| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Aus Sicherheitsgründen wurde Ihr System blockiert (50 Euro Virus / Trojaner etc)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
06.02.2012, 17:54
| #1 |
 |  Aus Sicherheitsgründen wurde Ihr System blockiert (50 Euro Virus / Trojaner etc) Hallo zusammen, nun hat es mich also auch einmal erwischt, nach vielen Jahren ohne Probleme mit Viren und Co. Gestern tauchte dann dieser Warnhinweis auf, Taskmanager und Co. gingen nicht mehr. Das passierte, als ein Update, für ein Spiel, installiert wurde, direkt vom Hersteller. Kein Surfen im Netz zu dem Zeitpunkt. Wenn ich das richtig hier lese, ann braucht ihr zuerst 2 Logfiles. Die poste ich jetzt mal hier rein, wenn es noch mehr braucht, einfach sagen. Code:
ATTFilter
OTL Extras logfile created on: 06.02.2012 17:39:33 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Andreas\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 1,77 Gb Available Physical Memory | 44,17% Memory free
8,21 Gb Paging File | 5,84 Gb Available in Paging File | 71,12% Paging File free
Paging file location(s): i:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 73,24 Gb Total Space | 7,57 Gb Free Space | 10,34% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 37,96 Gb Free Space | 77,74% Space Free | Partition Type: NTFS
Drive E: | 100,21 Gb Total Space | 20,86 Gb Free Space | 20,82% Space Free | Partition Type: NTFS
Drive G: | 66,49 Gb Total Space | 16,81 Gb Free Space | 25,27% Space Free | Partition Type: NTFS
Drive H: | 98,12 Gb Total Space | 53,87 Gb Free Space | 54,91% Space Free | Partition Type: NTFS
Drive I: | 134,76 Gb Total Space | 35,54 Gb Free Space | 26,37% Space Free | Partition Type: NTFS
Computer Name: BOSS-PC | User Name: Boss | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = FirefoxHTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "G:\programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "G:\programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "G:\programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "G:\programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 73 00 61 98 9A 8B C8 01 [binary data]
"VistaSp2" = 55 7D 0A D4 F8 DE C9 01 [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"I:\progr\flashfxp\FlashFXP.exe" = I:\progr\flashfxp\FlashFXP.exe:*:Enabled:FlashFXP v3
"I:\progr\flashfxp\FlashFXP.exe" = I:\progr\flashfxp\FlashFXP.exe:*:Enabled:FlashFXP v3
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"I:\progr\flashfxp\FlashFXP.exe" = I:\progr\flashfxp\FlashFXP.exe:*:Enabled:FlashFXP v3
"I:\progr\flashfxp\FlashFXP.exe" = I:\progr\flashfxp\FlashFXP.exe:*:Enabled:FlashFXP v3
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AA3F193-D701-4F85-A305-34D665E85AA2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{0B6477AB-596D-4298-9204-D72A16071A24}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{0C474E9D-768E-4331-8D58-EBB0F7E7E447}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{168D96D3-8891-47B7-A2A3-FAE7C4D4D9F5}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{1A941407-0BFF-43E8-AF1C-E086E4F70C12}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{1B42FFFD-D259-4FD5-8AEC-E6E8BCBAF255}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1C829E48-51A7-4238-9C90-376E0552C6B7}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{1FC06B37-6FBA-4FB1-97F0-8E352E8141F9}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{2510D59B-3B98-4034-B65D-D7D7FB386CED}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{2B0EC09B-B2C3-4FDC-A4CA-4BB48B2DB1AD}" = lport=3724 | protocol=6 | dir=in | name=blizzard downloader: 3724 |
"{2F0F0511-7F33-4639-B5F0-6A47025DEDF3}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{31BA2E3D-5967-41FE-BBFE-2ED8BCF8E7F9}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{341BD94C-1047-440C-8385-7D8C11469495}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{3786176A-916F-4DF9-9B63-0E96B0801F2A}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{39495BC2-7065-41EA-B94D-B128A3D568DA}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{43A1D7F8-A559-4AD4-9108-F71F179915A2}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{46962477-4940-4657-8E54-F2B324DB4F03}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{50F50612-F212-4EAD-A44B-3EFA9AC6A8FB}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{676B5CE3-E1E2-4884-80B1-F6E8E57BDEF6}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6835225E-F5EF-4EF7-B931-8542AD8C65AC}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{6BF56210-A8BD-481B-8010-B0B643F2BCBA}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{76CCD1D1-BE93-46AB-BFD2-C9140B638BCE}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{77E17B6B-7402-4369-B91F-AFDB56B86973}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{82F970B7-3D55-4908-A55D-17EFACC9FEBE}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{850E4B18-DBB5-4C98-9209-AE84EC6B1B4A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A5BE2A71-3794-4F3F-9FAB-8CFD95E44E75}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{A7043835-60AB-4124-9986-356F0D8115EB}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{BC9191C1-5FF7-4558-80B6-DD8142B817C8}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{BEAFCA57-DC28-42A2-A6EF-BE203DBD54DA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{C6B5C0CE-D343-4933-BF60-D3E6A9C15F3A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D5B6C1E6-1491-41CF-A74C-DBBA3B23C7D8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{052BE1F4-B4CA-41F9-9C92-AEF6C8607A40}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{0ACBB0BD-F33C-43CE-957E-26921A539180}" = protocol=17 | dir=in | app=g:\games\curse-update\curse\curseclient.exe |
"{0C941F73-46BC-4BF2-8FA4-B4984960C45E}" = protocol=6 | dir=in | app=i:\games\anno2070\anno5.exe |
"{0D3A1401-1B57-4CD5-9C97-C48C53C9C7C8}" = protocol=6 | dir=in | app=g:\games\wow\wow.exe |
"{18FF1AA2-958D-4D38-9F02-408AB3232AA1}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{1A6C1426-C972-4B73-88B3-50946EEAB307}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{1E9F0540-A661-4CE9-A964-E4E36ACE070F}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{1F3F491B-DA44-4A46-87FD-DC78478DC5AD}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{2281D7DF-8732-4DF4-851F-85667548D6D6}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{25AABB5C-1D3A-4BEE-B93A-DEEE11C8D431}" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10522-to-0.3.0.10554-dede-ptr-downloader.exe |
"{2A302ACA-37C2-43B9-B673-4A9D0E9BC48D}" = protocol=17 | dir=in | app=g:\programme\curse\curseclient.exe |
"{2BE49371-284D-4A14-B237-DFE6FE5BDD90}" = protocol=6 | dir=in | app=i:\games\wow\launcher.exe |
"{2CAD0F3C-2D7F-4859-A52B-339DE9B98197}" = protocol=6 | dir=in | app=g:\games\wic\wic_online.exe |
"{30B63419-0CCA-40B1-8D21-A4D6CAB112E7}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-0.3.0.10522-dede-ptr-downloader.exe |
"{3F00F963-CED6-4038-8E78-BA3CD80E2C9A}" = protocol=17 | dir=in | app=g:\games\wic\wic_ds.exe |
"{3FC34FF8-4975-486F-900A-6E9CEEA764F3}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10192-to-3.2.0.10314-dede-downloader.exe |
"{3FC96849-F369-4141-BFDB-BAE1EC0DC1A5}" = protocol=6 | dir=in | app=i:\games\anno2070\initengine.exe |
"{41E389D7-81EC-4BD6-B7FE-3569ACE02689}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{4B69359E-42E9-4568-8CE9-DDD5D5F90281}" = protocol=17 | dir=in | app=i:\games\wow\launcher.exe |
