Hello there. As soon as i turn on my PC i get this RegSvr32 error which contains the following (No module which failed to load included):
The module "" failed to load
Make sure the binary is stored at the specified path or
debug it to check for problems with the binary or
dependent .DLL files.
The specified module could not be found
So i ran an OTL scan. I hope it could give you some information about what could be the issue.
OTL logfile created on: 11/09/14 11:39:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Emils\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yy
7.96 Gb Total Physical Memory | 5.58 Gb Available Physical Memory | 70.17% Memory free
15.91 Gb Paging File | 13.28 Gb Available in Paging File | 83.44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 195.21 Gb Total Space | 108.63 Gb Free Space | 55.65% Space Free | Partition Type: NTFS
Drive D: | 1667.70 Gb Total Space | 1534.89 Gb Free Space | 92.04% Space Free | Partition Type: NTFS
Computer Name: EMILS-PC | User Name: Emils | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/09/11 23:38:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Emils\Downloads\OTL.exe
PRC - [2014/09/10 00:34:04 | 001,523,392 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
PRC - [2014/09/10 00:34:00 | 001,938,112 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2014/09/04 11:44:30 | 003,802,448 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2014/08/27 15:00:48 | 000,164,656 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
PRC - [2014/08/27 15:00:42 | 000,160,048 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
PRC - [2014/08/25 16:33:29 | 001,245,752 | ---- | M] (Spotify Ltd) -- C:\Users\Emils\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2014/07/23 13:29:15 | 000,430,160 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2014/07/23 13:29:07 | 000,751,184 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2014/07/23 13:29:07 | 000,430,160 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2014/07/22 17:57:38 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/07/15 17:24:02 | 000,538,112 | ---- | M] (LOL Replay) -- C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
PRC - [2014/07/02 11:45:03 | 005,037,888 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014/05/30 01:28:21 | 002,350,880 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014/05/30 01:23:57 | 001,631,008 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014/05/20 01:10:40 | 000,413,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/05/08 10:47:44 | 002,993,376 | ---- | M] (Nota Inc.) -- C:\Program Files (x86)\Gyazo\GyStation.exe
PRC - [2014/04/30 15:01:06 | 001,303,864 | ---- | M] (Megaify Software Co., Ltd.) -- C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
PRC - [2013/11/21 08:31:44 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/10/24 00:39:14 | 001,017,224 | ---- | M] (Flux Software LLC) -- C:\Users\Emils\AppData\Local\FluxSoftware\Flux\flux.exe
PRC - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
========== Modules (No Company Name) ==========
MOD - [2014/09/10 00:34:14 | 002,225,344 | ---- | M] () -- C:\Program Files (x86)\Steam\video.dll
MOD - [2014/09/10 00:34:02 | 000,679,616 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2014/09/05 01:29:26 | 034,589,376 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2014/09/05 01:29:26 | 000,837,824 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
MOD - [2014/09/03 21:28:16 | 000,774,656 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2014/08/27 15:00:40 | 000,139,056 | ---- | M] () -- C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
MOD - [2014/08/27 15:00:32 | 000,052,472 | ---- | M] () -- C:\Users\Emils\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
MOD - [2014/08/21 20:15:22 | 001,171,456 | ---- | M] () -- C:\Program Files (x86)\Steam\libavcodec-56.dll
MOD - [2014/08/21 20:15:22 | 000,485,888 | ---- | M] () -- C:\Program Files (x86)\Steam\libswscale-3.dll
MOD - [2014/08/21 20:15:22 | 000,442,368 | ---- | M] () -- C:\Program Files (x86)\Steam\libavutil-54.dll
MOD - [2014/08/21 20:15:22 | 000,403,968 | ---- | M] () -- C:\Program Files (x86)\Steam\libavformat-56.dll
MOD - [2014/08/21 20:15:22 | 000,332,800 | ---- | M] () -- C:\Program Files (x86)\Steam\libavresample-2.dll
MOD - [2014/07/24 04:42:37 | 000,260,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsForm0b574481#\83bc48ea0e895f71054d15421dea08a1\WindowsFormsIntegration.ni.dll
MOD - [2014/07/24 04:42:10 | 002,997,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\b53164cb2422eb66af48ef3ce722b5e5\System.IdentityModel.ni.dll
MOD - [2014/07/24 04:42:08 | 019,693,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\5402af8a63eab08e68cee5bb8c57ec43\System.ServiceModel.ni.dll
MOD - [2014/07/24 04:41:59 | 001,091,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\a97901d797a42bd994beabba4e1a4480\System.ServiceModel.Web.ni.dll
MOD - [2014/07/24 04:41:37 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\e2bc7466bfb562cdc37c7de5fb176537\PresentationFramework-SystemXml.ni.dll
MOD - [2014/07/24 04:41:37 | 000,016,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio84a7b877#\fa2c7f46e962bd6f6e089bb75286f553\PresentationFramework-SystemData.ni.dll
MOD - [2014/07/23 22:25:47 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\dc7d3cf3ed23c066cf958991e0c5a2ee\PresentationFramework.ni.dll
MOD - [2014/07/23 22:25:37 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\e7ce7f36d6ddd95c15fa5bdefbfcbf0c\PresentationCore.ni.dll
MOD - [2014/07/23 22:25:32 | 002,542,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data.Linq\2d985b5e3d65c7e843a7e137968b5293\System.Data.Linq.ni.dll
MOD - [2014/07/23 22:25:31 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\f1c8087380e2a00c4925353ff41819ef\WindowsBase.ni.dll
MOD - [2014/07/23 22:25:29 | 002,825,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\3a77639e6d14a90630ff1cce877134ae\System.Runtime.Serialization.ni.dll
MOD - [2014/07/23 22:25:29 | 000,470,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\ab78c8f8e5568f893308833861fc11d7\PresentationFramework.Aero.ni.dll
MOD - [2014/07/23 22:25:28 | 000,806,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\f56c031ccb3c19bfcdd668cdd0d0babc\System.ServiceModel.Internals.ni.dll
MOD - [2014/07/23 22:25:28 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\3ae392116532056a505ee49002341288\SMDiagnostics.ni.dll
