapi.dll, ergebnisse, euren, falsch, gefährlich, hallo zusammen, launch, namen, nicht, poste, posten, scans, virus, zusammen, ältere |
Hybrid-Darstellung