"{4BD65A27-79D3-4B53-9531-A971029DB4AA}" = protocol=6 | dir=in | app=g:\games\wow\launcher.patch.exe |
"{5101860A-6F7B-4DFE-8850-BCD4EDD264DF}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{5227FC86-605C-41C0-A5F4-5792F216FE9A}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{53C1B67E-ED56-4DD6-91B8-CB668668BF6F}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{54569CAF-D323-489F-ACB7-1BE43D77CF54}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{545EB6D1-B90D-4860-A828-B2F819E75274}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{5478C98C-2A6C-4D81-AAEB-DE0CA86AB553}" = protocol=6 | dir=in | app=g:\games\cry-beta-3\crysis mp beta\bin32\crysis.exe |
"{54CE7B81-4C7F-43D4-85A7-F2E278B1E453}" = protocol=17 | dir=in | app=i:\games\wow\launcher.patch.exe |
"{5729A6F2-CD0D-4CBD-AEEB-F27777FEFA60}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.0\sonarhost.exe |
"{58D72CD0-A5CA-4A67-AAB7-2DCD46BC2AE8}" = protocol=6 | dir=in | app=i:\games\anno2070\autopatcher.exe |
"{5E7FC184-6D04-4A84-8EF4-EA393BCF5474}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{5F5D0F35-831B-4E0C-B18E-74A2F49932B0}" = protocol=6 | dir=in | app=h:\star wars-the old republic\launcher.exe |
"{5F9A8E49-6AC6-43B0-AC5B-D12C43EAD577}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{63A71835-9A76-48E8-B332-DFA1E17BCB2A}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.0\sonarhost.exe |
"{659B5904-F19D-4607-8B38-9FD9BA2E5603}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{68037AC9-4F22-47D7-AB90-909806DB0893}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{68F11528-0728-4F44-B187-739D755EF83F}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{6B36935A-49D1-44AE-8C41-9A5ED0B20C1D}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{6E126CB9-0ED0-48B0-BEB2-6D268CB3DAC8}" = protocol=6 | dir=in | app=g:\games\wow\launcher.exe |
"{77484F17-ADF2-4D76-BFD7-1EE4D953826B}" = protocol=17 | dir=in | app=i:\games\anno2070\anno5.exe |
"{7C9AF305-051D-4AC8-81F7-2B591115A33B}" = protocol=17 | dir=in | app=h:\star wars-the old republic\launcher.exe |
"{7CFE74E0-75D6-4A88-A5D4-31920EC39309}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{7EA96289-1994-4AA6-9959-6617485C367E}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{80B3D677-4830-497F-8CF0-3FDCAE776D0F}" = protocol=17 | dir=in | app=g:\games\wow\wow.exe |
"{8346B1F6-12A9-431F-9568-CC6B2EEBE311}" = protocol=17 | dir=in | app=g:\games\wic\wic_online.exe |
"{866D3242-12A8-4FC0-80D6-00685AA48CE2}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{8CC8FAEE-2D2F-4E61-B788-2CB290140C18}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-0.3.0.10522-dede-ptr-downloader.exe |
"{8CE15293-095E-4A88-9FB8-834CEFCDD452}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8FBC715A-DA00-428F-8CF8-2BD9C6D1ED10}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{90524EF1-DC64-4548-A882-78D1997155A1}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{94AD29BA-D745-46DF-8919-8026531B715A}" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10571-to-0.3.0.10596-dede-ptr-downloader.exe |
"{95BEBB85-FB73-4106-B094-3E2907CFC94A}" = protocol=6 | dir=in | app=i:\games\wow\launcher.patch.exe |
"{97D6FC91-BF87-4011-AE55-C151774C1321}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10314-to-3.2.2.10482-dede-downloader.exe |
"{982D08A7-2634-41AD-BD59-9EA98F112689}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{9FBA2C4F-0B43-4BEF-B152-C5EEAEEC7B98}" = protocol=17 | dir=in | app=g:\games\wow\launcher.patch.exe |
"{A4C5DC85-2AD4-4718-8599-B3789D09043D}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A517D883-2D35-40E4-A745-5542B6E9D351}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{A774104E-5007-4D33-A0B4-2DA0C8634E08}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{A9E40D99-CA3F-43AC-9BF4-ED6B5F38E0A4}" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10522-to-0.3.0.10554-dede-ptr-downloader.exe |
"{AA01B764-A74B-473A-963A-6A34F7F34D75}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.2.10482-to-3.2.2.10505-dede-downloader.exe |
"{AB0CC0EA-90FD-4115-A787-C64E843ADEAA}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.1.3.9947-to-3.2.0.10192-dede-downloader.exe |
"{AE3F5F0F-04E3-4685-99F3-23A9394B9C23}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.2.10482-to-3.2.2.10505-dede-downloader.exe |
"{B0D5CC6C-1952-4F81-999B-01B10FEE86C5}" = protocol=17 | dir=in | app=g:\games\wic\wic.exe |
"{B1C3A08C-B6F9-4347-B20E-BCCC2A81C830}" = protocol=17 | dir=in | app=g:\games\cry-beta-3\crysis mp beta\bin32\crysis.exe |
"{B686FF9F-F732-4F8A-A447-1C21DCAF4CDD}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10192-to-3.2.0.10314-dede-downloader.exe |
"{B953ACA5-75B0-49DA-AF03-53FB1E7C71E6}" = protocol=17 | dir=in | app=i:\games\wow\blizzard downloader.exe |
"{BA357AF2-BB10-415B-9D8D-2F8342B91ABA}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{BC5D9CB1-A212-4C74-AACB-A58A95879484}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{BE87105B-5014-4EA4-97D7-0F9733F66DA1}" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10554-to-0.3.0.10571-dede-ptr-downloader.exe |
"{C3464EFA-D9E4-48A3-B7D9-7325AE001BA8}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10314-to-3.2.2.10482-dede-downloader.exe |
"{C6AD9BDC-32DE-4639-98AD-A1F3E9C57DE6}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{C845F0CE-45B4-48E1-BC2A-88AE7BED07ED}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{CDA177F1-AB08-446B-B57F-30E5ED50F264}" = protocol=17 | dir=in | app=h:\star wars-the old republic\launcher.exe |
"{D3F320C8-B80B-4E78-9D75-25673467A044}" = protocol=17 | dir=in | app=i:\games\anno2070\initengine.exe |
"{D5B5296D-1FE8-4DA0-8F93-491330D20351}" = protocol=6 | dir=in | app=h:\star wars-the old republic\launcher.exe |
"{D5F6E41B-2ECA-4016-BF98-1B0D5DA3DFC5}" = protocol=17 | dir=in | app=i:\games\anno2070\autopatcher.exe |
"{D78D8474-3932-4D43-890B-139D911ECC40}" = protocol=6 | dir=in | app=g:\games\wic\wic_ds.exe |
"{D821C05E-5CEF-4EA1-9477-74575DA63A6A}" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10571-to-0.3.0.10596-dede-ptr-downloader.exe |
"{DEB66874-8001-47DD-B934-4DF63F0FD4EE}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{E1543EC3-BC2F-4FFA-828E-E3BE0B8E428C}" = protocol=6 | dir=in | app=g:\games\wic\wic.exe |
"{E4E34D2F-2C19-483A-A50B-F0944C136651}" = protocol=6 | dir=in | app=i:\games\wow\blizzard downloader.exe |
"{E83E2AE8-DA1E-46AE-B4F6-56ABCA56E322}" = protocol=17 | dir=in | app=g:\games\wow\launcher.exe |
"{E86DDBDF-0F76-4315-82FF-24C6F0E249FD}" = protocol=6 | dir=in | app=g:\games\curse-update\curse\curseclient.exe |
"{E94D8F60-07B3-4E96-ADDA-9DA288C0F893}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{EE7B6452-F538-442B-BC55-29821B39682D}" = protocol=6 | dir=in | app=g:\programme\curse\curseclient.exe |
"{EF949FAD-9773-4C61-8D4B-C038F22BC4B6}" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10554-to-0.3.0.10571-dede-ptr-downloader.exe |
"{F037F140-FE70-41BC-A6DA-05D7AEA5E214}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{F26D9838-0095-473B-897E-1E067D5757E3}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{F9E2E550-227A-45B5-B8CD-5F4D2D2D3788}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.1.3.9947-to-3.2.0.10192-dede-downloader.exe |
"TCP Query User{002FF392-4EA9-458C-9326-FC57F2C54989}C:\program files (x86)\motorola\software update\mumapp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\motorola\software update\mumapp.exe |