MOD - [2014/07/23 22:25:27 | 007,409,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\2b80e18d5a7263101812de91dead2dee\System.Data.ni.dll
MOD - [2014/07/23 22:25:26 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5af458179c5c48dd9f400159b23c2398\System.Windows.Forms.ni.dll
MOD - [2014/07/23 22:25:21 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\66e122de5ff2bad83e6150461fd1f3a4\System.Xml.ni.dll
MOD - [2014/07/23 22:25:21 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\d04bc8678d72be74f11365ced3c3cfe6\System.Core.ni.dll
MOD - [2014/07/23 22:25:21 | 000,223,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\23dd0840f9d45171f3bbd3c45a0a8f9a\System.ServiceProcess.ni.dll
MOD - [2014/07/23 22:25:20 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\35ff79b0dd6c57013ea52df5a95efd72\System.Drawing.ni.dll
MOD - [2014/07/23 22:25:19 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\7b986cec878db3a6ab533de03fc552be\System.Xaml.ni.dll
MOD - [2014/07/23 22:25:17 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\aaadf3ca1bcec0c03ce992dec33a45fa\System.Configuration.ni.dll
MOD - [2014/07/23 22:25:16 | 010,061,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\42f19eab7abb6a12442e3a9572ad370d\System.ni.dll
MOD - [2014/07/23 22:25:12 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\cf0c209df74c672dfdbd31f9c3e15195\mscorlib.ni.dll
MOD - [2014/07/23 22:25:12 | 000,147,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\b15f62752445af5accebcdfd3b61fe4e\System.Numerics.ni.dll
MOD - [2014/07/22 17:57:38 | 003,800,688 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2014/07/15 15:47:22 | 000,401,920 | ---- | M] () -- C:\Program Files (x86)\LOLReplay\LOLUtils.dll
MOD - [2014/02/17 19:13:46 | 000,092,984 | ---- | M] () -- C:\Program Files (x86)\DriverToolkit\zlibwapi.dll
MOD - [2009/07/14 06:56:14 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\1762137638019a091020b3baf52f6de3\System.Core.ni.dll
MOD - [2009/07/14 06:56:11 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll
MOD - [2009/07/14 06:55:47 | 014,318,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll
MOD - [2009/07/14 06:55:32 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll
MOD - [2009/07/14 06:55:26 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
MOD - [2009/07/14 06:55:23 | 012,216,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll
MOD - [2009/07/14 06:55:14 | 003,313,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll
MOD - [2009/07/14 06:55:09 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
MOD - [2009/07/14 06:55:06 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
MOD - [2009/07/14 06:55:05 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
MOD - [2009/07/14 06:55:00 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014/05/30 01:20:09 | 021,055,432 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:64bit: - [2012/04/20 14:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014/09/09 22:21:26 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/09/04 11:44:28 | 002,525,008 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2014/08/27 15:00:42 | 000,160,048 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe -- (Avira.OE.ServiceHost)
SRV - [2014/08/14 05:58:30 | 000,448,384 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2014/08/14 00:30:50 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014/08/08 15:02:36 | 000,377,616 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2014/07/23 13:29:15 | 000,430,160 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2014/07/23 13:29:07 | 000,430,160 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2014/07/22 17:57:38 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/07/02 11:45:03 | 005,037,888 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014/05/30 01:23:57 | 001,631,008 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014/05/20 01:10:40 | 000,413,128 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/04/03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/08/13 09:44:22 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012/09/27 11:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014/07/23 13:29:07 | 000,130,584 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2014/07/23 13:29:07 | 000,117,712 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2014/07/23 13:29:07 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2014/06/11 10:57:41 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2014/05/30 01:20:09 | 000,020,256 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2014/03/31 18:42:44 | 000,040,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2014/02/18 19:48:28 | 000,901,848 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2013/11/21 08:31:28 | 000,632,168 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/11/21 08:31:28 | 000,028,008 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:64bit: - [2013/04/24 09:52:54 | 000,109,336 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2012/07/04 19:59:24 | 000,413,544 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tixhci.sys -- (tixhci)
DRV:64bit: - [2012/07/04 19:59:22 | 000,136,552 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tihub3.sys -- (tihub3)
DRV:64bit: - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/03/18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?r...opt=0&ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 09 EE EA 2B 51 CC CF 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@raidcall.en/RCplugin: C:\Users\Emils\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Emils\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2014/06/24 17:48:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emils\AppData\Roaming\Mozilla\Extensions
[2014/09/04 19:34:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emils\AppData\Roaming\Mozilla\Firefox\Profiles\3we6rrcs.default\extensions
[2014/09/04 19:34:36 | 000,000,000 | ---D | M] (Avira Browser Safety) -- C:\Users\Emils\AppData\Roaming\Mozilla\Firefox\Profiles\3we6rrcs.default\extensions\[email protected]
[2014/07/27 23:12:19 | 000,132,528 | ---- | M] () (No name found) -- C:\Users\Emils\AppData\Roaming\Mozilla\Firefox\Profiles\3we6rrcs.default\extensions\[email protected]
[2014/07/23 17:59:53 | 000,967,685 | ---- | M] () (No name found) -- C:\Users\Emils\AppData\Roaming\Mozilla\Firefox\Profiles\3we6rrcs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/07/22 17:57:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/07/22 17:57:38 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [AdobeCEPServiceManager] C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKCU..\Run: [EvhuXmab] C:\Windows\SysWow64\regsvr32.exe (Microsoft Corporation)
