| |
| |||||||
Log-Analyse und Auswertung: Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
15.04.2012, 06:46
| #1 |
| |  Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen Hallo, Ich habe auch das schon relativ bekannte Problem, mit dem nicht schließbaren Fenster aufdem etwas davon steht, mein Computer wäre aufgrund illegaler Dateien gesperrt und ich hätte 100€ per PaySave-Card zu zahlen. Hier gibt es ja schon einige Themen in denen dieses Problem behandelt wird. Leider kann ich nicht in diese Themen posten. Ich habe auch schon mit OTL meinen PC gescannt. Im Anhang befinden sich die Extras.Txd und die OTL.Txd. Es wäre wirklich klasse, wenn mir jemand helfen könnte. Danke schonmal im Voraus. Gruß The_Elm Extras.Txd: OTL Extras logfile created on: 15.04.2012 07:34:30 - Run 2 OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\Sedrick\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 2,32 Gb Available Physical Memory | 77,27% Memory free 6,19 Gb Paging File | 5,73 Gb Available in Paging File | 92,47% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 218,24 Gb Total Space | 35,52 Gb Free Space | 16,28% Space Free | Partition Type: NTFS Drive D: | 14,63 Gb Total Space | 8,90 Gb Free Space | 60,87% Space Free | Partition Type: FAT32 Drive E: | 5,40 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: SEDRICK-PC | User Name: Sedrick | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{091B9897-F4C6-45E0-8FAF-A02939068045}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{15B2D588-0307-4D93-94A2-F577B2DE299A}" = lport=445 | protocol=6 | dir=in | app=system | "{23063EF6-6989-4712-A636-642FE4F0B6C1}" = lport=137 | protocol=17 | dir=in | app=system | "{231EB226-5926-44FB-BD64-0EDF19F06050}" = lport=2869 | protocol=6 | dir=in | app=system | "{25373152-43BB-4541-9A62-E299339F3511}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{2659F04F-E4F2-4FE7-8625-BDA38E6A57D6}" = rport=10243 | protocol=6 | dir=out | app=system | "{2A70EB20-3A1A-4967-A03D-15042013C765}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{2F75FCC6-8AA0-45B5-A4DE-4C821C7E0909}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{37D93F10-12B6-4958-A0AB-63CD975CF4AC}" = rport=445 | protocol=6 | dir=out | app=system | "{386DC019-F07B-4799-99B0-827BA5983832}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{3920F6FD-57C1-4C94-93FB-859C4C79EECE}" = rport=137 | protocol=17 | dir=out | app=system | "{3C370D2B-6428-481E-BC43-A8FFB884417F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{4F2DDCDA-0107-416D-9DCE-EDED43BB6E21}" = rport=138 | protocol=17 | dir=out | app=system | "{5232D9D1-3E1F-4170-BEE1-7C04FBECBE4D}" = lport=2869 | protocol=6 | dir=in | app=system | "{53628884-E854-4BCE-9E2D-2D115A2E61D7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | "{55FB642F-B80D-472F-8BC9-140B3031E30F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{6343E54F-6D2D-4687-A97D-D6CBD2CCA0BD}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | "{6F151373-376B-4047-BB30-2F93D925EF18}" = lport=138 | protocol=17 | dir=in | app=system | "{76E2D834-99BA-422A-BF53-035E376BBC8A}" = lport=49161 | protocol=6 | dir=in | name=akamai netsession interface | "{791B80E6-9D81-46B3-9C45-DB206480C0EF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{80BB1951-AB4E-4473-8D50-B88887F91847}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{848A3C47-790C-4714-82A0-8605836808B7}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | "{94F452D0-68D5-4043-A8C1-1D13D034D250}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{983CAC42-AF68-409B-94BD-2865482AD7EC}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | "{9B82F1F8-44BD-4C4D-81DB-CC57AEDFC10F}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{AF29DAB4-A49C-4723-A19A-12DD9C6FD118}" = lport=139 | protocol=6 | dir=in | app=system | "{BE48534F-363E-4B6C-8F52-31362F43F901}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C0A71A4C-7345-4F17-AF3D-39578E71B2B8}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{C2E8EF3E-8E30-499B-8A7F-47F58A8BC11C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C4EE63CE-A8E7-45C1-9F99-FF5B487469EF}" = rport=139 | protocol=6 | dir=out | app=system | "{C7E1159C-06B6-4F74-855F-68AA62B2C2A9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{CBE9E4C6-DE49-4509-827E-C3C6B6DBCB07}" = lport=10243 | protocol=6 | dir=in | app=system | "{DF48B5A0-7B7A-4686-8EEF-8CAD7EF5AC48}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0A7D1147-8CA4-4271-914A-7F2DF2B2668F}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{0B716E50-A33D-4ACD-A486-52097D16BE26}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe | "{100B6BC3-8FD9-4589-8476-F6F101F95C41}" = protocol=17 | dir=in | app=c:\program files\gamigo\heroes in the sky\his.exe | "{107B8527-4475-4A57-B164-017F3C033D44}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe | "{13E8A5B5-D2AC-4C39-B5F4-52320D765632}" = protocol=17 | dir=in | app=c:\program files\icq7.6\icq.exe | "{14BA3E42-F8CE-48D3-9598-84C23AAC3125}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{17A44246-DC4B-4A8A-9F02-6342239BD2C6}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "{19AF0C34-612E-411C-9F01-7F79FC94803E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{1DF14AF9-B84E-4934-B5A7-90317A8B1ECD}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{1F2B0DF2-2AA7-45A5-A790-E53A7F5FF738}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe | "{223FB57C-8F8D-48DC-8ECE-FEDD4763E4A3}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe | "{24A401FE-291A-4B08-8E73-A36A3DFFB935}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{25529106-1536-4893-910C-70AC41AB1232}" = protocol=17 | dir=in | app=c:\program files\icq7.6\icq.exe | "{2A7C0080-9E86-493B-B684-5B50BD684241}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe | "{2DED8E63-9786-4C4E-A2CE-C7C6DBFC0B73}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe | "{2EC2609C-479B-4D3B-91E4-1C455741A56F}" = protocol=6 | dir=in | app=c:\program files\gamigo\heroes in the sky\his.exe | "{30B5A869-96CE-4C1E-8C90-42665D5FC0F7}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\umi.exe | "{35DB56AE-9420-4862-BD0A-FA7810FEF07A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{3647873E-6E89-4821-ABB8-E74359CB91FE}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{37EE2918-9B93-47A6-A0D9-F72334E7B470}" = protocol=17 | dir=in | app=c:\program files\gamespy arcade\aphex.exe | "{392E58EF-6B79-4EC1-A700-06E987AA27AF}" = protocol=6 | dir=in | app=c:\program files\gamespy arcade\aphex.exe | "{475B57C7-8E86-4F0B-BB09-310375E725B4}" = protocol=6 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | "{48E58278-4BFC-413C-846D-883DA8237488}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{49020D69-82D7-4F44-8A08-8F3036E89D25}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{4A59A2FB-00A8-4CA0-94DC-A1BCDF384D87}" = protocol=6 | dir=in | app=c:\program files\icq7.6\icq.exe | "{50B9BF63-B0D6-4A18-BEA0-DCEBAF09120E}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\umi.exe | "{5A3FBB9D-7ED3-48F4-A4E5-83B8F65DF919}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe | "{5C98FF96-9A2D-40AE-B82C-DB81CA97989A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{606EFBBF-E737-45E0-BB53-DB9F1F762EB3}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe | "{6282903A-8C75-4B10-A334-7EB9F027AE9A}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe | "{640BD34D-9908-4690-AF42-8CD191F4062D}" = protocol=17 | dir=in | app=c:\users\sedrick\appdata\local\akamai\netsession_win.exe | "{64B81524-484A-4847-A716-04709F8D8144}" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield 2\bf2.exe | "{70C97E5E-B2E2-4417-BD9C-18069E8275D0}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe | "{71ABCE86-BDC9-4010-8DDA-15B611B78BEA}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\rm.exe | "{725F63A1-4E07-4F76-A17A-B8A3F7436544}" = protocol=6 | dir=in | app=c:\users\sedrick\appdata\local\akamai\netsession_win.exe | "{728E7236-C68C-4EFA-9780-205A2C10C1BE}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe | "{733BAFA1-6A13-4325-8448-AE5956A01E5F}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe | "{73CA17A4-3B00-4B0F-9171-4AECEFBD7E6B}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\rm.exe | "{779E6A8B-CCFA-4F66-A11A-BDDEC7070625}" = protocol=6 | dir=out | app=system | "{7989ACC1-2026-4CB4-8071-5A3D9EBBCBFD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{7D9C0F28-0052-4B62-988D-609C007F49FA}" = protocol=6 | dir=in | app=c:\program files\icq7.6\icq.exe | "{807D387C-63AD-4D4B-88C7-B4D382F3240B}" = protocol=17 | dir=in | app=c:\program files\kalypso\sins of a solar empire\sins of a solar empire.exe | "{82887D34-31C2-4182-A0CC-4C54CB1D88BA}" = protocol=17 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | "{84508CDC-6F62-467F-86A1-30C131759ABB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{885AAAC8-04BF-4037-8DC3-21C47598330B}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe | "{88C7D1B4-169C-4134-8D93-3E5F3C9B9081}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{9D1E4E18-FFC4-4A85-96E3-E2F9D0012E6E}" = protocol=17 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | "{A0D3F3DE-01F9-4391-9D51-C91EAE88C3FE}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\videospin.exe | "{A9E4F678-7013-48D1-A9A1-97B0088C4BCE}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe | "{ADA5E328-6E8C-4A60-8C73-B4742AB2F38B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{AE01EBE8-159B-4BCC-966A-1F96BB6D8ABC}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\videospin.exe | "{B493F641-2262-4FB0-8301-3B43E221542C}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{B76D4C4F-0C80-4E1E-A297-6D33FB8BFB84}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{C4BE7B3B-8FA2-4ED5-AAF2-2B124134BFD9}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "{C8A0709A-3702-4C1F-8DC3-AE5FC6EAEF6C}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe | "{CAFDBF65-9CED-417B-9F68-ED7F83FE97E5}" = dir=out | app=c:\program files\eslwire\wire.exe | "{CB6E71DD-F8F3-47D9-A99C-CEF5D51B08A5}" = dir=in | app=c:\program files\eslwire\wire.exe | "{CD0ABD42-CCE2-4F50-AE32-159F93F5C593}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe | "{CEB9BCA3-7796-4008-B232-ECC4AAA53177}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{D587CAEB-537C-4AA7-BCF3-92AD347497C3}" = protocol=6 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2updater.exe | "{D79E7449-813B-43DE-B4F8-5B0771458264}" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield 2\bf2.exe | "{DF16343A-BC31-41E8-8AB4-7B16512E22E2}" = protocol=17 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2updater.exe | "{E6DCD635-3551-4354-85EC-536089917C3C}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe | "{E9FF547B-A7FD-4518-9519-33CDD0E4DF40}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{EC191273-7EEE-460F-B4CE-5508BD5F9F4C}" = protocol=6 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | "{ED7E7C88-63DB-44E3-8E40-DD226865D486}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe | "{EE2C39E7-3C7B-442C-BABB-57EC245F0CA5}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe | "{F0E788E9-816A-4D64-BAC3-044D9B1A9D24}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe | "{F0F2B637-C35C-462E-9498-07371FEADFD5}" = protocol=6 | dir=in | app=c:\program files\kalypso\sins of a solar empire\sins of a solar empire.exe | "{F51BB663-1A61-4211-8FD8-64FE87298FF9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{F5424769-FCC4-433E-A76B-A77D10A81D0A}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{FB4CD585-3A99-4235-9B82-84B0C2C6BF64}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe | "TCP Query User{028836F2-CD7D-41F5-95D2-289921E677D6}C:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe | "TCP Query User{06156DBC-2BDD-4EFF-B00F-680265DAF7D2}C:\users\sedrick\desktop\empire earth\empire earth.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\empire earth\empire earth.exe | "TCP Query User{0A060876-E98B-44E8-B52B-494C5AAB68F0}C:\gamecq\.cache\darkspacebeta\darkspaceclient.exe" = protocol=6 | dir=in | app=c:\gamecq\.cache\darkspacebeta\darkspaceclient.exe | "TCP Query User{0AA25535-EDFA-4C15-8B33-7FFC3F2F4EDD}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "TCP Query User{0AEF4DFE-4F12-4005-8202-5EBF93AC1CF5}C:\program files\z8games\crossfire\cf_g4box.exe" = protocol=6 | dir=in | app=c:\program files\z8games\crossfire\cf_g4box.exe | "TCP Query User{0B346440-86AD-407C-814B-459CFB48BFC8}C:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "TCP Query User{0B4E4FA0-1F5F-49F5-B8D2-FE1933F66F15}C:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_slim_eu.exe" = protocol=6 | dir=in | app=c:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_slim_eu.exe | "TCP Query User{0C156017-2D1D-4D2C-B6BF-3A897A647DF0}C:\users\sedrick\desktop\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\borderlands\binaries\borderlands.exe | "TCP Query User{0E5BFF61-25CF-4298-8321-B0BA91CF26DB}C:\alien arena 2008\crx.exe" = protocol=6 | dir=in | app=c:\alien arena 2008\crx.exe | "TCP Query User{0F53E234-4190-4EEA-90DB-DD2D10AC7CE4}C:\users\sedrick\desktop\spiele\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\warcraft iii\war3.exe | "TCP Query User{11F14C97-7491-46AA-8A1A-9FC758F046BB}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "TCP Query User{13FEE107-89F2-4A60-AEB9-97E52E474615}C:\users\sedrick\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\sedrick\program files\dna\btdna.exe | "TCP Query User{1473A76A-C111-4717-B5B0-7B3A389A79E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "TCP Query User{154D07D4-E634-4528-9456-F60CF8F2792C}C:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe | "TCP Query User{1D000122-8A5B-4079-ABE7-3D034168B7B6}C:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe" = protocol=6 | dir=in | app=c:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe | "TCP Query User{1ED3E50A-7FB2-4D1F-A239-A5C4C58775B7}C:\games\ngd studios\regnum online\liveserver\roclientgameex.exe" = protocol=6 | dir=in | app=c:\games\ngd studios\regnum online\liveserver\roclientgameex.exe | "TCP Query User{204C2CE0-DFC8-4CBB-B3E0-44021202045D}C:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=6 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "TCP Query User{208D4F49-EB1B-4009-AD0E-691953F86F84}C:\program files\sony\media go\mediago.exe" = protocol=6 | dir=in | app=c:\program files\sony\media go\mediago.exe | "TCP Query User{2148D8D4-A7E9-4DED-8025-3F47DE0B8582}C:\program files\stepmania cvs\program\stepmania.exe" = protocol=6 | dir=in | app=c:\program files\stepmania cvs\program\stepmania.exe | "TCP Query User{247DE97E-98B0-4DB8-BBE4-13547D1CF7DF}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe | "TCP Query User{263B9E68-E831-49C0-84A1-B4A7E7019D06}C:\users\sedrick\desktop\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\killing floor\system\killingfloor.exe | "TCP Query User{2666CC96-E03B-454D-A883-C62DA64D9536}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe | "TCP Query User{2E2C2960-F151-4A16-87C5-187D1A94C0BE}C:\program files\ea games\battlefield vietnam\bfvietnam.