"TCP Query User{0D9FEC77-D221-4FB0-921C-DF8F521B5FB0}I:\games\world of warcraft public test\wow-0.3.0.10676-to-0.3.0.10712-dede-ptr-downloader.exe" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10676-to-0.3.0.10712-dede-ptr-downloader.exe |
"TCP Query User{18D64428-EC98-4BC4-A295-42A40C3F703A}G:\games\xfire\xfire.exe" = protocol=6 | dir=in | app=g:\games\xfire\xfire.exe |
"TCP Query User{1C1A8E54-4DFE-4024-8BD7-787D9AC85FCA}G:\downloads\wow-3.0.1.8874-ptr-eu-installer-downloader.exe" = protocol=6 | dir=in | app=g:\downloads\wow-3.0.1.8874-ptr-eu-installer-downloader.exe |
"TCP Query User{1D88AB4C-D457-4AF2-804C-463D3A1072FE}I:\games\world of warcraft public test\launcher.exe" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\launcher.exe |
"TCP Query User{1D987B5F-E0FC-477D-95FC-0E806B5A239D}I:\games\nfsdata\data\nfsw.exe" = protocol=6 | dir=in | app=i:\games\nfsdata\data\nfsw.exe |
"TCP Query User{2B547AAB-8CD0-4B59-9429-5058CF4FEF3E}C:\program files (x86)\motorola\rsd lite\sdl.exe" = protocol=6 | dir=in | app=c:\program files (x86)\motorola\rsd lite\sdl.exe |
"TCP Query User{35AA4809-6E8A-42B9-A1C3-D86195A9A3D0}I:\games\world of warcraft public test\wow-0.3.0.10772-to-0.3.0.10805-dede-ptr-downloader.exe" = protocol=6 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10772-to-0.3.0.10805-dede-ptr-downloader.exe |
"TCP Query User{3DDB9888-39D5-4404-8908-49082D460278}I:\progr\winamp\winamp.exe" = protocol=6 | dir=in | app=i:\progr\winamp\winamp.exe |
"TCP Query User{44655A35-5F51-4E4A-832F-3815D098ECB9}G:\games\wow\wow-2.0.7.6383-to-2.0.8.6403-dede-downloader.exe" = protocol=6 | dir=in | app=g:\games\wow\wow-2.0.7.6383-to-2.0.8.6403-dede-downloader.exe |
"TCP Query User{4D4085EB-4564-481F-A9CC-3FEF99B2F61C}I:\games\blood\binary\bloodlinechampionsloader.exe" = protocol=6 | dir=in | app=i:\games\blood\binary\bloodlinechampionsloader.exe |
"TCP Query User{5024B43E-7377-4529-AF79-99B071F25A0A}I:\progr\winamp\winamp.exe" = protocol=6 | dir=in | app=i:\progr\winamp\winamp.exe |
"TCP Query User{55BB76A4-B5E9-4002-AEB3-2CEED9F38145}G:\games\wow\wow-2.0.10.6448-to-2.0.12.6546-dede-downloader.exe" = protocol=6 | dir=in | app=g:\games\wow\wow-2.0.10.6448-to-2.0.12.6546-dede-downloader.exe |
"TCP Query User{5814365D-1C2D-4986-9614-5FFD3FABBFED}C:\users\andreas\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\andreas\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{5AE677A0-6FDD-41E8-A26D-AE6A9160228D}C:\program files (x86)\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"TCP Query User{5F843565-50AF-4DB7-945B-AD862742B378}I:\progr\phone-explorer\myphoneexplorer\myphoneexplorer.exe" = protocol=6 | dir=in | app=i:\progr\phone-explorer\myphoneexplorer\myphoneexplorer.exe |
"TCP Query User{5FE1D7A5-B8F7-475C-AE51-7701A9DC95E6}I:\progr\flashfxp\flashfxp.exe" = protocol=6 | dir=in | app=i:\progr\flashfxp\flashfxp.exe |
"TCP Query User{771F8A17-0C1F-4F9C-AEFE-3DF28A582DD1}G:\programme\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=g:\programme\totalcmd\totalcmd.exe |
"TCP Query User{7B22848F-0FB3-4AF9-AF1A-88F390FCFCB0}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{89F81AF9-3D97-40FB-9209-1590B5B2CEB3}G:\games\wow\wow-2.0.6.6337-to-2.0.7.6383-dede-downloader.exe" = protocol=6 | dir=in | app=g:\games\wow\wow-2.0.6.6337-to-2.0.7.6383-dede-downloader.exe |
"TCP Query User{8AE0ACC8-46B9-4847-BF9D-E290F9DC45B4}G:\games\wow\launcher.exe" = protocol=6 | dir=in | app=g:\games\wow\launcher.exe |
"TCP Query User{930266F9-88D7-45C9-887B-C3F3ABE74B07}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{A17282FB-B4BF-40D4-BC42-C3AEEAC8C33F}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{B2D97FFA-3FD3-4CDE-BA8B-1329ED8E1B9D}G:\programme\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=g:\programme\totalcmd\totalcmd.exe |
"TCP Query User{B7585B8B-2A19-4C23-944B-8E912D28075E}I:\games\wow\temp\wow-4.0.0.1807-to-4.0.0.1979-enus-tools-downloader.exe" = protocol=6 | dir=in | app=i:\games\wow\temp\wow-4.0.0.1807-to-4.0.0.1979-enus-tools-downloader.exe |
"TCP Query User{CF633BC3-1F30-4903-9B99-157DEFDB282F}C:\program files (x86)\yello strom\yellometer\yellometer.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yello strom\yellometer\yellometer.exe |
"TCP Query User{DC4E0EA1-8598-4523-80D4-4509089DBACC}C:\program files (x86)\motorola\software update\msu.exe" = protocol=6 | dir=in | app=c:\program files (x86)\motorola\software update\msu.exe |
"TCP Query User{DD2A3CF6-8BCE-4F91-9F51-1EAE4F86EA02}G:\programme\dw\adobe dreamweaver cs3\dreamweaver.exe" = protocol=6 | dir=in | app=g:\programme\dw\adobe dreamweaver cs3\dreamweaver.exe |
"TCP Query User{DEF59468-82FA-4945-9563-AB96163FA13E}H:\star wars-the old republic\betatest\retailclient\swtor.exe" = protocol=6 | dir=in | app=h:\star wars-the old republic\betatest\retailclient\swtor.exe |
"TCP Query User{DF2EA308-E863-48ED-89E8-B49D2EC5734C}I:\games\wow\backgrounddownloader.exe" = protocol=6 | dir=in | app=i:\games\wow\backgrounddownloader.exe |
"TCP Query User{E3B68C0A-DD3A-47BE-8B7C-465D726F7C8D}C:\windows\system32\ftp.exe" = protocol=6 | dir=in | app=c:\windows\system32\ftp.exe |
"TCP Query User{ECEB4E5A-5141-421E-8281-B4C092DB8ED0}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"TCP Query User{ED706206-0183-4957-8CAA-D19397657864}G:\games\wow\wow-2.0.8.6403-to-2.0.10.6448-dede-downloader.exe" = protocol=6 | dir=in | app=g:\games\wow\wow-2.0.8.6403-to-2.0.10.6448-dede-downloader.exe |
"TCP Query User{EF9ED909-429D-407D-91E2-F6B90A201FAB}G:\programme\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=g:\programme\mozilla firefox\firefox.exe |
"TCP Query User{F5BA07E2-3145-4207-891D-4D40A126C92E}G:\programme\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=g:\programme\mozilla firefox\firefox.exe |
"TCP Query User{F84C74B8-4D6D-43BC-8380-EFF5F6F1AC3C}I:\games\wow\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe" = protocol=6 | dir=in | app=i:\games\wow\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe |
"UDP Query User{00638281-18E7-4C1E-9C7F-D565D3093DFF}I:\games\wow\temp\wow-4.0.0.1807-to-4.0.0.1979-enus-tools-downloader.exe" = protocol=17 | dir=in | app=i:\games\wow\temp\wow-4.0.0.1807-to-4.0.0.1979-enus-tools-downloader.exe |
"UDP Query User{0442A47B-6151-4537-B10F-112EBA7BCE32}I:\games\nfsdata\data\nfsw.exe" = protocol=17 | dir=in | app=i:\games\nfsdata\data\nfsw.exe |
"UDP Query User{0968541E-56B4-4B4F-ABC7-D88480CA8B45}G:\games\wow\launcher.exe" = protocol=17 | dir=in | app=g:\games\wow\launcher.exe |
"UDP Query User{0AC935C4-339F-44A1-B626-5741CA0C5AE9}C:\users\andreas\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\andreas\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{1258D574-5DAC-47D0-88A5-95445FEA32CB}G:\games\wow\wow-2.0.6.6337-to-2.0.7.6383-dede-downloader.exe" = protocol=17 | dir=in | app=g:\games\wow\wow-2.0.6.6337-to-2.0.7.6383-dede-downloader.exe |
"UDP Query User{27893D58-C36F-47EA-A9F7-F510017D6978}I:\games\blood\binary\bloodlinechampionsloader.exe" = protocol=17 | dir=in | app=i:\games\blood\binary\bloodlinechampionsloader.exe |
"UDP Query User{2AD61E50-1526-4C6E-8973-5A37A15D6BDF}G:\games\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=g:\games\tdu\testdriveunlimited.exe |
"UDP Query User{34CAE53B-9CF3-4617-8C0A-A55F938620E4}I:\games\world of warcraft public test\wow-0.3.0.10772-to-0.3.0.10805-dede-ptr-downloader.exe" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10772-to-0.3.0.10805-dede-ptr-downloader.exe |