O4 - HKCU..\Run: [f.lux] C:\Users\Emils\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
O4 - HKCU..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe (Nota Inc.)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Emils\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C202852-7C9D-433F-8E27-1BC5C68302F6}: DhcpNameServer = 192.168.1.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\System32\Userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (bj.dll) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{1b1817ee-15cd-11e4-a7af-10604b5cecff}\Shell - "" = AutoRun
O33 - MountPoints2\{1b1817ee-15cd-11e4-a7af-10604b5cecff}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{746209d1-fbfb-11e3-ac97-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{746209d1-fbfb-11e3-ac97-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Einstiegsseite.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014/09/11 21:07:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/09/11 21:01:30 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2014/09/10 17:36:47 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\LogMeIn Hamachi
[2014/09/10 17:36:47 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\LogMeIn
[2014/09/10 17:36:47 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2014/09/10 17:36:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2014/09/10 17:36:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2014/09/06 11:56:00 | 000,000,000 | ---D | C] -- C:\ProgramData\EvhuXmab
[2014/09/05 19:43:04 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\.minecraft
[2014/09/05 19:39:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/09/05 19:39:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014/09/05 19:39:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2014/09/05 19:39:48 | 000,272,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2014/09/05 19:39:41 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2014/09/05 19:39:41 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2014/09/05 19:39:41 | 000,098,216 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2014/09/05 19:39:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/09/05 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2014/09/03 02:59:57 | 000,000,000 | ---D | C] -- C:\Users\Emils\Documents\My Cheat Tables
[2014/09/03 02:59:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
[2014/09/03 02:59:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6.4
[2014/08/31 03:15:27 | 001,143,296 | ---- | C] (FluorineFx.com) -- C:\Users\Emils\Desktop\FluorineFx.dll
[2014/08/31 03:15:27 | 000,421,888 | ---- | C] (Microsoft) -- C:\Users\Emils\Desktop\NotMissing.dll
[2014/08/31 03:15:27 | 000,270,336 | ---- | C] (The Apache Software Foundation) -- C:\Users\Emils\Desktop\log4net.dll
[2014/08/31 03:15:27 | 000,187,904 | ---- | C] (ServiceStack) -- C:\Users\Emils\Desktop\ServiceStack.Text.dll
[2014/08/31 03:15:27 | 000,106,496 | ---- | C] (www.antlr.org) -- C:\Users\Emils\Desktop\antlr.runtime.dll
[2014/08/30 17:27:12 | 000,000,000 | ---D | C] -- C:\Users\Emils\Desktop\New folder
[2014/08/29 00:07:05 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\NFS Underground 2
[2014/08/23 11:03:06 | 000,000,000 | ---D | C] -- C:\RecoveredPSD
[2014/08/22 23:51:54 | 000,000,000 | ---D | C] -- C:\Users\Emils\Desktop\TXD Workshop
[2014/08/22 15:53:52 | 000,000,000 | ---D | C] -- C:\Users\Emils\Documents\ArmA 2 Other Profiles
[2014/08/22 15:06:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
[2014/08/22 15:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2014/08/22 15:05:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2014/08/22 15:05:47 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2014/08/22 15:05:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2014/08/22 15:05:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2014/08/22 15:04:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/08/22 15:04:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/08/22 15:03:59 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\DesktopIconGoodgame
[2014/08/22 15:03:59 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\DesktopIconForAmazon
[2014/08/21 06:21:57 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\Avira
[2014/08/21 06:21:15 | 000,042,040 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avnetflt.sys
[2014/08/21 06:16:14 | 000,130,584 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys
[2014/08/21 06:16:14 | 000,117,712 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2014/08/21 06:16:14 | 000,028,600 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys
[2014/08/21 05:48:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2014/08/21 05:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2014/08/21 05:48:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2014/08/21 02:42:31 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
[2014/08/21 02:42:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2014/08/21 02:42:30 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\Notepad++
[2014/08/21 02:42:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Notepad++
[2014/08/20 16:44:37 | 000,000,000 | ---D | C] -- C:\Users\Emils\Documents\HTML learning
[2014/08/20 15:35:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014/08/14 19:14:54 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\ArmA 2
[2014/08/14 19:14:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
[2014/08/14 19:10:49 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\DayZCommander
[2014/08/14 19:10:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dotjosh Studios
[2014/08/14 19:10:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dotjosh Studios
[2014/08/14 13:59:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Bohemia Interactive Studio
[2014/08/14 13:59:37 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Local\ArmA 2 OA
[2014/08/14 13:59:37 | 000,000,000 | ---D | C] -- C:\Users\Emils\Documents\ArmA 2
[2014/08/14 13:59:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BattlEye
[2014/08/14 13:59:22 | 000,000,000 | ---D | C] -- C:\Users\Emils\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
========== Files - Modified Within 30 Days ==========