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield vietnam\bfvietnam.exe | "TCP Query User{2F335E2A-EA85-4AC4-9599-72FD9183058B}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | "TCP Query User{315A4176-BD94-4FA1-82BE-C3A1A9B94D40}C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe | "TCP Query User{348D2746-C8E7-495A-A6FA-DAC86376D7B9}C:\users\sedrick\desktop\spiele\killing floor1\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor1\system\killingfloor.exe | "TCP Query User{37217AA0-28D8-4E3F-AD79-DDDED6099206}C:\windows\system32\dpnsvr.exe" = protocol=6 | dir=in | app=c:\windows\system32\dpnsvr.exe | "TCP Query User{38B10AB9-0177-4C05-B09F-4FB4E94110A1}C:\users\sedrick\desktop\spiele\killing floor v1021\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor v1021\killing floor\system\killingfloor.exe | "TCP Query User{38E7A4C0-00F7-4823-9ACD-5F88381F42C1}C:\users\sedrick\appdata\local\temp\7zipsfx.000\cf_downloader.exe" = protocol=6 | dir=in | app=c:\users\sedrick\appdata\local\temp\7zipsfx.000\cf_downloader.exe | "TCP Query User{3B66F3B0-94AB-4507-9E13-AD8B316215B5}D:\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=d:\counter-strike source\hl2.exe | "TCP Query User{3B881A28-6F5C-412D-80C8-BD27EF07B9CD}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | "TCP Query User{3FEEFEA4-69F0-4A2D-9246-60BB5A085CBD}C:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe" = protocol=6 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe | "TCP Query User{40C9A0F8-E024-4A8F-8A03-6EFE839DD0FC}C:\program files\microsoft games\rise of nations\patriots.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\rise of nations\patriots.exe | "TCP Query User{49C7F73B-DE9B-4BB9-81E5-8BDA1D1FC11D}C:\program files\touchstone\turok\binaries\turokgame.exe" = protocol=6 | dir=in | app=c:\program files\touchstone\turok\binaries\turokgame.exe | "TCP Query User{4E5D9DAC-5F68-41E0-94E9-203E9F4ACE24}C:\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe | "TCP Query User{515DA16D-19C2-4ED6-8B7A-F09836598160}C:\program files\sixteen tons entertainment\emergency4\em4.exe" = protocol=6 | dir=in | app=c:\program files\sixteen tons entertainment\emergency4\em4.exe | "TCP Query User{51718E21-BC4A-4A0B-8591-DBE84599C8F8}C:\users\sedrick\desktop\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe | "TCP Query User{53558071-A488-48D4-B6F4-69E14D031E20}C:\users\sedrick\documents\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\documents\borderlands\binaries\borderlands.exe | "TCP Query User{536C7E37-CFDD-49E7-87F4-2E426563B24C}C:\program files\simbin\gt legends\gtldedicated.exe" = protocol=6 | dir=in | app=c:\program files\simbin\gt legends\gtldedicated.exe | "TCP Query User{5724687E-4604-4E86-B099-040F1E091182}C:\program files\poc\poc2008\poc3d2008.exe" = protocol=6 | dir=in | app=c:\program files\poc\poc2008\poc3d2008.exe | "TCP Query User{59EC7FE9-539D-4C61-B59B-4B6AB2895D79}C:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | "TCP Query User{5BA8F147-E1FC-4C40-9BA7-8B91F1D3B2A1}C:\program files\stepmania cvs\program\stepmania.exe" = protocol=6 | dir=in | app=c:\program files\stepmania cvs\program\stepmania.exe | "TCP Query User{5D17816F-3DF1-41A3-A2A2-B08E0B6ABFD8}C:\program files\icq7.6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.6\icq.exe | "TCP Query User{5FFA2910-B0D0-468E-84BF-175280A157AF}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe | "TCP Query User{61E4353A-4D5C-421E-B2C7-B2E2D107F36C}C:\program files\ubisoft\ghost recon advanced warfighter\graw.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\ghost recon advanced warfighter\graw.exe | "TCP Query User{62554DF3-744E-4EE1-B05E-36CD6F15DF88}C:\users\sedrick\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\sedrick\program files\dna\btdna.exe | "TCP Query User{640A2614-9FF6-4922-A864-32B0F0AEED0B}C:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe | "TCP Query User{64EF4BAF-E8B0-4BBC-9AA5-DC9A0E79984B}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=6 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin | "TCP Query User{687823F9-E277-41BC-8B02-0F32CDA44BFC}C:\users\sedrick\downloads\fogdownloader-rom_2_1_6_2049.exe" = protocol=6 | dir=in | app=c:\users\sedrick\downloads\fogdownloader-rom_2_1_6_2049.exe | "TCP Query User{71F039F5-FBB6-4E9B-82B1-BC482AFCB2AA}C:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe" = protocol=6 | dir=in | app=c:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe | "TCP Query User{73B80DD6-326E-4BDE-86F7-D8E1C8267741}C:\users\sedrick\desktop\enemy territory - quake wars demo 2\etqw.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\enemy territory - quake wars demo 2\etqw.exe | "TCP Query User{741C41D5-639C-42B4-A95F-13F644E2B1DC}C:\program files\ubisoft\ghost recon advanced warfighter\graw.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\ghost recon advanced warfighter\graw.exe | "TCP Query User{755FEF51-BBD8-454A-BDDD-8DC950367F55}C:\program files\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=6 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "TCP Query User{76DFDF80-08EE-4202-9B3D-399742A72D81}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | "TCP Query User{79C84452-C8AD-4245-A9CD-27D544A59EF3}C:\program files\ea games\battlefield 1942\bf1942.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield 1942\bf1942.exe | "TCP Query User{79D91CCA-2977-4A10-9D80-6E72A7D46983}C:\users\sedrick\desktop\sk-ver0.05d\silverknights.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\sk-ver0.05d\silverknights.exe | "TCP Query User{79FBE415-9259-4552-BAAE-726DC327E98D}C:\users\sedrick\desktop\spiele\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor\system\killingfloor.exe | "TCP Query User{7A7BAA38-150E-4A6D-A07D-8EC990F0C823}C:\program files\touchstone\turok\binaries\turokgame.exe" = protocol=6 | dir=in | app=c:\program files\touchstone\turok\binaries\turokgame.exe | "TCP Query User{7DABB011-9A84-4F05-84AF-2DDBED805710}C:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=6 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "TCP Query User{7F7A73BA-3082-4545-875A-FC04B5F84FC4}C:\users\sedrick\desktop\spiele\empire earth\empire earth.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\empire earth\empire earth.exe | "TCP Query User{80FA5590-C8B5-4D95-9182-8708983197C3}C:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe | "TCP Query User{81966FBD-2B3E-441C-B89B-453A96DADC1C}C:\users\sedrick\desktop\empire earth\empire earth.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\empire earth\empire earth.exe | "TCP Query User{83CD1332-DE85-413A-9992-7ADC87DA682E}C:\users\sedrick\desktop\sins of a solar empire\sins of a solar empire.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\sins of a solar empire\sins of a solar empire.exe | "TCP Query User{8474E385-ED81-42F4-807D-A16404226575}C:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe | "TCP Query User{8479CF07-8733-4F72-B14B-C7D854F23FFF}C:\il-2\il2fb.exe" = protocol=6 | dir=in | app=c:\il-2\il2fb.exe | "TCP Query User{8899DFC0-8E1E-4D52-971E-57BDE606B3AE}C:\program files\duty calls\binaries\win32\dutycalls.exe" = protocol=6 | dir=in | app=c:\program files\duty calls\binaries\win32\dutycalls.exe | "TCP Query User{88C3955D-0759-4F6F-8421-EB5EB892E942}C:\program files\ea games\battlefield vietnam\bfvietnam.