"UDP Query User{36B8ECAA-D49C-4CE2-8264-6A68708A5ED4}H:\star wars-the old republic\betatest\retailclient\swtor.exe" = protocol=17 | dir=in | app=h:\star wars-the old republic\betatest\retailclient\swtor.exe |
"UDP Query User{42E1019A-94C8-4242-95F0-7BD3BD0FEE25}G:\programme\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=g:\programme\totalcmd\totalcmd.exe |
"UDP Query User{5050BB1A-4B4E-4355-9DA1-927B0B5902F7}I:\games\world of warcraft public test\wow-0.3.0.10676-to-0.3.0.10712-dede-ptr-downloader.exe" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\wow-0.3.0.10676-to-0.3.0.10712-dede-ptr-downloader.exe |
"UDP Query User{6A001F8D-9A9A-479A-BF41-AF8C68E33F8C}I:\progr\phone-explorer\myphoneexplorer\myphoneexplorer.exe" = protocol=17 | dir=in | app=i:\progr\phone-explorer\myphoneexplorer\myphoneexplorer.exe |
"UDP Query User{73AB5A04-3953-4BC9-B290-88518381E748}G:\games\wow\wow-2.0.10.6448-to-2.0.12.6546-dede-downloader.exe" = protocol=17 | dir=in | app=g:\games\wow\wow-2.0.10.6448-to-2.0.12.6546-dede-downloader.exe |
"UDP Query User{77ED7EB2-A07F-4800-817D-73CF6B4CC3F3}C:\program files (x86)\motorola\software update\msu.exe" = protocol=17 | dir=in | app=c:\program files (x86)\motorola\software update\msu.exe |
"UDP Query User{786C8032-7510-474F-B98C-7EA7544965BD}G:\programme\dw\adobe dreamweaver cs3\dreamweaver.exe" = protocol=17 | dir=in | app=g:\programme\dw\adobe dreamweaver cs3\dreamweaver.exe |
"UDP Query User{7C0DFF2E-8A31-48A5-ABC6-30C3D2CF47B4}I:\games\wow\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe" = protocol=17 | dir=in | app=i:\games\wow\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe |
"UDP Query User{7DF54149-770B-45BE-992B-107A594AAEE4}G:\games\wow\wow-2.0.8.6403-to-2.0.10.6448-dede-downloader.exe" = protocol=17 | dir=in | app=g:\games\wow\wow-2.0.8.6403-to-2.0.10.6448-dede-downloader.exe |
"UDP Query User{7E41A449-645C-4A50-A48F-A5E25D359A84}C:\program files (x86)\motorola\rsd lite\sdl.exe" = protocol=17 | dir=in | app=c:\program files (x86)\motorola\rsd lite\sdl.exe |
"UDP Query User{8B5EFDE4-F015-4A7C-A0EB-A9BF08BA2FB3}I:\progr\winamp\winamp.exe" = protocol=17 | dir=in | app=i:\progr\winamp\winamp.exe |
"UDP Query User{987F2123-CFAF-4DCF-9194-2DAFAF8B5DEE}G:\programme\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=g:\programme\mozilla firefox\firefox.exe |
"UDP Query User{9946437E-CE04-49F5-B9FA-DABD51DC4C58}C:\program files (x86)\yello strom\yellometer\yellometer.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yello strom\yellometer\yellometer.exe |
"UDP Query User{9FFB0D38-55D6-40BE-8A3A-1D0F47130C21}C:\program files (x86)\motorola\software update\mumapp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\motorola\software update\mumapp.exe |
"UDP Query User{AAFD2325-E884-48CE-AD33-70490214AF78}G:\downloads\wow-3.0.1.8874-ptr-eu-installer-downloader.exe" = protocol=17 | dir=in | app=g:\downloads\wow-3.0.1.8874-ptr-eu-installer-downloader.exe |
"UDP Query User{B6A4CF4A-5BF3-4162-B2A9-63C92DAE61FC}I:\progr\flashfxp\flashfxp.exe" = protocol=17 | dir=in | app=i:\progr\flashfxp\flashfxp.exe |
"UDP Query User{B8210782-4A29-477B-92A9-62069224F21F}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"UDP Query User{B96FD913-CDC6-4DE8-A2DB-160C3E81AF18}C:\program files (x86)\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"UDP Query User{BB3CC26D-5C56-47BB-A8C4-6E2D0C971729}G:\games\wow\wow-2.0.7.6383-to-2.0.8.6403-dede-downloader.exe" = protocol=17 | dir=in | app=g:\games\wow\wow-2.0.7.6383-to-2.0.8.6403-dede-downloader.exe |
"UDP Query User{C1FFBE2A-204D-4FEE-B8DD-98539FBF3281}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"UDP Query User{C6A77DD8-AE37-44DC-886E-4431DA11A007}G:\programme\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=g:\programme\totalcmd\totalcmd.exe |
"UDP Query User{C854B65C-5FE9-4E1A-8A98-C2137C9C48BE}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{C8DCFB5E-08E6-4846-830E-E1D56E98700F}I:\progr\winamp\winamp.exe" = protocol=17 | dir=in | app=i:\progr\winamp\winamp.exe |
"UDP Query User{C9E61D69-7580-464F-B38E-9B91BD6A2992}I:\games\wow\backgrounddownloader.exe" = protocol=17 | dir=in | app=i:\games\wow\backgrounddownloader.exe |
"UDP Query User{CBE516B9-1A09-4D87-B221-BC212B8B7B54}G:\programme\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=g:\programme\mozilla firefox\firefox.exe |
"UDP Query User{D8D1AD99-1249-4E9C-8794-F1076B73EB89}C:\windows\system32\ftp.exe" = protocol=17 | dir=in | app=c:\windows\system32\ftp.exe |
"UDP Query User{E17D8665-80BD-4CDA-BB81-EEE3CF07F91C}G:\games\xfire\xfire.exe" = protocol=17 | dir=in | app=g:\games\xfire\xfire.exe |
"UDP Query User{EC24BC8F-57B6-41DC-A9DE-1BF5D9CFACFD}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{FD129E22-291D-4D34-A372-AA56F63AA9BD}I:\games\world of warcraft public test\launcher.exe" = protocol=17 | dir=in | app=i:\games\world of warcraft public test\launcher.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1280E900-35DA-4E08-A700-B79A5B2B8532}" = Microsoft Antimalware Service DE-DE Language Pack
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0910-000001000000}" = 7-Zip 9.10 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86416025FF}" = Java(TM) 6 Update 25 (64-bit)
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{42738DB0-FC3E-4672-A99B-9372F5696E30}" = Microsoft Security Client
"{439760BC-7737-4386-9B1D-A90A3E8A22EA}" = Apple Mobile Device Support
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A3A4F4-B792-11D6-A78A-00B0D0160250}" = Java(TM) SE Development Kit 6 Update 25 (64-bit)
"{68660049-8D48-427C-9FF7-139D8340CDC0}" = MSVC80_x64
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{997C9EC4-B53D-479D-81B7-0AEC8D174BA1}" = iTunes
"{A1E85B9A-AFAD-4D38-AF01-6B020DD5213A}" = Logitech GamePanel Software 3.06.109
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C776F23B-8ACA-4287-9F65-461B2B1B29B4}" = Debugging Tools for Windows 64-bit
"{CA0D2F09-F811-48D4-843E-C87696C6A9D9}" = Bonjour
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client DE-DE Language Pack
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
"CBF192A85B624E32B8D19ADEEF2DCFC5BC3AA73A" = Windows-Treiberpaket - Nokia Modem (03/05/2008 3.7)
"E092B2EBF2FFE83E896F8F7F829A7B5D7D1B2F9D" = Windows-Treiberpaket - Nokia Modem (03/13/2008 6.86.0.1)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"UltSounds" = Windows-Soundschemas
"UltSounds2" = Ultimate Extras sounds from Microsoft® Tinker™
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1ADE23D7-7A1E-4AEC-BA5D-EB8A01BED943}" = DeepBurner v1.8.0.224
"{1E99F5D7-4262-4C7C-9135-F066E7485811}" = System Requirements Lab
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 26
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{3248F0A8-6813-11D6-A77B-00B0D0160040}" = Java(TM) 6 Update 4
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{419CF344-3D94-4DAD-99C8-EA7B00E5EA8B}" = Acronis*True*Image*Home
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA5B8A5-BEEF-4AD8-B11D-4443A042EA4F}" = Adobe Dreamweaver CS3
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6C29152D-3FF9-43B2-84E4-9B35FC0BF5C2}" = Vodafone Mobile Broadband
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6DED41BC-C9EF-4330-B4E5-46CB2C5C6E2D}" = No23 Recorder
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser und SDK