[2014/09/11 23:40:16 | 000,784,286 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/09/11 23:40:16 | 000,663,422 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/09/11 23:40:16 | 000,122,788 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/09/11 23:39:22 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/09/11 23:39:22 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/09/11 23:34:19 | 000,000,358 | ---- | M] () -- C:\Windows\tasks\DriverToolkit Autorun.job
[2014/09/11 23:34:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/09/11 23:34:08 | 2112,327,679 | -HS- | M] () -- C:\hiberfil.sys
[2014/09/11 23:21:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/09/11 21:07:37 | 000,001,133 | ---- | M] () -- C:\Users\Public\Desktop\Avira.lnk
[2014/09/11 21:01:27 | 666,015,272 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/09/11 14:24:18 | 000,000,132 | ---- | M] () -- C:\Users\Emils\AppData\Roaming\Adobe PNG Format CC Prefs
[2014/09/09 22:21:26 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014/09/09 22:21:26 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014/09/09 17:19:32 | 000,574,732 | ---- | M] () -- C:\Users\Emils\Desktop\2.jpg
[2014/09/09 17:18:21 | 000,037,158 | ---- | M] () -- C:\Users\Emils\Desktop\1.jpg
[2014/09/08 14:42:04 | 000,000,332 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForEmils.job
[2014/09/08 12:02:27 | 000,000,221 | ---- | M] () -- C:\Users\Emils\Desktop\Borderlands 2.url
[2014/09/05 19:39:35 | 000,272,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2014/09/05 19:39:35 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2014/09/05 19:39:35 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2014/09/05 19:39:35 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2014/09/04 19:36:29 | 000,043,009 | ---- | M] () -- C:\Users\Emils\Desktop\download.jpg
[2014/09/03 02:59:53 | 000,001,089 | ---- | M] () -- C:\Users\Emils\Desktop\Cheat Engine.lnk
[2014/09/01 21:18:13 | 000,106,107 | ---- | M] () -- C:\Users\Emils\Desktop\cartoon-plane.png
[2014/08/31 03:19:57 | 000,000,062 | ---- | M] () -- C:\Users\Emils\Desktop\settings.json
[2014/08/30 22:55:18 | 000,309,141 | ---- | M] () -- C:\Users\Emils\Desktop\awp1uJ9.png
[2014/08/29 01:26:51 | 000,000,042 | ---- | M] () -- C:\Users\Emils\lelwat
[2014/08/29 00:06:43 | 000,000,638 | ---- | M] () -- C:\Users\Emils\Desktop\Need for Speed Underground 2.lnk
[2014/08/28 23:37:26 | 004,998,912 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014/08/27 16:12:26 | 000,360,459 | ---- | M] () -- C:\Users\Emils\Desktop\903695_608823902480187_1124198137_o.jpg
[2014/08/27 02:16:03 | 000,166,652 | ---- | M] () -- C:\Users\Emils\Desktop\IMG_27082014_011540.png
[2014/08/26 18:51:58 | 000,036,476 | ---- | M] () -- C:\Users\Emils\Desktop\free-vector-hummer-clip-art_118215_Hummer_clip_art_hight.png
[2014/08/26 18:44:41 | 000,214,499 | ---- | M] () -- C:\Users\Emils\Desktop\sniper_render.png
[2014/08/26 18:22:53 | 000,032,446 | ---- | M] () -- C:\Users\Emils\Desktop\1313528957800209655Binoculars.svg.hi.png
[2014/08/25 16:59:01 | 000,001,456 | ---- | M] () -- C:\Users\Emils\AppData\Local\Adobe Save for Web 13.0 Prefs
[2014/08/24 15:42:38 | 000,049,925 | ---- | M] () -- C:\Users\Emils\Desktop\aoZZ6K0_700b_v1.jpg
[2014/08/24 15:28:51 | 000,041,496 | ---- | M] () -- C:\Users\Emils\Desktop\aBQ3grA_460s_v1.jpg
[2014/08/23 13:11:30 | 000,552,331 | ---- | M] () -- C:\Users\Emils\Desktop\2render.png
[2014/08/23 13:08:44 | 000,571,838 | ---- | M] () -- C:\Users\Emils\Desktop\1render.png
[2014/08/22 15:06:11 | 000,001,466 | ---- | M] () -- C:\Users\Emils\Application Data\Microsoft\Internet Explorer\Quick Launch\Goodgame Empire.lnk
[2014/08/22 15:03:59 | 000,001,486 | ---- | M] () -- C:\Users\Emils\Application Data\Microsoft\Internet Explorer\Quick Launch\Amazon.lnk
[2014/08/21 06:17:20 | 000,042,040 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avnetflt.sys
========== Files Created - No Company Name ==========
[2014/09/11 21:07:37 | 000,001,133 | ---- | C] () -- C:\Users\Public\Desktop\Avira.lnk
[2014/09/11 21:01:27 | 666,015,272 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2014/09/09 17:17:47 | 000,574,732 | ---- | C] () -- C:\Users\Emils\Desktop\2.jpg
[2014/09/09 17:17:41 | 000,037,158 | ---- | C] () -- C:\Users\Emils\Desktop\1.jpg
[2014/09/08 12:02:27 | 000,000,221 | ---- | C] () -- C:\Users\Emils\Desktop\Borderlands 2.url
[2014/09/04 19:35:44 | 000,043,009 | ---- | C] () -- C:\Users\Emils\Desktop\download.jpg
[2014/09/03 02:59:53 | 000,001,089 | ---- | C] () -- C:\Users\Emils\Desktop\Cheat Engine.lnk
[2014/09/01 21:18:13 | 000,106,107 | ---- | C] () -- C:\Users\Emils\Desktop\cartoon-plane.png
[2014/08/31 03:19:52 | 000,000,062 | ---- | C] () -- C:\Users\Emils\Desktop\settings.json
[2014/08/31 03:15:27 | 000,440,320 | ---- | C] () -- C:\Users\Emils\Desktop\ElophantClient.exe
[2014/08/30 22:55:18 | 000,309,141 | ---- | C] () -- C:\Users\Emils\Desktop\awp1uJ9.png
[2014/08/29 01:26:48 | 000,000,042 | ---- | C] () -- C:\Users\Emils\lelwat
[2014/08/29 00:06:43 | 000,000,638 | ---- | C] () -- C:\Users\Emils\Desktop\Need for Speed Underground 2.lnk
[2014/08/27 16:12:26 | 000,360,459 | ---- | C] () -- C:\Users\Emils\Desktop\903695_608823902480187_1124198137_o.jpg
[2014/08/27 02:15:49 | 000,166,652 | ---- | C] () -- C:\Users\Emils\Desktop\IMG_27082014_011540.png
[2014/08/26 18:51:58 | 000,036,476 | ---- | C] () -- C:\Users\Emils\Desktop\free-vector-hummer-clip-art_118215_Hummer_clip_art_hight.png
[2014/08/26 18:44:41 | 000,214,499 | ---- | C] () -- C:\Users\Emils\Desktop\sniper_render.png
[2014/08/26 18:22:53 | 000,032,446 | ---- | C] () -- C:\Users\Emils\Desktop\1313528957800209655Binoculars.svg.hi.png
[2014/08/24 15:42:38 | 000,049,925 | ---- | C] () -- C:\Users\Emils\Desktop\aoZZ6K0_700b_v1.jpg
[2014/08/24 15:28:51 | 000,041,496 | ---- | C] () -- C:\Users\Emils\Desktop\aBQ3grA_460s_v1.jpg
[2014/08/23 13:11:27 | 000,552,331 | ---- | C] () -- C:\Users\Emils\Desktop\2render.png
[2014/08/23 13:08:42 | 000,571,838 | ---- | C] () -- C:\Users\Emils\Desktop\1render.png
[2014/08/22 15:03:59 | 000,001,486 | ---- | C] () -- C:\Users\Emils\Application Data\Microsoft\Internet Explorer\Quick Launch\Amazon.lnk
[2014/08/22 15:03:59 | 000,001,466 | ---- | C] () -- C:\Users\Emils\Application Data\Microsoft\Internet Explorer\Quick Launch\Goodgame Empire.lnk
[2014/08/12 22:49:13 | 000,001,456 | ---- | C] () -- C:\Users\Emils\AppData\Local\Adobe Save for Web 13.0 Prefs
[2014/08/08 00:34:15 | 000,000,132 | ---- | C] () -- C:\Users\Emils\AppData\Roaming\Adobe PNG Format CC Prefs
[2014/06/24 17:53:35 | 000,776,320 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== Alternate Data Streams ==========
