| |
| |||||||
Alles rund um Windows: Windows Installer funktioniert nicht mehrWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
12.01.2011, 22:20
| #1 |
 |  Problem: Windows Installer funktioniert nicht mehr Hallo liebe Trojaner User, ich hab schon seit längeren ein Problem mit meinen Windows Installer, denn dieser funktioniert nicht mehr, so wie er eigentlich funktionieren soll.  Sobald ich meist immer ein Programm installieren will, kommt meist die Meldung, dass das Programm nicht vollständig installiert werden kann, da der Windows Installer nicht vorhanden bzw beschädigt ist. Der Status von Windows Installer in Dienste in der Systemsteuerung ist auf Beendet eingestellt, sobald ich aber auf Starten drücken will kommt die Meldung: Dass der Dienst Windows Installer auf Lokaler Computer nicht gestartet werden konnte. Fehler 2: Das System kann die angegebene Datei nicht finden. Natürlich hab ich auch schon versucht den Windows Installer nochmal neu zu installieren. Ich hab mir den Windows Installer 4.5 auf der Microsoft Website gedownloadet, aber konnte ihn ebenfalls wegen einer Fehlermeldung nicht installieren. Das mit dem msiexec/unreg bzw register hab ich auch schon versucht, jedoch keinen Erfolg. Deswegen wollte ich nachfragen, ob vielleicht jemand eine Ahnung hätte wie ich dieses Problem behen kann, denn das geht mir jetzt schon seit langem auf den Senkel. Falls noch irgendetwas (Daten, ...) benötigt werden kann ich diese gerne hier reinposten. Danke schon mal im Vorraus  |
|
12.01.2011, 23:38
| #2 |
| /// Selecta Jahrusso   | Windows Installer funktioniert nicht mehr Anleitung / Hilfe Downloade Dir bitte MSIrepair.exe und speichere die Datei auf dem Desktop.
Danach ist diese auf deinem Desktop zu finden.
__________________ |
|
13.01.2011, 15:39
| #3 |
| | Windows Installer funktioniert nicht mehr Details Danke für die schnelle Antwort also ich hab das jetzt mal nach der Anleitung durch laufen lassen.
__________________Code:
ATTFilter Files
C:\Windows\winsxs\x86_microsoft-windows-installer-executable_31bf3856ad364e35_6.0.6001.18000_none_498174cc8619e2a5\msiexec.exe
C:\Windows\winsxs\x86_microsoft-windows-installer-executable_31bf3856ad364e35_6.0.6002.18005_none_4b6cedd8833badf1\msiexec.exe
Status
SERVICE_NAME: msiserver
TYPE : 10 WIN32_OWN_PROCESS
STATE : 1 STOPPED
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0
HKLM\..\Services\Msiserver; ImagePath
%systemroot%\System32\msiexec.exe /V
HKLM\..\Services\Msiserver; Start
3
|
|
13.01.2011, 17:40
| #4 |
| /// Selecta Jahrusso | Lösung: Windows Installer funktioniert nicht mehr Starte bitte MSIrepair.exe erneut. Klicke auf den Fix Button. Kopiere nun folgendes unter Datei hier eingeben Code:
ATTFilter C:\Windows\winsxs\x86_microsoft-windows-installer-executable_31bf3856ad364e35_6.0.6001.18000_none_498174cc8619e2a5\msiexec.exe
Belasse alles andere wie es ist. Warte bitte bis sich erneut eine MSI-Repair.txt öffnet. Poste den Bericht bitte hier und berichte ob die Probleme noch vorhanden sind.