"{7596C248-4816-4C6F-8AAC-D8C81F2B4B49}" = HD View
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{7D386596-0E80-4808-8AAE-C1DDA8212F7F}" = Adobe Setup
"{82427977-8776-4087-90CA-9F65174D3C4D}" = Nokia Connectivity Cable Driver
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{901A0407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Outlook 2003
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}" = PixiePack Codec Pack
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Deutsch
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B48E264C-C8CD-4617-B0BE-46E977BAD694}" = ANNO 2070
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}" = PC Connectivity Solution
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C53CFB2A-B76B-4C8E-842F-9961EFE760EB}" = RSDLite
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CE246151-F0E8-ABC8-AEB2-7F3E188EFBF5}" = TweetDeck
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D5B18B60-4FC3-42AD-A629-9CA10ACC06CD}" = HTC Sync
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{D765F1CE-5AE5-4C47-B134-AE58AC474740}" = OpenOffice.org 3.1
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F11ADC64-C89E-47F4-A0B3-3665FF859397}" = WORLD IN CONFLICT
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Adobe_25db75244653b42cb93dc27939d1c0e" = Adobe Dreamweaver CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.9
"Ashampoo Burning Studio 6" = Ashampoo Burning Studio 6
"AVMFBox" = AVM FRITZ!Box Dokumentation
"AVMFBoxPrinter" = AVM FRITZ!Box Druckeranschluss
"CamStudio" = CamStudio
"CCleaner" = CCleaner (remove only)
"CurseClient" = Curse Client
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup" = DivX-Setup
"doubleTwist" = doubleTwist
"Driver Sweeper_is1" = Driver Sweeper 1.0
"ElsterFormular 11.5.1.4843" = ElsterFormular
"ESN Sonar-0.70.0" = ESN Sonar
"Exact Audio Copy" = Exact Audio Copy 0.99pb3
"FileZilla Client" = FileZilla Client 3.5.2
"FLVPlayer" = FLV Player 1.3.3
"GnuPG" = GNU Privacy Guard
"GPG4Win" = GnuPG For Windows
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"IrfanView" = IrfanView (remove only)
"KeePassPasswordSafe2_is1" = KeePass Password Safe 2.13
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.1.5 Standard
"Loki Browser Plugin" = Loki Browser Plugin
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.0.6)" = Mozilla Firefox (3.0.6)
"Mozilla Thunderbird (6.0)" = Mozilla Thunderbird (6.0)
"MPE" = MyPhoneExplorer
"NetLimiter 2 Pro" = NetLimiter 2 Pro (remove only)
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"Origin" = Origin
"Picasa 3" = Picasa 3
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 6.0" = RealPlayer
"Totalcmd" = Total Commander (Remove or Repair)
"TrueCrypt" = TrueCrypt
"TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1" = TweetDeck
"Veetle TV" = Veetle TV 0.9.16
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VideoLAN VLC media player 0.8.6h
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"XMedia Recode" = XMedia Recode 3.0.0.0
"Xvid_is1" = Xvid 1.1.3 final uninstall
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 05.02.2012 09:37:54 | Computer Name = Boss-PC | Source = Microsoft-Windows-RestartManager | ID = 10006
Description =
Error - 05.02.2012 09:38:34 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:38:43 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:38:45 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:39:52 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:41:02 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:46:23 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:49:10 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 05.02.2012 09:50:15 | Computer Name = Boss-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 06.02.2012 11:44:14 | Computer Name = Boss-PC | Source = Application Hang | ID = 1002
Description = Programm firefox.exe, Version 10.0.0.4411 arbeitet nicht mehr mit
Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet
"Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über
das Problem zu suchen. Prozess-ID: 3f0 Anfangszeit: 01cce4e58fc76bcb Zeitpunkt der
Beendigung: 64
[ NetLimiter Events ]
Error - 08.08.2008 05:27:52 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 10.08.2008 07:10:49 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 10.08.2008 18:06:59 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 11.08.2008 06:32:55 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 12.08.2008 06:28:17 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 12.08.2008 18:07:27 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 13.08.2008 06:50:49 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 13.08.2008 08:30:00 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 14.08.2008 06:32:18 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
Error - 28.09.2009 08:36:05 | Computer Name = Boss-PC | Source = NetLimiter 2 | ID = 1000
Description =
[ System Events ]
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 06.02.2012 11:08:51 | Computer Name = Boss-PC | Source = Service Control Manager | ID = 7026
Description =
< End of report >
Code:
ATTFilter OTL logfile created on: 06.02.2012 17:39:33 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Andreas\Desktop 64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 1,77 Gb Available Physical Memory | 44,17% Memory free 8,21 Gb Paging File | 5,84 Gb Available in Paging File | 71,12% Paging File free Paging file location(s): i:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 73,24 Gb Total Space | 7,57 Gb Free Space | 10,34% Space Free | Partition Type: NTFS Drive D: | 48,83 Gb Total Space | 37,96 Gb Free Space | 77,74% Space Free | Partition Type: NTFS Drive E: | 100,21 Gb Total Space | 20,86 Gb Free Space | 20,82% Space Free | Partition Type: NTFS Drive G: | 66,49 Gb Total Space | 16,81 Gb Free Space | 25,27% Space Free | Partition Type: NTFS Drive H: | 98,12 Gb Total Space | 53,87 Gb Free Space | 54,91% Space Free | Partition Type: NTFS Drive I: | 134,76 Gb Total Space | 35,54 Gb Free Space | 26,37% Space Free | Partition Type: NTFS Computer Name: BOSS-PC | User Name: Boss | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Andreas\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone) PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) PRC - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe () PRC - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe (Viewpoint Corporation) ========== Modules (No Company Name) ========== MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\pdf.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\avutil-51.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\avformat-53.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\avcodec-53.