@Alternate Data Stream - 40 bytes -> C:\ProgramData\MTA San Andreas All:NT
@Alternate Data Stream - 40 bytes -> C:\ProgramData:NT
@Alternate Data Stream - 160 bytes -> C:\ProgramData\MTA San Andreas All:NT2
@Alternate Data Stream - 160 bytes -> C:\ProgramData:NT2
< End of report >
And the extras file i got
OTL Extras logfile created on: 11/09/14 11:39:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Emils\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yy
7.96 Gb Total Physical Memory | 5.58 Gb Available Physical Memory | 70.17% Memory free
15.91 Gb Paging File | 13.28 Gb Available in Paging File | 83.44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 195.21 Gb Total Space | 108.63 Gb Free Space | 55.65% Space Free | Partition Type: NTFS
Drive D: | 1667.70 Gb Total Space | 1534.89 Gb Free Space | 92.04% Space Free | Partition Type: NTFS
Computer Name: EMILS-PC | User Name: Emils | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01A6AABD-D397-4113-AA46-E8F1303215FD}" = lport=41780 | protocol=17 | dir=in | name=landmarkawesomiumbrowsercontroller |
"{05620D4F-191B-4D41-9A65-504A33F50FC2}" = lport=2869 | protocol=6 | dir=in | app=system |
"{08201FC6-17CE-4C7C-9A20-1DF56FC44C48}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{198CB6A8-95A0-4CD2-AF33-15742BA715A4}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{1F7A9F63-BFCE-4DE8-AEC0-76801BB7D777}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{280DD21F-F148-472B-BF90-EDBDF921705D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D2153AA-96C3-45C0-AB13-65F39C31360C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{30621057-B031-40E4-85E4-D37889056855}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{335FEDCE-EAB0-4F3B-ADC2-120776F631B5}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{36E2D45B-AA73-49AE-B741-C2CBCAADC987}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{3CEDC30C-4466-48E9-A20A-8FF56E16AAD7}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4973DD3F-C0D4-446F-A094-C363D02555F0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4F347A9C-3E3B-47D0-AE4E-B7B27777264A}" = rport=139 | protocol=6 | dir=out | app=system |
"{517B9D1B-D6C2-4185-A370-E0A348E21779}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{55FC302F-E28E-4486-AD74-3AA2850B5EDE}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{5B3C4458-FDCE-453D-B183-617DB80C1996}" = lport=58367 | protocol=17 | dir=in | name=pando media booster |
"{5C0D8202-5F60-40F9-BD3E-E264817746E7}" = lport=58367 | protocol=6 | dir=in | name=pando media booster |
"{5FDFD392-EDCA-4C84-A960-1234F4BBCE92}" = rport=445 | protocol=6 | dir=out | app=system |
"{6538F4C4-EC0F-4461-A196-3D66C29088C1}" = lport=137 | protocol=17 | dir=in | app=system |
"{819F2330-4E1B-452C-B240-E7130EE99E14}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{98503F8A-0E79-4F5B-9207-74B569F57A30}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{ACAA6031-4D54-4EF0-8E2A-4BB83DB377C1}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{ADBD75F9-7500-4290-B9F9-EFAE75732233}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B0C99C3B-B0FC-464B-AAE9-C9F9A5EDB1E2}" = rport=138 | protocol=17 | dir=out | app=system |
"{B1C4D763-BD3D-4482-83A3-17AD729F6830}" = lport=445 | protocol=6 | dir=in | app=system |
"{BA079781-D17E-4CFD-A010-96C346728C8C}" = lport=58367 | protocol=6 | dir=in | name=pando media booster |
"{C6D64371-DE51-489A-83A9-C28281CA5B8B}" = lport=139 | protocol=6 | dir=in | app=system |
"{DE8F329A-094A-4BFE-BCE8-D21E215C5F56}" = rport=137 | protocol=17 | dir=out | app=system |
"{DEF0C7A7-52D9-4B87-BE4F-1E5E5051D977}" = lport=138 | protocol=17 | dir=in | app=system |
"{E83B96DD-342F-4685-AF05-17DBBCF2BD71}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E8A008A3-50BD-435F-B5C8-920E8875D781}" = lport=10243 | protocol=6 | dir=in | app=system |
"{FCEF9C08-77D8-4DA1-BC12-9A537FA21473}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{FE7336A8-EF59-4A7A-9D56-5D9D9F3D14C7}" = lport=58367 | protocol=17 | dir=in | name=pando media booster |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0124F470-7BEB-41EF-826F-C2B139E2DE85}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{0A682FC1-C4AA-4AC2-BB79-5129212C3268}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0B7B0E27-4A42-4CA6-9B53-888EA4F7B31D}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\borderlands 2\binaries\win32\borderlands2.exe |
"{0E65681B-3443-4AEB-814C-82893D47D367}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\rbs\really big sky.exe |
"{11AF0F19-2D6B-4547-B207-42CC9049ACE1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{156DCF0B-4A2F-4D3A-A8F5-5C3375954C59}" = protocol=17 | dir=in | app=c:\users\emils\appdata\roaming\utorrent\utorrent.exe |
"{16C387E3-4B4B-49EB-B40C-76218330B07A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa_be.exe |
"{20D29269-287A-4BBC-9A99-3F2B8235A94F}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\gun monkeys\gun_monkeys.exe |
"{22467A17-5ECC-447C-A417-C416440F3937}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\sniper elite v2\bin\sniperelitev2.exe |
"{2297A989-0E3D-4594-B782-95E98B828553}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{255007DF-36EA-42EE-9CF1-A7E0003AB3DE}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\grand theft auto san andreas\gta-sa.exe |
"{28278E27-4A3A-4D4D-BFF2-F7E99D949FF5}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\half-life\hl.exe |
"{2A95A9D1-4A12-4FB4-8CBD-DC6C80C72FDC}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\ava\nwzlauncher.exe |
"{2E4F1715-1401-4064-A293-7447B184E95D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{31ECC749-352F-4BC3-B8AA-1AEA34C25B21}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\race 07\config.exe |
"{3412574B-76E5-4A94-92E3-1C60754D22D9}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\rift\riftpatchlive.exe |
"{35406EA0-70FB-4F12-B58C-3CEA197B11D2}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\borderlands 2\binaries\win32\borderlands2.exe |
"{35C8C115-AD2A-456D-93B8-C2CC35F9A233}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\rift\riftpatchlive.exe |
"{3E07BB91-CBB1-48C3-90A8-9233BBD82B71}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{3E5F9EEC-9E7D-4044-A5D3-ECA636028835}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{3F686DB5-5752-428C-80B0-A8D85EEA77C7}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3FE04DF1-12B2-4F79-9088-CE84DC2496D3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{40578851-63F8-4E82-9FA0-216FB02BBA1E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{4101F442-F403-43B2-B0CD-83DFF705EA23}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\rbs\really big sky.exe |