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
13.01.2011, 19:17
| #5 |
| | Wie Windows Installer funktioniert nicht mehr So ich hab jetzt nach ihrer Anleitung ausprobiert, das Problem besteht aber leider weiterhin noch. Hier die neue MSI-Repair.txt: Code:
ATTFilter Files
C:\Windows\System32\msiexec.exe
C:\Windows\winsxs\x86_microsoft-windows-installer-executable_31bf3856ad364e35_6.0.6001.18000_none_498174cc8619e2a5\msiexec.exe
C:\Windows\winsxs\x86_microsoft-windows-installer-executable_31bf3856ad364e35_6.0.6002.18005_none_4b6cedd8833badf1\msiexec.exe
Status
SERVICE_NAME: msiserver
TYPE : 10 WIN32_OWN_PROCESS
STATE : 2 START_PENDING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x7d0
HKLM\..\Services\Msiserver; ImagePath
%systemroot%\system32\msiexec.exe /V
HKLM\..\Services\Msiserver; Start
3
|
|
13.01.2011, 19:22
| #6 |
| /// Selecta Jahrusso | Wo Windows Installer funktioniert nicht mehr Lösung! Die Einstellungen für den Installer stimmen. Versuche mal den Rechner neu zu starten
__________________ --> Windows Installer funktioniert nicht mehr |
|
13.01.2011, 20:07
| #7 |
| | Windows Installer funktioniert nicht mehr Hallo nochmal ich hab den Rechner jetzt mal neugestartet. Ich hab jetzt mal zum Beispiel ein Spiel installiert, welches den Windows Installer benötigt, aber das Problem besteht leider weiterhin immer noch. Der Windows Installer unter Dienste hat immer noch den Status Beendet, sobald ich ihn Starten will kommt auf einmal diese Fehlermeldung: Fehler 1053: Der Dienst antwortet nicht rechtzeitig auf die Start- oder Steuerungsanforderung.  Gibt es vielleicht noch irgend eine Alternative Lösung? Geändert von redbull639 (13.01.2011 um 20:12 Uhr) |
|
13.01.2011, 20:35
| #8 |
| /// Selecta Jahrusso | Windows Installer funktioniert nicht mehr Verrate mir bitte einmal um welches BS es sich handelt. Vista oder Win7 WIndows + R Taste drücken --> notepad (reinschreiben) --> OK Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter @echo off
cd \
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msiserver" > "%temp%\look.txt"
notepad "%temp%\look.txt"
del %0
Wähle bei Dateityp alle Dateien aus. Doppelklick auf die file.bat, poste mir den Inhalt des Textdokuments. Vista- User: Mit Rechtsklick "als Administrator starten"
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
13.01.2011, 20:55
| #9 |
| | Windows Installer funktioniert nicht mehr Oh tut mir leid hätte ich wohl schon früher erwähnen sollen. Also mein BS ist Windows Vista Home Premium. Hier der Inhalt des Textdokuments: Code:
ATTFilter HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msiserver
DisplayName REG_SZ Windows Installer
ImagePath REG_EXPAND_SZ %systemroot%\system32\msiexec.exe /V
Description REG_SZ C:\Windows\System32\Msiexec.exe /V
ObjectName REG_SZ LocalSystem
ErrorControl REG_DWORD 0x1
Start REG_DWORD 0x3
Type REG_DWORD 0x10
DependOnService REG_MULTI_SZ rpcss
ServiceSidType REG_DWORD 0x1
RequiredPrivileges REG_MULTI_SZ SeTcbPrivilege\0SeCreatePagefilePrivilege\0SeLockMemoryPrivilege\0SeIncreaseBasePriorityPrivilege\0SeCreatePermanentPrivilege\0SeAuditPrivilege\0SeSecurityPrivilege\0SeChangeNotifyPrivilege\0SeProfileSingleProcessPrivilege\0SeImpersonatePrivilege\0SeCreateGlobalPrivilege\0SeAssignPrimaryTokenPrivilege\0SeRestorePrivilege\0SeIncreaseQuotaPrivilege\0SeShutdownPrivilege\0SeTakeOwnershipPrivilege\0SeLoadDriverPrivilege
FailureActions REG_BINARY 840300000000000000000000030000001400000001000000C0D4010001000000E09304000000000000000000
DelayedAutostart REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msiserver\Enum
|
|
13.01.2011, 21:16
| #10 |
| /// Selecta Jahrusso | Windows Installer funktioniert nicht mehr [gelöst] Da sieht alles Okay aus. Starte die MSIrepair.exe erneut als Admin. Drücke auf Unregister. Dies wird deinen Rechner neu starten. Nach dem Neustart wird sich das Tool erneut starten und dir in einer Messagebox mitteilen, dass der Rechner erneut neu gestartet werden muss. Dies bitte zulassen. Sollte das nicht der Fall sein, teile mir das bitte mit. Nach dem zweiten Neustart. WIndows + R Taste drücken und kopiere folgende Zeile hinein. net start msiserverund klicke OK Berichte ob es eine Änderung gab.