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield vietnam\bfvietnam.exe | "TCP Query User{8B21A675-785F-4305-9291-5C392E9DFEB0}C:\users\sedrick\downloads\crossfire0212downloader.exe" = protocol=6 | dir=in | app=c:\users\sedrick\downloads\crossfire0212downloader.exe | "TCP Query User{8B5ABE70-9617-41CD-8927-50614BA251C9}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | "TCP Query User{8C823C09-A461-4261-B7F8-E943CF0DA1DE}C:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "TCP Query User{8FB6C96F-D52C-43BD-8CB1-1E27C903511A}C:\program files\ea games\battlefield 1942\bf1942.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield 1942\bf1942.exe | "TCP Query User{9D719443-80B7-4AE2-8085-4AB2FE80C961}C:\program files\littlefighter2\lf2_v2.0a\lf2.exe" = protocol=6 | dir=in | app=c:\program files\littlefighter2\lf2_v2.0a\lf2.exe | "TCP Query User{A02813AF-F882-43BB-900E-C78E639788DB}C:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe" = protocol=6 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe | "TCP Query User{A24E211F-175D-4C05-BDF5-23790F99FA02}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "TCP Query User{A74CC463-581F-404B-A194-058F5187C49C}C:\program files\empire interactive\flatout2\flatout2.exe" = protocol=6 | dir=in | app=c:\program files\empire interactive\flatout2\flatout2.exe | "TCP Query User{AB6C51FF-B6AE-4741-952D-790E15BD11E8}C:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe | "TCP Query User{B1394074-011E-4010-9620-66ECB7A6A110}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | "TCP Query User{B6463927-DFC6-43CC-8411-7E82F1398A52}C:\program files\microsoft games\rise of nations\nations.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\rise of nations\nations.exe | "TCP Query User{B7E1C70D-9219-47B9-BA14-0993B6DF1A2E}C:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe | "TCP Query User{B894802C-D1F7-4B20-AC3F-94FD8B02EF8A}C:\users\sedrick\desktop\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "TCP Query User{BBE6D13D-6244-4EC8-B899-8A053DF5E5E7}C:\program files\poc\poc2008\poc3d2008.exe" = protocol=6 | dir=in | app=c:\program files\poc\poc2008\poc3d2008.exe | "TCP Query User{BCFEF436-2CE1-4D19-80BC-5CD1FB318295}C:\users\sedrick\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\sedrick\appdata\local\akamai\netsession_win.exe | "TCP Query User{C2C1913A-BDC4-4024-A0B9-9F70DB5A1B1F}C:\users\sedrick\desktop\spiele\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe | "TCP Query User{C6D81415-98BB-4A9D-813A-AF173BBBAA94}C:\program files\electronic arts\battlefield 2142 deluxe edition\bf2142.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\battlefield 2142 deluxe edition\bf2142.exe | "TCP Query User{C7269BA7-3994-4838-8603-ED393BB51FEB}C:\users\sedrick\downloads\gunblade-dlm.exe" = protocol=6 | dir=in | app=c:\users\sedrick\downloads\gunblade-dlm.exe | "TCP Query User{C79BD5C5-E7E2-4E4F-AE8B-0D4D14FAB1CD}D:\killing floor\system\killingfloor.exe" = protocol=6 | dir=in | app=d:\killing floor\system\killingfloor.exe | "TCP Query User{C84041D6-1437-4962-837D-0653FC9BCF08}C:\program files\ea games\dead space 2\deadspace2.exe" = protocol=6 | dir=in | app=c:\program files\ea games\dead space 2\deadspace2.exe | "TCP Query User{C9D23CCE-CA34-4703-BD81-A996D2075434}C:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe | "TCP Query User{CAADE0B8-7CB6-499F-9C7A-E324D34C669C}C:\users\sedrick\desktop\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\borderlands\binaries\borderlands.exe | "TCP Query User{D3ECCD96-6F77-449D-8242-DDF21C6DEAAD}C:\program files\starship troopers\stgame.exe" = protocol=6 | dir=in | app=c:\program files\starship troopers\stgame.exe | "TCP Query User{DB06912B-9B21-41D1-8B60-D59CF88E55E0}C:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe" = protocol=6 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe | "TCP Query User{DCDCD38E-D5EC-47FE-9378-467A0A49E3BD}C:\program files\duty calls\binaries\win32\dutycalls.exe" = protocol=6 | dir=in | app=c:\program files\duty calls\binaries\win32\dutycalls.exe | "TCP Query User{DD8A10F0-311E-4C76-98DF-74BF85384F26}C:\users\sedrick\desktop\sk-ver0.12g\sk-main.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\sk-ver0.12g\sk-main.exe | "TCP Query User{DF5A516E-1963-4393-B7AF-A0F611D775A9}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | "TCP Query User{DFFCBBC9-34F8-4C79-AC11-848DF8C3C3B7}C:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe" = protocol=6 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe | "TCP Query User{E4721285-3E4B-4EB2-B269-A736F5AA0DE5}C:\users\sedrick\desktop\little fighter 4 turbo\lf4t.exe" = protocol=6 | dir=in | app=c:\users\sedrick\desktop\little fighter 4 turbo\lf4t.exe | "TCP Query User{E4FC35DE-2D01-4DB8-9AF0-7192A6A76AA4}C:\alien arena 2008\crx.exe" = protocol=6 | dir=in | app=c:\alien arena 2008\crx.exe | "TCP Query User{E91B68A4-A1CD-473C-8B57-D3F02E335174}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe | "TCP Query User{EA77E1A9-2C25-446F-8EC5-76342C4FAD67}C:\users\sedrick\documents\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\sedrick\documents\borderlands\binaries\borderlands.exe | "TCP Query User{F091C32E-8CA2-45B9-89B2-C8CD769C815F}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe | "TCP Query User{F23C0493-FF71-439E-87D5-B3E9E72F82DD}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "TCP Query User{F4875E0E-B821-4F91-B0C1-9009EC601BE5}C:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_full_softtonic.exe" = protocol=6 | dir=in | app=c:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_full_softtonic.exe | "TCP Query User{F80E6155-A15B-4D5D-8F52-321063510042}C:\program files\gamespy arcade\aphex.exe" = protocol=6 | dir=in | app=c:\program files\gamespy arcade\aphex.exe | "TCP Query User{F89B2347-CED4-48DA-AF4C-B0F541B298D4}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe | "TCP Query User{F96EB98C-6EE0-428B-B424-E8B4D9297DC7}C:\program files\novalogic\tachyon\space.icd" = protocol=6 | dir=in | app=c:\program files\novalogic\tachyon\space.icd | "TCP Query User{FC3944C7-070D-4772-9E85-F3F97EF14011}C:\program files\ea games\dead space 2\deadspace2.exe" = protocol=6 | dir=in | app=c:\program files\ea games\dead space 2\deadspace2.exe | "TCP Query User{FF541A61-7B39-4E80-AFF3-54D2ABEFDA0A}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{043B975E-A9C6-41FF-9E98-F8A0E9475A5C}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe | "UDP Query User{0624BDEE-4E2A-4CE3-88CB-154D7A7D152E}C:\program files\poc\poc2008\poc3d2008.exe" = protocol=17 | dir=in | app=c:\program files\poc\poc2008\poc3d2008.exe | "UDP Query User{0C6A2789-BD07-4846-BAC4-9FFCFBCB86EA}D:\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=d:\killing floor\system\killingfloor.exe | "UDP Query User{0F767EF8-4187-4AA0-9C57-1FCE1D9A4C14}C:\alien arena 2008\crx.exe" = protocol=17 | dir=in | app=c:\alien arena 2008\crx.exe | "UDP Query User{14DD39B1-52B1-4E66-A1C8-F7E8E66CEF80}C:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe" = protocol=17 | dir=in | app=c:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe | "UDP Query User{1645C7C0-908A-4932-9573-D1E01840359A}C:\alien arena 2008\crx.exe" = protocol=17 | dir=in | app=c:\alien arena 2008\crx.exe | "UDP Query User{1A57EA8B-2584-484E-A42E-C48CAAF9C5A3}C:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe | "UDP Query User{1B4C5546-F36F-4940-8CF9-68087B5051AF}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{1C56A2CC-B925-448F-84EB-3D9EA9B59401}C:\program files\duty calls\binaries\win32\dutycalls.exe" = protocol=17 | dir=in | app=c:\program files\duty calls\binaries\win32\dutycalls.exe | "UDP Query User{1F719A81-BD8E-4BC1-8F23-DDC762937723}C:\users\sedrick\appdata\local\temp\7zipsfx.000\cf_downloader.exe" = protocol=17 | dir=in | app=c:\users\sedrick\appdata\local\temp\7zipsfx.000\cf_downloader.exe | "UDP Query User{24324E56-58BE-46B5-B2BC-B63F0297E306}C:\gamecq\.cache\darkspacebeta\darkspaceclient.exe" = protocol=17 | dir=in | app=c:\gamecq\.cache\darkspacebeta\darkspaceclient.exe | "UDP Query User{24F94A7B-5173-435E-A416-FB1D97014FD0}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "UDP Query User{260E4780-E54E-4BC5-BDF4-C35B872A983C}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "UDP Query User{2701F437-36AC-4A86-9BC2-75C4A37EBE80}C:\users\sedrick\desktop\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "UDP Query User{27229E1D-82C2-4604-ADF9-505C5409D514}C:\program files\poc\poc2008\poc3d2008.exe" = protocol=17 | dir=in | app=c:\program files\poc\poc2008\poc3d2008.exe | "UDP Query User{27C1CE63-88CF-4644-A0C3-A2F5784B75F5}C:\program files\ea games\battlefield vietnam\bfvietnam.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield vietnam\bfvietnam.exe | "UDP Query User{29A9FE27-8A83-4563-B758-0EF564316D17}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | "UDP Query User{2A4085C3-6247-48C3-8D6D-7ECDCC4A4EDA}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | "UDP Query User{2F2738D5-37A4-4CEF-895C-398F565AE143}C:\users\sedrick\desktop\sk-ver0.12g\sk-main.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\sk-ver0.12g\sk-main.exe | "UDP Query User{2F41E590-FFC1-454A-BEE2-E9884AADAA55}C:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "UDP Query User{2F8B6224-316D-4014-9435-90A6B18731F3}C:\users\sedrick\desktop\spiele\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe | "UDP Query User{32356B36-C2FA-464D-9F6E-7E67F89CF409}C:\users\sedrick\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\sedrick\appdata\local\akamai\netsession_win.exe | "UDP Query User{32A541DB-108D-448E-8CBD-739006F5A72A}C:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe" = protocol=17 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe | "UDP Query User{367D8A6B-63A6-4525-872F-FD67D24FC096}C:\users\sedrick\desktop\empire earth\empire earth.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\empire earth\empire earth.exe | "UDP Query User{38015EB2-6DFE-4F95-87A2-EA61D9A28DCB}C:\users\sedrick\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\sedrick\program files\dna\btdna.exe | "UDP Query User{38136246-A70A-4BEE-ACDA-F5A1C9E6A1C0}C:\program files\microsoft games\rise of nations\nations.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\rise of nations\nations.exe | "UDP Query User{3CD60D9C-F118-4C8F-906B-ED5DD3C1B103}C:\users\sedrick\desktop\spiele\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\warcraft iii\war3.exe | "UDP Query User{40B410F7-F8BB-4384-A183-67FDC039A1E0}C:\program files\icq7.6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.6\icq.exe | "UDP Query User{424C9030-5CC6-44BF-8AE4-40136F3F2A02}C:\program files\starship troopers\stgame.exe" = protocol=17 | dir=in | app=c:\program files\starship troopers\stgame.exe | "UDP Query User{4689223E-52AA-402F-81F7-759984E29002}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe | "UDP Query User{4889FF18-069D-47FC-8CBC-C2FED12EC82F}C:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=17 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "UDP Query User{49947810-75A9-4FDF-8CD1-8DE554B0AA54}C:\users\sedrick\downloads\crossfire0212downloader.exe" = protocol=17 | dir=in | app=c:\users\sedrick\downloads\crossfire0212downloader.exe | "UDP Query User{4FEAB903-BAA3-4C16-973F-B2640D6FDCC0}C:\program files\ubisoft\ghost recon advanced warfighter\graw.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\ghost recon advanced warfighter\graw.exe | "UDP Query User{54C368EB-0F42-4089-AF57-CA0883179B6B}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe | "UDP Query User{59733FA7-B479-479E-BB0A-908382885000}C:\il-2\il2fb.exe" = protocol=17 | dir=in | app=c:\il-2\il2fb.exe | "UDP Query User{59A3258C-A899-4AF7-875F-0BEE7AF2CB08}C:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_slim_eu.exe" = protocol=17 | dir=in | app=c:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_slim_eu.exe | "UDP Query User{5C7AE9D8-4C03-483F-BE78-4F1699CBBE7D}C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe | "UDP Query User{5D025AAF-369E-4E93-8FA8-7AF2F46369E2}C:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe | "UDP Query User{624E7D6A-DA2F-495E-8AB7-684879DC561C}C:\program files\sony\media go\mediago.exe" = protocol=17 | dir=in | app=c:\program files\sony\media go\mediago.exe | "UDP Query User{632173B0-3178-4182-9E7D-44F4AB93BB3F}C:\users\sedrick\desktop\enemy territory - quake wars demo 2\etqw.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\enemy territory - quake wars demo 2\etqw.exe | "UDP Query User{636815D7-8D57-4823-B9AA-2A651322361D}C:\program files\ea games\dead space 2\deadspace2.exe" = protocol=17 | dir=in | app=c:\program files\ea games\dead space 2\deadspace2.exe | "UDP Query User{64A6645F-6029-4B0D-A761-FBBED0DBE640}C:\program files\ea games\dead space 2\deadspace2.exe" = protocol=17 | dir=in | app=c:\program files\ea games\dead space 2\deadspace2.exe | "UDP Query User{655BFBEB-952C-45C5-AD18-A868544C66E5}C:\program files\ea games\battlefield vietnam\bfvietnam.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield vietnam\bfvietnam.exe | "UDP Query User{659C2496-C1B8-41F9-BEB7-CB17B595CF9A}C:\users\sedrick\desktop\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\borderlands\binaries\borderlands.exe | "UDP Query User{67FA465C-3FE1-4326-93B8-E20AFEA582BD}C:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_full_softtonic.exe" = protocol=17 | dir=in | app=c:\users\sedrick\downloads\yuleech-runes_of_magic_3_0_8_2349_full_softtonic.exe | "UDP Query User{68DD09FD-EE9E-4C38-ABD5-5B50F10FE628}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | "UDP Query User{6CACB77C-2438-411E-9AEF-1514EB246BEA}C:\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe | "UDP Query User{6EF0BE95-08DC-4DCD-9F88-27FD546138C4}C:\users\sedrick\downloads\fogdownloader-rom_2_1_6_2049.exe" = protocol=17 | dir=in | app=c:\users\sedrick\downloads\fogdownloader-rom_2_1_6_2049.exe | "UDP Query User{701D507B-38C4-478A-94C3-3774EA00BE6E}C:\program files\ubisoft\ghost recon advanced warfighter\graw.