"{4117BB3A-13E0-4031-ACEB-3FB4C030A3E6}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe |
"{41DBDD87-B4EC-4141-868C-5C1E41535A1D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{4259933B-C22E-4C2C-A242-B463E45B1859}" = protocol=6 | dir=in | app=e:\alicecd.exe |
"{474EBEAC-B763-43DD-A704-DA15D9EFC19B}" = protocol=6 | dir=in | app=d:\battle.net\battle.net.exe |
"{478318FE-14AB-4515-A11B-7403C63C9FB1}" = protocol=17 | dir=in | app=e:\alicecd.exe |
"{4FF501D7-9877-4C9E-885A-A27E0B283D5F}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{51435360-6606-4826-82F2-0179559456F7}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer.exe |
"{53E5C984-E24F-4EA7-A56F-025F7AED92D4}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer_service.exe |
"{550FEC67-68C1-4016-8AA6-8228F244A94C}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\watch_dogs\bin\watch_dogs.exe |
"{55950F5F-E7AB-4D50-97AE-916151E70512}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\grand theft auto san andreas\gta-sa.exe |
"{5741014E-150A-42E6-89F6-8FD5E80251A0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5A2EC075-4D2D-4061-925F-EB910A57BEB9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{60525647-F144-4971-B3ED-5AEBFF2EBAD9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa_be.exe |
"{61A78D4C-8EEC-421E-91CB-78F6DDD599D5}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\half-life\hl.exe |
"{65F7342F-4CDE-4BEB-8675-E968F531E8C7}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe |
"{66D244D1-F221-4987-934F-C4D45747AC22}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{68B8E2C8-DCEE-4FF5-81FD-8289F2E00B85}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7211AA56-C350-4D54-AA84-4A5FDBA6AA1F}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\race 07\steamproxy.exe |
"{72BA48E3-A807-4474-BFC5-06AAECFFC5FC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe |
"{7C3DB246-C61D-4B0C-B140-FA16B68F4533}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\race 07\steamproxy.exe |
"{7CB5D6A4-324A-48AA-A5F6-ACC93CD926CB}" = protocol=17 | dir=in | app=d:\hearthstone\hearthstone.exe |
"{7D5B675C-C7BA-4F93-BD09-766A00B4CF68}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe |
"{830708F2-38DC-44F8-B321-833977947C10}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{832DD8C6-4426-44E2-AA17-2B19BFAF8D59}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer.exe |
"{834D38DC-BC07-4ED6-918A-3F580BE773FC}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\raceroom racing experience\game\rrre.exe |
"{836F74FD-EFC6-47F3-A418-D1F2D1E94172}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{845E5B92-2096-494C-9971-A1EA57C7A04A}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\dino d-day\dinodday.exe |
"{875BF2FF-3B48-497F-B60F-B4EB39F700EA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{87A18370-6219-4850-8039-5FC36E7CFC8E}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\spacechem\spacechem.exe |
"{8D47637A-D451-4A00-ACBF-2060F574E3FD}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\raceroom racing experience\game\rrre.exe |
"{91F6CAC4-2055-4CF8-A195-514EDFCC5461}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\spacechem\spacechem.exe |
"{92C7A702-4441-478C-9297-C93EA34D40F9}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\dino d-day\dinodday.exe |
"{9928D327-F3CD-4275-B6E7-6861603AD1B8}" = dir=in | app=c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpdevicedetection3.exe |
"{A011C558-D73D-478D-9A13-3F143FC07185}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\watch_dogs\bin\watch_dogs.exe |
"{A09E16CA-5A54-41BA-A3D4-38F480BC628B}" = protocol=58 | dir=out | [email protected],-503 |
"{A1E87E9E-1D12-4FAD-9629-B45F50CA2F47}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\gun monkeys\gun_monkeys.exe |
"{A801CDD2-B268-4682-8F62-977381CEC358}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{ABF199B3-0BCE-4537-B14A-762F7CEDDB3E}" = protocol=1 | dir=out | [email protected],-28544 |
"{AE2632DF-EBD4-43B8-AAEC-18062B578051}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe |
"{B17EA07C-58CB-4CB8-9496-3C8EC3B3515A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{B410218B-7C38-4298-A40F-D5300CF67F9B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BBEC2EA8-A18C-462F-8536-1ECBB6EF421F}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\ava\nwzlauncher.exe |
"{BEA6D2D2-0B0B-4EA8-9C71-E21942DDC3A4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{C3265128-6685-437A-9075-7CDE449EE051}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer_service.exe |
"{C6AE88E3-0627-4BA3-B230-E5EBB49B1B61}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{C7834491-0078-4C71-93DF-B6FCA2D6619C}" = protocol=58 | dir=in | app=system |
"{C83C636A-0036-4963-9841-432A376DC9B4}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{CBB987BD-F60B-497D-B59D-DDDBC41F38B9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CCBCB95F-1CB9-432B-80C2-4EE584749749}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\race 07\config.exe |
"{D07B53A3-D97D-4EA9-B5EE-4FF99BFA64E3}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe |
"{D099D1CC-86BF-4113-9D4F-F5AF7DAE4DBB}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D23DFAE4-2C95-4E28-B065-2F355AF9A6AF}" = protocol=58 | dir=in | [email protected],-28545 |
"{D409589D-C583-4E32-BFFB-0C7247F1BBDD}" = protocol=6 | dir=in | app=c:\users\emils\appdata\roaming\utorrent\utorrent.exe |
"{D4E3DE26-76D8-49F1-8A71-9A7E3EF0C657}" = protocol=6 | dir=in | app=d:\hearthstone\hearthstone.exe |
"{DA5C07A9-DCF7-4E92-8926-E25B2474AE4E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{DE32A3D9-2733-4757-A13A-A9C905C47E42}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{E01AB1FC-A613-479B-9FA9-538E6CA3BAA2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E313F644-D23F-4350-8BD8-6BD76E9856D0}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{E33E6D9A-4AD8-4B8A-A00E-ABA27B84EE39}" = protocol=17 | dir=in | app=d:\steamlibrary\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe |
"{E804C068-C10B-42B1-AF95-1D9FA9710B66}" = protocol=6 | dir=in | app=d:\steamlibrary\steamapps\common\sniper elite v2\bin\sniperelitev2.exe |