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\Application\16.0.912.77\gcswf32.dll () MOD - C:\Users\Andreas\AppData\Local\Google\Chrome\APPLIC~1\160912~1.77\gcswf32.dll () MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll () MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () MOD - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe () ========== Win32 Services (SafeList) ========== SRV:64bit: - (NisSrv) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe (Microsoft Corporation) SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (PassThru Service) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (VmbService) -- C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (npggsvc) -- C:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.) SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe () SRV - (nSvcIp) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe () SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation) SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation) SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) SRV - (Viewpoint Manager Service) -- C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe (Viewpoint Corporation) SRV - (MSCSPTISRV) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation) SRV - (SPTISRV) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation) SRV - (PACSPTISVR) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe () ========== Driver Services (SafeList) ========== DRV:64bit: - (iPodDrv) -- C:\Windows\SysNative\drivers\iPodDrv.sys (Windows (R) Codename Longhorn DDK provider) DRV:64bit: - (taphss) -- C:\Windows\SysNative\DRIVERS\taphss.sys (AnchorFree Inc) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\DRIVERS\NisDrvWFP.sys (Microsoft Corporation) DRV:64bit: - (huawei_enumerator) -- C:\Windows\SysNative\DRIVERS\ew_jubusenum.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\DRIVERS\ewusbmdm.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (ew_hwusbdev) -- C:\Windows\SysNative\DRIVERS\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (tbhsd) -- C:\Windows\SysNative\drivers\tbhsd.sys (RapidSolution Software AG) DRV:64bit: - (vodafone_K3805-z_dc_enum) -- C:\Windows\SysNative\DRIVERS\vodafone_K3805-z_dc_enum.sys (Vodafone) DRV:64bit: - (htcnprot) -- C:\Windows\SysNative\DRIVERS\htcnprot.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (Motousbnet) -- C:\Windows\SysNative\DRIVERS\Motousbnet.sys (Motorola) DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\DRIVERS\atipmdag.sys (ATI Technologies Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\DRIVERS\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.) DRV:64bit: - (motusbdevice) -- C:\Windows\SysNative\DRIVERS\motusbdevice.sys (Motorola Inc) DRV:64bit: - (PSSDK42) -- C:\Windows\SysNative\Drivers\pssdk42.sys (microOLAP Technologies LTD) DRV:64bit: - (LGVirHid) -- C:\Windows\SysNative\drivers\LGVirHid.sys (Logitech Inc.) DRV:64bit: - (LGBusEnum) -- C:\Windows\SysNative\drivers\LGBusEnum.sys (Logitech Inc.) DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\DRIVERS\ewusbnet.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (hwusbfake) -- C:\Windows\SysNative\DRIVERS\ewusbfake.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (motmodem) -- C:\Windows\SysNative\DRIVERS\motmodem.sys (Motorola) DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation) DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys () DRV:64bit: - (motccgp) -- C:\Windows\SysNative\DRIVERS\motccgp.sys (Motorola) DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\DRIVERS\LMouFilt.Sys (Logitech, Inc.) DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\DRIVERS\LHidFilt.Sys (Logitech, Inc.) DRV:64bit: - (HTCAND64) -- C:\Windows\SysNative\Drivers\ANDROIDUSB.sys (HTC, Corporation) DRV:64bit: - (VClone) -- C:\Windows\SysNative\DRIVERS\VClone.sys (Elaborate Bytes AG) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (MotDev) -- C:\Windows\SysNative\DRIVERS\motodrv.sys (Motorola Inc) DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\DRIVERS\usb8023x.sys (Microsoft Corporation) DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation) DRV:64bit: - (UsbserFilt) -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64j.sys (Nokia) DRV:64bit: - (nmwcdx64) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia) DRV:64bit: - (upperdev) -- C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64.sys (Nokia) DRV:64bit: - (nmwcdcx64) -- C:\Windows\SysNative\drivers\ccdcmbox64.sys (Nokia) DRV:64bit: - (motccgpfl) -- C:\Windows\SysNative\DRIVERS\motccgpfl.sys (Motorola) DRV:64bit: - (BTCFilterService) -- C:\Windows\SysNative\DRIVERS\motfilt.sys (Motorola Inc) DRV:64bit: - (pccsmcfd) -- C:\Windows\SysNative\DRIVERS\pccsmcfdx64.sys (Nokia) DRV:64bit: - (FTDIBUS) -- C:\Windows\SysNative\drivers\ftdibus.sys (FTDI Ltd.) DRV:64bit: - (FTSER2K) -- C:\Windows\SysNative\drivers\ftser2k.sys (FTDI Ltd.) DRV:64bit: - (lgmcunic) LGE Mobile USB WMC Ethernet ELDA (WDM) -- C:\Windows\SysNative\DRIVERS\lgmcunic.sys (MCCI Corporation) DRV:64bit: - (lgmcobex) -- C:\Windows\SysNative\DRIVERS\lgmcobex.sys (MCCI Corporation) DRV:64bit: - (lgmcnd5) LGE Mobile USB WMC Ethernet ELDA (NDIS) -- C:\Windows\SysNative\DRIVERS\lgmcnd5.sys (MCCI Corporation) DRV:64bit: - (lgmcmdm) -- C:\Windows\SysNative\DRIVERS\lgmcmdm.sys (MCCI Corporation) DRV:64bit: - (lgmcmgmt) LGE Mobile USB WMC Device Management Drivers (WDM) -- C:\Windows\SysNative\DRIVERS\lgmcmgmt.sys (MCCI Corporation) DRV:64bit: - (lgmcbus) LGE Mobile driver (WDM) -- C:\Windows\SysNative\DRIVERS\lgmcbus.sys (MCCI Corporation) DRV:64bit: - (lgmcmdfl) -- C:\Windows\SysNative\DRIVERS\lgmcmdfl.sys (MCCI Corporation) DRV:64bit: - (MotoSwitchService) -- C:\Windows\SysNative\DRIVERS\motswch.sys (Motorola) DRV:64bit: - (SiFilter) -- C:\Windows\SysNative\DRIVERS\SiWinAcc.sys (Silicon Image, Inc) DRV:64bit: - (SiRemFil) -- C:\Windows\SysNative\DRIVERS\SiRemFil.sys (Silicon Image, Inc) DRV:64bit: - (SI3132) -- C:\Windows\SysNative\DRIVERS\SI3132.sys (Silicon Image, Inc) DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.) DRV:64bit: - (timounter) -- C:\Windows\SysNative\DRIVERS\timntr.sys (Acronis) DRV:64bit: - (tifsfilter) -- C:\Windows\SysNative\DRIVERS\tifsfilt.sys (Acronis) DRV:64bit: - (snapman) -- C:\Windows\SysNative\DRIVERS\snapman.sys (Acronis) DRV:64bit: - (btusbflt) -- C:\Windows\SysNative\drivers\btusbflt.sys (Broadcom Corporation.) DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\DRIVERS\ASACPI.sys () DRV - (NPPTNT2) -- C:\Windows\SysWOW64\npptNT2.sys (INCA Internet Co., Ltd.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: I:\progr\jr6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not found FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: G:\programme\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2910: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@research.microsoft.com/HDView: C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll (Microsoft Research) FF - HKLM\Software\MozillaPlugins\@skyhookwireless.com/LokiPlugin: C:\Program Files (x86)\Skyhook Wireless\Loki Browser Plugin\versions\3.1.0.05\nploki.dll (Skyhook Wireless) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.16: C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.16: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.16: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Media Player\npViewpoint.dll () FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ff-bmboc@bytemobile.com: I:\progr\vf-web\Optimization Client\addon\ FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.6\extensions\\Components: G:\programme\Mozilla Firefox\components [2012.02.01 21:47:42 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.6\extensions\\Plugins: G:\programme\Mozilla Firefox\plugins [2012.01.13 00:36:46 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 6.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011.09.09 15:49:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 6.