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\ghost recon advanced warfighter\graw.exe | "UDP Query User{709EF370-2147-4A8E-BBD4-0E9C06ECA47B}C:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=17 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "UDP Query User{718532F3-4781-4EE2-90F5-25C02E52BBC1}C:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe | "UDP Query User{71E6208A-BC7B-41BD-AFA6-6B37D55FD777}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "UDP Query User{74C50252-3962-4A1E-B0DC-CA4E77A4C917}C:\program files\duty calls\binaries\win32\dutycalls.exe" = protocol=17 | dir=in | app=c:\program files\duty calls\binaries\win32\dutycalls.exe | "UDP Query User{75F9F118-62C0-46BB-9F0F-2FA45CE8F7AB}C:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe" = protocol=17 | dir=in | app=c:\il2\il-2 sturmovik 1946 - 4.10.1\il2fb.exe | "UDP Query User{7715D30F-FB66-4C71-AE3B-C41C278D34AE}C:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe" = protocol=17 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe | "UDP Query User{771CDC72-5859-4020-AA9E-C9C1E336B1A4}C:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2 full game -=aviara=-\call of duty 2\cod2mp_s.exe | "UDP Query User{79503741-EFCD-4968-8828-31DA25926723}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=17 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin | "UDP Query User{7B066C93-A1AE-4A55-9BDA-71ED2CAABA7F}C:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | "UDP Query User{7B257D9C-B40D-46F9-9804-13004526028E}C:\users\sedrick\desktop\spiele\killing floor v1021\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor v1021\killing floor\system\killingfloor.exe | "UDP Query User{7C4391E3-6423-4A20-A800-52A508E2814B}C:\program files\z8games\crossfire\cf_g4box.exe" = protocol=17 | dir=in | app=c:\program files\z8games\crossfire\cf_g4box.exe | "UDP Query User{7D23D5EF-C3D6-45EE-B9C8-1748C03705B8}C:\program files\touchstone\turok\binaries\turokgame.exe" = protocol=17 | dir=in | app=c:\program files\touchstone\turok\binaries\turokgame.exe | "UDP Query User{82C15EC9-ECAB-4816-9ACD-01756C9DEF17}C:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe | "UDP Query User{9AA0883B-8B9C-4938-ADB7-169DF18E7158}C:\users\sedrick\documents\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\documents\borderlands\binaries\borderlands.exe | "UDP Query User{9DB8B88B-BE90-407C-A7BC-FAEBDDF32899}C:\users\sedrick\downloads\gunblade-dlm.exe" = protocol=17 | dir=in | app=c:\users\sedrick\downloads\gunblade-dlm.exe | "UDP Query User{A02BEACD-8884-4645-92BC-853919C097D3}C:\users\sedrick\desktop\spiele\empire earth\empire earth.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\empire earth\empire earth.exe | "UDP Query User{A27E8C48-9D49-4055-9F61-1086BB01395E}C:\program files\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe" = protocol=17 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946\il2fb.exe | "UDP Query User{A6899ECA-FCED-4FFE-AD4A-A161C147DF59}C:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\il-2 sturmovik 1946\il2fb.exe | "UDP Query User{A95C789D-AB99-4033-A40B-DC8C22E1187E}C:\program files\ea games\battlefield 1942\bf1942.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield 1942\bf1942.exe | "UDP Query User{A9F3E5AC-D1B1-40FE-90A7-B5BB185CC4CC}C:\users\sedrick\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\sedrick\program files\dna\btdna.exe | "UDP Query User{AF827B0B-A8FE-4E98-B3BF-170E88EE3F95}C:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\borderlands\binaries\borderlands.exe | "UDP Query User{AFC4AB0F-FC6B-48C5-8289-7DBFAB13F4EE}C:\users\sedrick\desktop\sins of a solar empire\sins of a solar empire.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\sins of a solar empire\sins of a solar empire.exe | "UDP Query User{B0D03267-E74F-443A-95F2-49CC89BCF132}C:\program files\sixteen tons entertainment\emergency4\em4.exe" = protocol=17 | dir=in | app=c:\program files\sixteen tons entertainment\emergency4\em4.exe | "UDP Query User{B1C642B8-3803-438E-8246-C4525D101B33}C:\users\sedrick\desktop\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\killing floor\system\killingfloor.exe | "UDP Query User{B1DA09D2-0192-45BF-8657-40942E53D6BB}C:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\battlefield bad company 2\bfbc2game.exe | "UDP Query User{B3951782-6CF3-4EB8-806B-6DA53C75DA56}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe | "UDP Query User{B3C41097-3652-4E81-A888-22DF26E71F64}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe | "UDP Query User{B7101646-1923-46A8-9AA5-9F5E982917B0}C:\program files\empire interactive\flatout2\flatout2.exe" = protocol=17 | dir=in | app=c:\program files\empire interactive\flatout2\flatout2.exe | "UDP Query User{B778EDCC-13FC-43B0-83AE-945C7C22E3CB}C:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\call of duty 2\call of duty 2\cod2mp_s.exe | "UDP Query User{B7DFF8C7-C3BA-43C6-B6AA-71848C85EFDA}C:\users\sedrick\documents\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\documents\borderlands\binaries\borderlands.exe | "UDP Query User{B8FD61F7-2D44-438B-9F17-04E2BB739232}C:\users\sedrick\desktop\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\killing floor v1021 + white listed maps\killing floor\system\killingfloor.exe | "UDP Query User{B950ADCC-6E6B-42A3-978D-0F976ADFE2F3}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe | "UDP Query User{BB1C0E96-C5EC-4F6F-82FA-34C8C9ECAE84}C:\users\sedrick\desktop\spiele\killing floor1\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor1\system\killingfloor.exe | "UDP Query User{BCB4E68F-6B9E-4E92-A26D-B44750DCE003}C:\program files\gamespy arcade\aphex.exe" = protocol=17 | dir=in | app=c:\program files\gamespy arcade\aphex.exe | "UDP Query User{BEBFC888-976F-47B6-BD0A-E5FC3DCDF4B0}C:\windows\system32\dpnsvr.exe" = protocol=17 | dir=in | app=c:\windows\system32\dpnsvr.exe | "UDP Query User{C1DEBD68-4B25-4E2F-BF1E-E3B679D78613}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "UDP Query User{C3CA06F7-5577-4569-A0AE-43E953B0F778}C:\program files\stepmania cvs\program\stepmania.exe" = protocol=17 | dir=in | app=c:\program files\stepmania cvs\program\stepmania.exe | "UDP Query User{CD6987CC-D027-4212-A578-54BF3E207C47}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{D3ED0978-64C8-4C11-BC86-49537C50F335}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | "UDP Query User{D6BFF5A5-0376-4787-B100-73A3C1576AC1}C:\program files\littlefighter2\lf2_v2.0a\lf2.exe" = protocol=17 | dir=in | app=c:\program files\littlefighter2\lf2_v2.0a\lf2.exe | "UDP Query User{DCCF0F92-17D0-44E2-9FF0-34D6C3F7B41A}D:\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=d:\counter-strike source\hl2.exe | "UDP Query User{DF2C6999-B310-4C43-844D-DEBCAAF1368C}C:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe" = protocol=17 | dir=in | app=c:\il-2 sturmovik\il-2 sturmovik 1946 - kopie\il2fb.exe | "UDP Query User{E0B34CF9-ACE8-4192-B415-DCFE4EF56E49}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | "UDP Query User{E0C3D788-3C66-4007-837B-22DD2EF34E34}C:\program files\stepmania cvs\program\stepmania.exe" = protocol=17 | dir=in | app=c:\program files\stepmania cvs\program\stepmania.exe | "UDP Query User{E2E51C39-E5E5-445C-A65A-9DE6ADE51FB3}C:\program files\touchstone\turok\binaries\turokgame.exe" = protocol=17 | dir=in | app=c:\program files\touchstone\turok\binaries\turokgame.exe | "UDP Query User{E31E42D8-DDC9-44F1-8110-1E7AD30BD399}C:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe" = protocol=17 | dir=in | app=c:\program files\il-2 sturmovik\il-2 sturmovik 1946 -4.09\il2fb.exe | "UDP Query User{E7FDC388-D4D2-49EB-A274-B5B54C338144}C:\program files\ea games\battlefield 1942\bf1942.