"{EC47470A-C6DC-41BD-845E-76C01A469660}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{ED6B5898-AD3A-4EB1-B96E-815C7D02CDEA}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{F35EC463-3DF3-4C8F-A566-96D32DA5E9D1}" = protocol=1 | dir=in | [email protected],-28543 |
"{F3FF3EF6-3512-49A2-9213-976DF58A5F3F}" = protocol=17 | dir=in | app=d:\battle.net\battle.net.exe |
"{FB24C692-1868-4FE3-A55D-E5ED7DFAC894}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{FDC80764-1B31-43A1-AD2D-CCC111A66C24}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{FEC8FA7D-8F92-462A-8026-97045E42E69A}" = protocol=58 | dir=out | [email protected],-28546 |
"{FF1724AD-DA1F-4B68-9284-A32690AF0F83}" = protocol=6 | dir=out | app=system |
"TCP Query User{30E78D72-7EE8-4BAC-A61B-CDA6221604C8}C:\users\emils\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\emils\appdata\roaming\spotify\spotify.exe |
"TCP Query User{346E3D35-C8C1-458A-BBD0-DDCE62248302}D:\gta san andreas\gta_sa.exe" = protocol=6 | dir=in | app=d:\gta san andreas\gta_sa.exe |
"TCP Query User{3480EEC8-7798-4DB4-8300-809EC2B475B2}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{399FC53E-F7E8-42E7-81A3-AEFDDEE20710}C:\program files (x86)\robot entertainment\omdu\binaries\win64\spitfiregame.exe" = protocol=6 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\binaries\win64\spitfiregame.exe |
"TCP Query User{3E7BB60A-A0F7-434F-9451-9B5B9068A531}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"TCP Query User{623B1BA7-427E-4228-8ED8-1E1908DC8B01}C:\program files (x86)\robot entertainment\omdu\omdu.exe" = protocol=6 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\omdu.exe |
"TCP Query User{6A90C654-0160-4A9B-BE75-355C11B54959}C:\program files (x86)\robot entertainment\omdu\dashboard\bin\spitfiredashboard.exe" = protocol=6 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\dashboard\bin\spitfiredashboard.exe |
"TCP Query User{9EFA5E42-4F2A-4934-BC15-3167A7DD3101}C:\programdata\battle.net\agent\agent.3235\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"TCP Query User{DDC2BE23-6625-4B72-8564-5D016F0B740A}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe" = protocol=6 | dir=in | app=c:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe |
"UDP Query User{14F51E61-5050-4582-9380-475924275F22}C:\program files (x86)\robot entertainment\omdu\omdu.exe" = protocol=17 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\omdu.exe |
"UDP Query User{18695430-D84E-4029-98E1-552C0115D1E8}C:\program files (x86)\robot entertainment\omdu\binaries\win64\spitfiregame.exe" = protocol=17 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\binaries\win64\spitfiregame.exe |
"UDP Query User{1C1D142F-1BAF-42EA-9A01-3414239F0BEB}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe" = protocol=17 | dir=in | app=c:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe |
"UDP Query User{1C80C04D-CE31-47B6-A7C4-FD65E4DB6111}C:\program files (x86)\robot entertainment\omdu\dashboard\bin\spitfiredashboard.exe" = protocol=17 | dir=in | app=c:\program files (x86)\robot entertainment\omdu\dashboard\bin\spitfiredashboard.exe |
"UDP Query User{4264012C-D153-41B5-98EE-012EC52635AB}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"UDP Query User{75D442A3-0AF9-417F-8D1F-56B7264DF08A}D:\gta san andreas\gta_sa.exe" = protocol=17 | dir=in | app=d:\gta san andreas\gta_sa.exe |
"UDP Query User{A49F0C1F-27DF-4057-962E-3EEA3AF223FC}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{D1020A74-4BB5-46A1-8449-32F5CAEB5029}C:\programdata\battle.net\agent\agent.3235\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"UDP Query User{E29DF7E6-51A4-4E48-B4FB-945A300D548F}C:\users\emils\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\emils\appdata\roaming\spotify\spotify.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{27DEA29A-222C-45F8-B70D-0A7B303FC71B}" = Intel® Rapid Storage Technology
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel® Rapid Storage Technology
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 RC
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 14.6.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 14.6.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.23
"{E70808B9-78FE-3081-9658-A3C9DBC9A798}" = Microsoft .NET Framework 4.5.1 RC
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"DesktopIconAmazon" = Desktop Icon für Amazon
"Recuva" = Recuva
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR 5.10 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1CA8266F-73D8-413A-94DF-EEAC92770AD7}" = Avira
"{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}" = PDF Settings CC
"{26A24AE4-039D-4CA4-87B4-2F03217067FF}" = Java 7 Update 67
"{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}" = Adobe Photoshop CC
"{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}" = Microsoft XNA Framework Redistributable 3.0
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1" = Adobe Update Management Tool
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1" = Gyazo 2.1
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.1.1
"{70B1DA58-A2B9-4EA0-B83D-F03CBEEAE22D}" = LogMeIn Hamachi
"{70e83cd8-4bd5-4039-ab5a-6b94a8abb641}" = Avira
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.18
"{7B2CA5E9-763C-4FCE-81EE-13E81ABFE908}" = DayZ Commander
"{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1" = Cinema 4D version R12
"{7f51bdb9-ee21-49ee-94d6-90afc321780e}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{AA8B3F71-1481-404D-9DEE-C8862A85C63A}" = TI USB3 Host Driver
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.07)
"{C90340A9-F592-4164-9480-FCE488C4BFF6}" = Alcor Micro USB Card Reader
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1" = DriverToolkit version 8.3.0.0
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{EE202411-2C26-49E8-9784-1BC1DBF7DE96}" = HP Support Assistant
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"AmUStor" = Alcor Micro USB Card Reader
"Avira AntiVir Desktop" = Avira Free Antivirus
"Battle.net" = Battle.net
"BattlEye for A2" = BattlEye Uninstall
"BattlEye for OA" = BattlEye for OA Uninstall
"Cheat Engine 6.4_is1" = Cheat Engine 6.4
"Hearthstone" = Hearthstone
"InstallShield_{AA8B3F71-1481-404D-9DEE-C8862A85C63A}" = TI USB 3.0 Host Controller Driver
"League of Legends 3.0.1" = League of Legends
"LogMeIn Hamachi" = LogMeIn Hamachi
"LOLReplay" = LOLReplay
"mIRC" = mIRC
"Mozilla Firefox 31.0 (x86 en-US)" = Mozilla Firefox 31.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MTA:SA 1.4" = MTA:SA v1.4.0
"Need for Speed Underground 2" = Need for Speed Underground 2