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2012.01.13 00:36:46 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2007.01.30 10:59:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Boss\AppData\Roaming\mozilla\Firefox\Profiles\yf0p6cos.default\extensions File not found (No name found) -- G:\PROGRA~1\MOZILL~1\EXTENSIONS\INSPECTOR@MOZILLA.ORG File not found (No name found) -- G:\PROGRA~1\MOZILL~1\EXTENSIONS\TALKBACK@MOZILLA.ORG O1 HOSTS File: ([2008.10.10 19:43:51 | 000,000,759 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\progr\jr6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (PodcastBHO Class) - {65134FDF-F8A5-4B3D-91D9-CDF273CFD578} - C:\Program Files (x86)\Common Files\doubleTwist\IEPodcastPlugin.dll (doubleTwist Corporation) O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found. O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4:64bit: - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.) O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.) O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.) O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdcBase.exe (Microsoft Corporation) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () O4 - HKCU..\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler File not found O4 - HKCU..\Run: [TVgenial] "G:\programme\tvgenial\TVgenial.exe" -d File not found O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O8:64bit: - Extra context menu item: &Alles mit FlashGet laden - G:\programme\flashget\jc_all.htm File not found O8:64bit: - Extra context menu item: &Mit FlashGet laden - G:\programme\flashget\jc_link.htm File not found O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O8:64bit: - Extra context menu item: Alles mit FDM herunterladen - file://G:\programme\Free Download Manager\dlall.htm File not found O8:64bit: - Extra context menu item: Auswahl mit FDM herunterladen - file://G:\programme\Free Download Manager\dlselected.htm File not found O8:64bit: - Extra context menu item: Datei mit FDM herunterladen - file://G:\programme\Free Download Manager\dllink.htm File not found O8:64bit: - Extra context menu item: Download all with Free Download Manager - file://G:\programme\Free Download Manager\dlall.htm File not found O8:64bit: - Extra context menu item: Download selected with Free Download Manager - file://G:\programme\Free Download Manager\dlselected.htm File not found O8:64bit: - Extra context menu item: Download video with Free Download Manager - file://G:\programme\Free Download Manager\dlfvideo.htm File not found O8:64bit: - Extra context menu item: Download with Free Download Manager - file://G:\programme\Free Download Manager\dllink.htm File not found O8:64bit: - Extra context menu item: Videos mit FDM herunterladen - file://G:\programme\Free Download Manager\dlfvideo.htm File not found O8 - Extra context menu item: &Alles mit FlashGet laden - G:\programme\flashget\jc_all.htm File not found O8 - Extra context menu item: &Mit FlashGet laden - G:\programme\flashget\jc_link.htm File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Alles mit FDM herunterladen - file://G:\programme\Free Download Manager\dlall.htm File not found O8 - Extra context menu item: Auswahl mit FDM herunterladen - file://G:\programme\Free Download Manager\dlselected.htm File not found O8 - Extra context menu item: Datei mit FDM herunterladen - file://G:\programme\Free Download Manager\dllink.htm File not found O8 - Extra context menu item: Download all with Free Download Manager - file://G:\programme\Free Download Manager\dlall.htm File not found O8 - Extra context menu item: Download selected with Free Download Manager - file://G:\programme\Free Download Manager\dlselected.htm File not found O8 - Extra context menu item: Download video with Free Download Manager - file://G:\programme\Free Download Manager\dlfvideo.htm File not found O8 - Extra context menu item: Download with Free Download Manager - file://G:\programme\Free Download Manager\dllink.htm File not found O8 - Extra context menu item: Videos mit FDM herunterladen - file://G:\programme\Free Download Manager\dlfvideo.htm File not found O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: fritz.box ([]* in Local intranet) O15 - HKCU\..Trusted Ranges: Range1 ([*] in Local intranet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/common/asusTek_sys_ctrl.cab (asusTek_sysctrl Class) O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} hxxp://www.burj-al-arab.com/flashcab/ipix/ipixx.cab (iPIX ActiveX Control) O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} hxxp://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab (Reg Error: Key error.) O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.8.cab (DLM Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10) O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Java Plug-in 1.6.0_04) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (RealPlayer G2 Control) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} hxxp://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx (CRLDownloadWrapper Class) O16 - DPF: {DE22A7AB-A739-4C58-AD52-21F9CD6306B7} hxxp://download.microsoft.com/download/7/E/6/7E6A8567-DFE4-4624-87C3-163549BE2704/clearadj.cab (CTAdjust Class) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EA225B3F-D7B3-44A3-9371-D4387BB0076E}: NameServer = 8.8.8.8,8.8.4.4 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18:64bit: - Protocol\Filter\text/xml - No CLSID value found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O22:64bit: - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\SysNative\DreamScene.dll (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img17.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img17.jpg O30:64bit: - LSA: Authentication Packages - (relog_ap) - C:\Windows\SysNative\relog_ap.dll (Acronis) O30 - LSA: Authentication Packages - (relog_ap) -C:\Windows\SysWow64\relog_ap.dll (Acronis) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.12.23 18:54:16 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (OODBS) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012.02.05 16:21:14 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0 [2012.02.05 15:14:02 | 000,000,000 | ---D | C] -- C:\Users\Boss\AppData\Roaming\DeepBurner [2012.02.05 14:36:57 | 000,000,000 | ---D | C] -- C:\Users\Boss\AppData\Local\Deployment [2012.02.05 14:34:15 | 000,000,000 | ---D | C] -- C:\Users\Boss\AppData\Roaming\Logitech [2012.02.05 14:33:50 | 000,000,000 | ---D | C] -- C:\Users\Boss\AppData\Local\Salling_Software_AB [2012.02.05 14:33:41 | 000,000,000 | ---D | C] -- C:\Users\Boss\AppData\Roaming\Apple Computer [2012.01.22 23:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin [2012.01.22 23:43:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin [2012.01.12 11:26:16 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2012.01.12 11:26:15 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll [2012.01.11 13:03:27 | 001,570,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2012.01.11 13:03:26 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2012.01.11 13:03:26 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll [2012.01.11 13:03:26 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll [2012.01.11 13:03:16 | 001,585,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2012.01.11 13:03:15 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmm.dll [2012.01.11 13:03:15 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciwave.dll [2012.01.11 