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
13.01.2011, 21:39
| #11 |
| | Windows Installer funktioniert nicht mehr [gelöst] Okay. Also ich hab das jetzt mal so gemacht, wie sie es mir gepostet haben. Ist auch alles genau so abgelaufen. MSIrepair.exe gestartet -> Unregister Ich wurde aufgefordert den PC neuzustarten. Beim Hochfahren hat sich das Fenster von MSIrepair wieder geöffnet und wurde wieder aufgefordert neuzustarten. Beim 2. Hochfahren dann in Ausführen net start msiserver eingegeben. Eine Änderung gab es jedoch nicht. Was ich vielleicht noch hinzufügen sollte, immer wenn ich aufgefordert wurde, den PC neuzustarten, kam kurz daraufhin eine Fehlermeldung in der stand: Code:
ATTFilter msiexec.exe - Ordnungszahl nicht gefunden
Die Ordnungszahl 280 wurde in der DLL "msi.dll" nicht gefunden
|
|
13.01.2011, 22:00
| #12 |
| /// Selecta Jahrusso | Windows Installer funktioniert nicht mehr [gelöst] Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden)
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
13.01.2011, 22:51
| #13 |
| | Windows Installer funktioniert nicht mehr [gelöst] Hier die Logfiles: Logfile 1: Code:
ATTFilter OTL logfile created on: 13.01.2011 22:16:43 - Run 2 OTL by OldTimer - Version 3.2.20.2 Folder = C:\Users\*****\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18999) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free 6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 465,76 Gb Total Space | 159,27 Gb Free Space | 34,20% Space Free | Partition Type: NTFS Drive D: | 445,75 Gb Total Space | 444,99 Gb Free Space | 99,83% Space Free | Partition Type: NTFS Drive E: | 19,99 Gb Total Space | 16,27 Gb Free Space | 81,36% Space Free | Partition Type: FAT32 Computer Name: CSS-PC | User Name: ***** | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\*****\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) PRC - C:\Programme\Mozilla Firefox\plugin-container.exe (Mozilla Corporation) PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Users\*****\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe () PRC - C:\Programme\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\Free Download Manager\fdm.exe (FreeDownloadManager.ORG) PRC - C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Programme\AVG\AVG8\avgcsrvx.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\AVG\AVG8\avgrsx.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\AVG\AVG8\avgnsx.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software) PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software) PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) PRC - C:\Windows\System32\UAService7.exe (Sony DADC Austria AG.) PRC - C:\Programme\Gigabyte\EasySaver\essvr.exe () PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\System32\conime.exe (Microsoft Corporation) PRC - C:\Programme\Stardock\ObjectDock\ObjectDock.exe (Stardock) PRC - C:\Programme\avmwlanstick\WLanNetService.exe (AVM Berlin) ========== Modules (SafeList) ========== MOD - C:\Users\*****\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) MOD - C:\Programme\Stardock\ObjectDock\DockShellHook.dll () ========== Win32 Services (SafeList) ========== SRV - (AVWUpSrv) -- File not found SRV - (AntiVirService) -- File not found SRV - (Akamai) -- c:\Programme\Common Files\Akamai\netsession_win_dbc0250.dll () SRV - (SearchAnonymizer) -- C:\Users\*****\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe () SRV - (PCPitstop Scheduling) -- C:\Programme\PCPitstop\PCPitstopScheduleService.exe (PC Pitstop LLC) SRV - (TeamViewer5) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe () SRV - (avg8wd) -- C:\Programme\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (avg8emc) -- C:\Programme\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.) SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software) SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software) SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software) SRV - (McComponentHostService) -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.) SRV - (Hamachi2Svc) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (UserAccess7) SecuROM User Access Service (V7) -- C:\Windows\System32\UAService7.exe (Sony DADC Austria AG.) SRV - (ES lite Service) -- C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE () SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.) SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (GnabService) -- c:\Programme\Common Files\Gnab\Service\ServiceController.exe (Empolis GmbH) SRV - (AVM WLAN Connection Service) -- C:\Programme\avmwlanstick\WLanNetService.exe (AVM Berlin) ========== Driver Services (SafeList) ========== DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) 2000 DDK provider) DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys (Duplex Secure