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OMDU" = Orcs Must Die! Unchained
"RaidCall" = RaidCall
"Steam" = Steam
"Steam App 10" = Counter-Strike
"Steam App 102700" = A.V.A - Alliance of Valiant Arms
"Steam App 12120" = Grand Theft Auto: San Andreas
"Steam App 201570" = Really Big Sky
"Steam App 211500" = RaceRoom Racing Experience
"Steam App 239450" = Gun Monkeys
"Steam App 243470" = Watch_Dogs
"Steam App 33910" = Arma 2
"Steam App 33930" = Arma 2: Operation Arrowhead
"Steam App 39120" = RIFT™
"Steam App 49520" = Borderlands 2
"Steam App 63380" = Sniper Elite V2
"Steam App 65800" = Dungeon Defenders
"Steam App 70000" = Dino D-Day
"Steam App 730" = Counter-Strike: Global Offensive
"Steam App 8600" = RACE 07
"Steam App 8660" = GTR Evolution
"Steam App 92800" = SpaceChem
"TeamViewer 9" = TeamViewer 9
"Uplay" = Uplay
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Flux" = f.lux
"SOE-Landmark Beta" = Landmark Beta
"Spotify" = Spotify
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 11/09/14 4:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 4:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 4:37:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 4:37:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 4:37:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 4:37:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 5:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 5:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 5:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
Error - 11/09/14 5:07:39 PM | Computer Name = Emils-PC | Source = ESENT | ID = 412
Description = wuaueng.dll (1020) SUS20ClientDataStore: Unable to read the header
of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -546.
[ Hewlett-Packard Events ]
Error - 10/09/14 5:15:30 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:25:31 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:25:31 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:35:32 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:35:32 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:45:33 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:45:33 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:55:34 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 5:55:34 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
Error - 10/09/14 6:05:35 AM | Computer Name = Emils-PC | Source = HPSF.exe | ID = 2000
Description = HP Error ID: -2146233033HPSF.exe at System.DateTimeParse.Parse(String
s, DateTimeFormatInfo dtfi, DateTimeStyles styles) at System.DateTime.Parse(String
s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Message: String was not recognized as a valid DateTime. StackTrace:
at System.DateTimeParse.Parse(String s, DateTimeFormatInfo dtfi, DateTimeStyles
styles) at System.DateTime.Parse(String s, IFormatProvider provider) at HP.SupportFramework.Utilities.HPSAIssues.ActionItemCollection.loadActiveCheckResult(Boolean
includeIgnored) Source: mscorlib Name: HPSF.exe Version: 07.00.01.01 Path: C:\Program
Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Format: en-US RAM: 8147
Ram
Utilization: 60 TargetSite: System.DateTime Parse(System.String, System.Globalization.DateTimeFormatInfo,
System.Globalization.DateTimeStyles)
[ HP Software Framework Events ]
Error - 15/07/14 6:01:36 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:36.253|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:37 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:37.766|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:39 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:39.280|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:40 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:40.794|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:42 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:42.311|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:43 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:43.825|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:45 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:45.340|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:48 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:48.365|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
Error - 15/07/14 6:01:49 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:49.879|0000150C|Error |[CaslWmi]CommandDiags::A{hpCasl.enReturnCode(System.DateTime&)}|Error
executing wmiBIOS.ExecMethodClient, eRetCode: 597
Error - 15/07/14 6:01:51 AM | Computer Name = Emils-PC | Source = CaslSmBios | ID = 5
Description = 2014/07/15 12:01:51.393|0000150C|Error |[CaslWmi]CommandDiags::C{bool()}|Error,
eRet: 597
[ System Events ]
Error - 29/08/14 12:43:53 PM | Computer Name = Emils-PC | Source = Service Control Manager | ID = 7024
Description = The Windows Search service terminated with service-specific error
%%-1073473535.
Error - 29/08/14 12:43:53 PM | Computer Name = Emils-PC | Source = Service Control Manager | ID = 7031
Description = The Windows Search service terminated unexpectedly. It has done this
1 time(s). The following corrective action will be taken in 30000 milliseconds:
Restart the service.
Error - 08/09/14 2:17:21 PM | Computer Name = Emils-PC | Source = bowser | ID = 8003
Description =
Error - 09/09/14 4:45:25 AM | Computer Name = Emils-PC | Source = BROWSER | ID = 8032
Description =
Error - 10/09/14 11:36:37 AM | Computer Name = Emils-PC | Source = Service Control Manager | ID = 7030
Description = The LogMeIn Hamachi Tunneling Engine service is marked as an interactive
service. However, the system is configured to not allow interactive services.
This service may not function properly.
Error - 10/09/14 11:36:43 AM | Computer Name = Emils-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the LogMeIn
Hamachi Tunneling Engine service to connect.
Error - 10/09/14 11:36:43 AM | Computer Name = Emils-PC | Source = Service Control Manager | ID = 7000
Description = The LogMeIn Hamachi Tunneling Engine service failed to start due to
the following error: %%1053
Error - 11/09/14 6:16:26 AM | Computer Name = Emils-PC | Source = BROWSER | ID = 8032
Description =
Error - 11/09/14 3:01:31 PM | Computer Name = Emils-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 9:00:40 PM on ?9/?11/?2014 was unexpected.
Error - 11/09/14 3:01:32 PM | Computer Name = EMILS-PC | Source = BugCheck | ID = 1001
Description =
< End of report >
I also had a blue screen of death earlier today, and some other bugs around my PC, so i figured, this error may be the cause.