13:03:15 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciseq.dll [2012.01.11 13:03:13 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcicda.dll [2012.01.11 13:03:13 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciseq.dll [2012.01.11 13:03:12 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2012.01.11 13:03:09 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll [2012.01.11 13:03:09 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll [3 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.02.06 17:25:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1005UA.job [2012.02.06 17:11:08 | 000,003,680 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012.02.06 17:11:08 | 000,003,680 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012.02.06 17:02:00 | 000,001,128 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1001UA.job [2012.02.06 16:58:00 | 000,001,112 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.02.06 16:58:00 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.02.06 16:25:16 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1005Core.job [2012.02.06 16:13:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.02.06 16:12:57 | 4293,451,776 | -HS- | M] () -- C:\hiberfil.sys [2012.02.05 15:17:09 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2012.02.05 02:36:37 | 000,001,076 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1001Core.job [2012.01.23 01:40:02 | 001,487,716 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.01.23 01:40:02 | 000,644,348 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.01.23 01:40:02 | 000,609,368 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.01.23 01:40:02 | 000,132,718 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.01.23 01:40:02 | 000,109,644 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.01.22 23:43:25 | 000,000,596 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk [2012.01.21 13:41:13 | 000,000,034 | ---- | M] () -- C:\Windows\SysWow64\everest_cpl.ini [2012.01.16 02:06:21 | 000,000,737 | ---- | M] () -- C:\Users\Public\Desktop\ElsterFormular.lnk [3 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.02.06 16:20:09 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1005UA.job [2012.02.06 16:20:09 | 000,001,068 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2296755919-1659602251-94568991-1005Core.job [2012.02.06 16:12:57 | 4293,451,776 | -HS- | C] () -- C:\hiberfil.sys [2012.01.22 23:43:25 | 000,000,596 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk [2012.01.16 02:06:21 | 000,000,737 | ---- | C] () -- C:\Users\Public\Desktop\ElsterFormular.lnk [2011.09.30 00:20:18 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2011.08.03 02:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2010.12.31 11:48:56 | 000,208,552 | R--- | C] () -- C:\ProgramData\DeviceManager.xml.rc4 [2010.10.05 19:21:06 | 000,000,425 | ---- | C] () -- C:\Windows\BRWMARK.INI [2010.10.05 19:21:06 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2010.09.26 18:18:22 | 000,000,133 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2010.04.30 13:14:05 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2010.04.30 13:12:56 | 000,001,035 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2010.04.13 16:03:35 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010.03.04 15:17:51 | 000,000,125 | -HS- | C] () -- C:\ProgramData\.zreglib [2009.11.25 12:40:50 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2009.05.27 15:53:04 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll [2009.05.27 15:52:45 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin [2009.05.27 15:52:28 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2008.07.23 12:40:12 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin [2008.05.26 00:24:04 | 000,765,952 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2008.05.26 00:24:04 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2008.05.01 18:13:13 | 000,000,000 | ---- | C] () -- C:\Windows\oodcnt.INI [2008.03.21 20:17:55 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini [2008.01.05 14:10:32 | 000,005,824 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS [2007.10.22 23:31:57 | 000,000,284 | ---- | C] () -- C:\Windows\game.ini [2007.09.20 21:27:44 | 000,280,904 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2007.07.06 17:53:51 | 001,510,554 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2007.07.05 14:05:49 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [2007.06.17 15:03:11 | 000,000,558 | ---- | C] () -- C:\Windows\DFC.INI [2007.06.13 19:53:19 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll [2007.06.13 19:53:19 | 000,013,632 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys [2007.06.11 20:35:56 | 000,003,584 | ---- | C] () -- C:\Users\Boss\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007.04.06 14:50:59 | 000,000,034 | ---- | C] () -- C:\Windows\SysWow64\everest_cpl.ini [2007.04.01 01:35:26 | 000,000,170 | ---- | C] () -- C:\Windows\wininit.ini [2007.03.28 16:45:26 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI [2007.03.21 16:10:43 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\CSDLGE1LIB.dll [2007.03.15 19:00:10 | 000,532,480 | ---- | C] () -- C:\Windows\SysWow64\CddbPlaylist2Sony.dll [2007.01.27 16:17:56 | 000,003,332 | ---- | C] () -- C:\Windows\mozver.dat [2007.01.27 12:20:52 | 000,001,460 | ---- | C] () -- C:\Users\Boss\AppData\Local\d3d9caps64.dat [2006.11.02 16:35:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006.11.02 13:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2006.11.02 13:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2006.11.02 13:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2006.11.02 10:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2003.02.20 16:53:42 | 000,005,702 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI [2001.11.19 20:05:18 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys ========== LOP Check ========== [2007.03.14 20:35:58 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\Azureus [2012.02.05 15:16:47 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\DeepBurner [2007.03.28 16:45:54 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\IE7pro [2007.03.21 16:17:05 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\LGSync [2008.05.18 12:42:02 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\Locktime [2007.03.14 22:14:05 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\MusicIP [2007.05.02 11:31:24 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\Nokia [2007.05.05 15:19:22 | 000,000,000 | ---D | M] -- C:\Users\Boss\AppData\Roaming\PC Suite [2012.02.05 15:17:09 | 000,032,602 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 508 bytes -> C:\ProgramData\TEMP:05EE1EEF < End of report > |
| Themen zu Aus Sicherheitsgründen wurde Ihr System blockiert (50 Euro Virus / Trojaner etc) |
| 0x00000001, 64-bit, 7-zip, alternate, bho, blockiert, bonjour, browser, downloader, error, eset nod32, euro, flash player, free download, google, google earth, hotspot, hotspot shield, iexplore.exe, install.exe, intranet, kaspersky, microsoft security, mozilla, mozilla thunderbird, myphoneexplorer, nvidia update, object, origin, picasa, plug-in, registry, scan, security, software, studio, svchost.exe, system, taskmanager, teamspeak, total commander, trojaner, viren, virus, vista, vodafone, warnhinweis, wurde ihr |
Baum-Darstellung