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield 1942\bf1942.exe | "UDP Query User{EA8E8AF0-E97A-4E93-945B-6F3CDFE41EF7}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | "UDP Query User{EA969443-C2CE-4E65-AB24-7687407AB22C}C:\program files\simbin\gt legends\gtldedicated.exe" = protocol=17 | dir=in | app=c:\program files\simbin\gt legends\gtldedicated.exe | "UDP Query User{EBA5BFF5-029F-4BB7-B368-3A21A1B92D14}C:\users\sedrick\desktop\spiele\killing floor\system\killingfloor.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\spiele\killing floor\system\killingfloor.exe | "UDP Query User{ECF6EDED-E509-4913-AE5A-48CF08D23EC7}C:\program files\novalogic\tachyon\space.icd" = protocol=17 | dir=in | app=c:\program files\novalogic\tachyon\space.icd | "UDP Query User{F6730448-CCEF-43EC-85A1-5CDD43E94D58}C:\users\sedrick\desktop\sk-ver0.05d\silverknights.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\sk-ver0.05d\silverknights.exe | "UDP Query User{F68E3A65-3991-419F-BB01-10733D694AFC}C:\program files\microsoft games\rise of nations\patriots.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\rise of nations\patriots.exe | "UDP Query User{F6D382C0-D57F-4CEA-B838-FDD7C5DB48E6}C:\games\ngd studios\regnum online\liveserver\roclientgameex.exe" = protocol=17 | dir=in | app=c:\games\ngd studios\regnum online\liveserver\roclientgameex.exe | "UDP Query User{F88579AE-DF42-4294-9D38-9AA0B85F525A}C:\program files\electronic arts\battlefield 2142 deluxe edition\bf2142.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\battlefield 2142 deluxe edition\bf2142.exe | "UDP Query User{FCFA5BF2-B79A-46F9-9F04-82751138F93D}C:\users\sedrick\desktop\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\borderlands\binaries\borderlands.exe | "UDP Query User{FD067F49-925C-4FDB-9FC6-78F02A567C0B}C:\users\sedrick\desktop\little fighter 4 turbo\lf4t.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\little fighter 4 turbo\lf4t.exe | "UDP Query User{FF1C15E8-72B1-4CAF-AEF9-68D7CDD7FE7A}C:\users\sedrick\desktop\empire earth\empire earth.exe" = protocol=17 | dir=in | app=c:\users\sedrick\desktop\empire earth\empire earth.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser "{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial "{03B0D67B-36C9-C2CD-B63B-7B526138BA52}" = ccc-utility "{04FC2E4C-0E41-9D39-4E58-1EF29D4EF09D}" = ccc-core-static "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu "{086BADF8-9B1F-4E89-B207-2EDA520972D6}" = Grand Theft Auto San Andreas "{0949C078-58B4-CAF1-9A63-A4545145806D}" = Catalyst Control Center Graphics Previews Common "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX "{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.7.1 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24 "{2B091530-69AA-442E-AB09-39ED06B58220}" = Windows Live Messenger "{32C2F9AA-7484-48C2-AC19-2031F2ADD8F2}" = USB Video Camera Driver v1.53 "{38D9575F-6228-6A54-3A92-D902739B6541}" = Catalyst Control Center InstallProxy "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2 "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4438C6E2-FFAE-4B98-8128-69846E931178}" = Transcendence "{47948554-90C6-4AAC-8CFA-D23CE11C1031}" = Nero 8 Essentials "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{52B65911-1559-4ED5-9461-46957FDD48CD}" = Borderlands "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{573F1931-08F7-9222-704E-841C391794C5}" = ATI Catalyst Install Manager "{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth "{5E8B45A0-072C-91F7-BC80-29374194B452}" = Catalyst Control Center Graphics Previews Vista "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD "{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942 "{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2 "{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6 "{7655E113-C306-11D9-A373-0050BAE317E1}" = MCE Software Encoder 1.1 "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{79438F1E-DEC3-443D-9DCD-FECE2D68C605}" = IL-2 Sturmovik 1946 "{7A7B0BF3-2F00-4F03-8A9B-6ABCC07B90C6}" = Windows Live installer "{7BA01D2D-E25C-0C2C-5779-7A8E02A4BE7D}" = Catalyst Control Center Core Implementation "{82F2B38B-1426-443D-874C-AC25675E7BEB}" = Windows Live Mail "{837B34E3-7C30-493C-8F6A-2B0F04E2912C}" = Microsoft Visual C++ 2005 Redistributable "{83E2CFA9-E0EB-4E08-9F85-43E577FF3D60}" = Windows Live Anmelde-Assistent "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial "{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding "{8FF4E834-DCAD-29E7-1EE8-9D817A3FA15B}" = CCC Help English "{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007 "{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007 "{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007 "{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007 "{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007 "{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007 "{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007 "{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007 "{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007 "{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007 "{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007 "{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{96D06FDD-6AF4-4309-BC1B-1C9588B0575E}" = Dead Space™ 2 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A1D08B90-AE1A-4885-AC29-731496FD397E}" = Windows Live Fotogalerie "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1031-7B44-A94000000001}" = Adobe Reader 9.4.3 - Deutsch "{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer "{B8D42C3A-3CFF-4A8A-A7DA-4F44474D12C5}" = Windows Live Writer "{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver "{C03A56EE-2715-5F54-69C4-A1CDB7602354}" = Catalyst Control Center Graphics Full New "{C1C91319-52B5-2624-8333-F741EDCE89D5}" = Catalyst Control Center InstallProxy "{C307DD64-1C69-8C52-D2C9-02D38995A269}" = Catalyst Control Center HydraVision Full "{C3234E43-10BF-470E-BD2B-2E36EA29D11C}" = League of Legends "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{E3E1398E-8FF2-0154-6D8F-7FC26299EBED}" = Catalyst Control Center Graphics Full Existing "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F428D0FB-765D-40EB-BDD8-A1E7F5C597FA}" = Update Manager "{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{FBEF69BB-829C-8D4D-B299-497147916039}" = Catalyst Control Center Graphics Light "7-Zip" = 7-Zip 4.65 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Akamai" = Akamai NetSession Interface Service "Any Video Converter_is1" = Any Video Converter 3.3.4 "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "AVMWLANCLI" = AVM FRITZ!WLAN "CCleaner" = CCleaner "Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1 "Cross Fire_is1" = Cross Fire En "DirectXMediaRuntime" = DirectX Media Runtime 5.1 "ENTERPRISE" = Microsoft Office Enterprise 2007 "ESL Wire_is1" = ESL Wire 1.11.1 "FormatFactory" = FormatFactory 2.60 "Fraps" = Fraps (remove only) "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.14.1206 "InstallShield_{79438F1E-DEC3-443D-9DCD-FECE2D68C605}" = IL-2 Sturmovik 1946 "Little Fighter 2" = Little Fighter 2 version 2.0a "MDT" = Battlefield Mod Development Toolkit 2.0 Beta "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Mozilla Firefox 11.0 (x86 de)" = Mozilla Firefox 11.0 (x86 de) "NVIDIA Drivers" = NVIDIA Drivers "Opera 11.61.1250" = Opera 11.61 "ProtectDisc Driver 11" = ProtectDisc Driver, Version 11 "PunkBusterSvc" = PunkBuster Services "Red Alert" = Red Alert Windows 95 "RPG Maker 2000 1.05" = RPG Maker 2000 1.05 "RPG Maker 2000 1.07b" = RPG Maker 2000 1.07b "RPG Maker 2003_is1" = RPG Maker 2003 v1.08 "RPGAdvocates_RTP_1.0" = Common RTP 1.0 "RTP for RM2K (Png, Wav, Midi, Fonts)" = RTP for RM2K (Png, Wav, Midi, Fonts) "San Andreas Mod Installer1.1" = San Andreas Mod Installer "StepMania" = StepMania (remove only) "StepMania CVS" = StepMania CVS 4.0 (Nur entfernen) "TeamSpeak 3 Client" = TeamSpeak 3 Client "TmNationsForever_is1" = TmNationsForever Update 2010-03-15 "Uninstall_is1" = Uninstall 1.0.0.1 "uTorrent" = µTorrent "VLC media player" = VLC media player 1.0.3 "WinRAR archiver" = WinRAR "X10Hardware" = X10 Hardware(TM) ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Akamai" = Akamai NetSession Interface "BitTorrent DNA" = DNA ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 20.11.2010 05:47:05 | Computer Name = Sedrick-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung NMIndexStoreSvr.exe, Version 3.3.3.0, Zeitstempel 0x47c6bd1b, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x27122712, Prozess-ID 0xedc, Anwendungsstartzeit 01cb8897d0f248a6. Error - 20.11.2010 05:47:15 | Computer Name = Sedrick-PC | Source = WinMgmt | ID = 10 Description = Error - 20.11.2010 06:06:49 | Computer Name = Sedrick-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung svchost.exe, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul ntdll.dll, Version 6.0.6002.18005, Zeitstempel 0x49e03821, Ausnahmecode 0xc0000374, Fehleroffset 0x000afaf8, Prozess-ID 0x470, Anwendungsstartzeit 01cb8897b2bc9c56. Error - 20.11.2010 13:11:58 | Computer Name = Sedrick-PC | Source = WinMgmt | ID = 10 Description = Error - 22.11.2010 08:54:04 | Computer Name = Sedrick-PC | Source = WinMgmt | ID = 10 Description = Error - 22.11.2010 08:55:27 | Computer Name = Sedrick-PC | Source = VSS | ID = 8194 Description = Error - 22.11.2010 08:57:26 | Computer Name = Sedrick-PC | Source = VSS | ID = 8194 Description = Error - 22.11.2010 09:10:47 | Computer Name = Sedrick-PC | Source = VSS | ID = 8194 Description = Error - 22.11.2010 09:17:17 | Computer Name = Sedrick-PC | Source = VSS | ID = 8194 Description = Error - 22.11.2010 09:19:56 | Computer Name = Sedrick-PC | Source = VSS | ID = 8194 Description = [ System Events ] Error - 15.04.2012 01:11:28 | Computer Name = Sedrick-PC | Source = Service Control Manager | ID = 7001 Description = Error - 15.04.2012 01:11:28 | Computer Name = Sedrick-PC | Source = Service Control Manager | ID = 7001 Description = Error - 15.04.2012 01:11:31 | Computer Name = Sedrick-PC | Source = Service Control Manager | ID = 7001 Description = Error - 15.04.2012 01:13:39 | Computer Name = Sedrick-PC | Source = sptd | ID = 262148 Description = Der Treiber hat einen internen Fehler in seinen Datenstrukturen für festgestellt. Error - 15.04.2012 01:14:38 | Computer Name = Sedrick-PC | Source = DCOM | ID = 10005 Description = Error - 15.04.2012 01:14:47 | Computer Name = Sedrick-PC | Source = DCOM | ID = 10005 Description = Error - 15.04.2012 01:14:48 | Computer Name = Sedrick-PC | Source = DCOM | ID = 10005 Description = Error - 15.04.2012 01:14:59 | Computer Name = Sedrick-PC | Source = DCOM | ID = 10005 Description = Error - 15.04.2012 01:15:04 | Computer Name = Sedrick-PC | Source = Service Control Manager | ID = 7001 Description = Error - 15.04.2012 01:15:04 | Computer Name = Sedrick-PC | Source = Service Control Manager | ID = 7026 Description = < End of report > |
|
15.04.2012, 16:20
| #2 |
| /// Malware-holic   | Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen hi
__________________dieses script sowie evtl. folgende scripts sind nur für den jeweiligen user. wenn ihr probleme habt, eröffnet eigene topics und wartet auf, für euch angepasste scripts. • Starte bitte die OTL.exe • Kopiere nun das Folgende in die Textbox. Code:
ATTFilter :OTL
O4 - HKCU..\Run: [vasja] C:\Users\Sedrick\AppData\Local\Temp\hj8ol0.exe ()
O4 - HKCU..\Run: [{F887457D-3D46-1B01-C0A4-0985516B2446}] C:\Users\Sedrick\AppData\Roaming\Reizin\fybiyr.exe ()
:Files
C:\Users\Sedrick\AppData\Local\Temp\hj8ol0.exe
C:\Users\Sedrick\AppData\Roaming\Reizin
:Commands
[purity]
[EMPTYFLASH]
[emptytemp]
[Reboot]
• Schliesse bitte nun alle Programme. • Klicke nun bitte auf den Fix Button. • OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen. • Nach dem Neustart findest Du ein Textdokument, dessen inhalt in deiner nächsten antwort hier reinkopieren. starte in den normalen modus. falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! Drücke bitte die  + E Taste.
__________________ |
|
15.04.2012, 18:55
| #3 |
| | Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen All processes killed
__________________========== OTL ========== Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\vasja not found. C:\Users\Sedrick\AppData\Local\Temp\hj8ol0.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\{F887457D-3D46-1B01-C0A4-0985516B2446} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F887457D-3D46-1B01-C0A4-0985516B2446}\ not found. C:\Users\Sedrick\AppData\Roaming\Reizin\fybiyr.exe moved successfully. ========== COMMANDS ========== [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Public User: Sedrick ->Flash cache emptied: 116409 bytes Total Flash Files Cleaned = 0,00 mb [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public User: Sedrick ->Temp folder emptied: 1170157578 bytes ->Java cache emptied: 20907 bytes ->FireFox cache emptied: 797152304 bytes ->Opera cache emptied: 17878236 bytes ->Flash cache emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 466944 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 2944372387 bytes RecycleBin emptied: 224654 bytes Total Files Cleaned = 4.702,00 mb OTL by OldTimer - Version 3.2.39.2 log created on 04152012_193625 Files\Folders moved on Reboot... Registry entries deleted on Reboot... Geändert von The_Elm (15.04.2012 um 19:02 Uhr) |
|
15.04.2012, 19:21
| #4 |
| /// Malware-holic | Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen danke für den upload nutzt du den pc für onlinebanking, einkäufe, sonstige zahlungsabwicklungen, oder ähnlich wichtiges, wie berufliches?
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
16.04.2012, 17:20
| #5 |
| | Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen Ja für Online-Banking |
|
16.04.2012, 17:55
| #6 |
| /// Malware-holic | Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen bank anrufen, banking aufgrund von zbot sperren lassen. der pc muss neu aufgesetzt und dann abgesichert werden 1. Datenrettung:
ich werde außerdem noch weitere punkte dazu posten. 4. alle Passwörter ändern! 5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen. 6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.
__________________ --> Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen |
|
| Themen zu Windows Security Center - Achtung Ihr Computer wurde gesperrt - 100€ zahlen |
| 100€ zahlen, 7-zip, akamai, any video converter, avira, call of duty, computer, converter, counter-strike source, dateien gesperrt, desktop, entfernen, error, excel, flash player, google, google earth, grand theft auto, home, ihr computer wurde gesperrt, install.exe, league of legends, logfile, microsoft office word, mozilla, mp3, ntdll.dll, office 2007, problem, realtek, registry, rundll, security, security update, software, svchost.exe, teamspeak, usb, videospin, vista, windows |
Linear-Darstellung