Ltd.) DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software) DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software) DRV - (vmm) -- C:\Windows\System32\drivers\VMM.sys (Microsoft Corporation) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.) DRV - (SCREAMINGBDRIVER) -- C:\Windows\System32\drivers\ScreamingBAudio.sys (Screaming Bee LLC) DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek ) DRV - (RivaTuner32) -- C:\Programme\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys () DRV - (cdrmkaun) -- C:\Users\*****\AppData\Local\Temp\cdrmkaun.sys () DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.) DRV - (EkaProt6) -- C:\Windows\System32\drivers\ekaprot6.sys (Windows (R) Codename Longhorn DDK provider) DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.) DRV - (LMouKE) -- C:\Windows\System32\drivers\LMouKE.Sys (Logitech, Inc.) DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.) DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.) DRV - (L8042mou) -- C:\Windows\System32\drivers\L8042mou.Sys (Logitech, Inc.) DRV - (L8042Kbd) -- C:\Windows\System32\drivers\L8042Kbd.sys (Logitech, Inc.) DRV - (VPCNetS2) -- C:\Windows\System32\drivers\VMNetSrv.sys (Microsoft Corporation) DRV - (WSDPrintDevice) -- C:\Windows\System32\drivers\WSDPrint.sys (Microsoft Corporation) DRV - (MQAC) -- C:\Windows\System32\drivers\mqac.sys (Microsoft Corporation) DRV - (msloop) -- C:\Windows\System32\drivers\loop.sys (Microsoft Corporation) DRV - (X4HSX32Ex) -- C:\Programme\Metaboli Player\X4HSX32Ex.sys (Exent Technologies Ltd.) DRV - (netr73) -- C:\Windows\System32\drivers\netr73.sys (Ralink Technology, Corp.) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (RTL8187B) -- C:\Windows\System32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) DRV - (RtlProt) -- C:\Windows\System32\drivers\RtlProt.sys (Windows (R) Codename Longhorn DDK provider) DRV - (FWLANUSB) -- C:\Windows\System32\drivers\fwlanusb.sys (AVM GmbH) DRV - (avmeject) -- C:\Windows\System32\drivers\avmeject.sys (AVM Berlin) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.) DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.) DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation) DRV - (SIS163u) -- C:\Windows\System32\drivers\sis163u.sys (SiS Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dsl-start.computerbild.de/ IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://dsl-start.computerbild.de/ IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {0df41d51-d5ab-4f8a-941f-0d1ed6596bc7} - C:\Programme\M2Bar\tbM2B1.dll (Conduit Ltd.) IE - HKLM\..\URLSearchHook: {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\tbWinl.dll (Conduit Ltd.) IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Programme\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKLM\..\URLSearchHook: {c9508125-4747-4733-b048-e4b82dc9716d} - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Programme\softonic-de3\tbsoft.dll (Conduit Ltd.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://qip.ru IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.qip.ru IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/skins7/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://search.qip.ru/ie IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - prefs.js..browser.search.defaultthis.engineName: "Winload Customized Web Search" FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.selectedEngine: "ICQ Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.youtube.com" FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.3 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0 FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.4 FF - prefs.js..keyword.URL: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com: C:\Program Files\MyWebSearch\bar\4.bin FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.13 23:46:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.10 13:32:27 | 000,000,000 | ---D | M] [2010.07.29 02:32:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Extensions [2010.07.29 02:32:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Extensions\IMVUClientXUL@imvu.com [2011.01.13 17:10:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions [2010.03.25 23:22:23 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010.06.24 15:05:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010.10.15 22:23:55 | 000,000,000 | ---D | M] (www.Freeware-download.com Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{26647ca4-a2a7-4eac-8a72-761aa9141de7} [2010.07.18 20:40:28 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89} [2010.10.09 10:54:00 | 000,000,000 | ---D | M] (Winload Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{40c3cc16-7269-4b32-9531-17f2950fb06f} [2010.09.05 15:01:22 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822} [2010.11.13 23:21:14 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.10.09 10:53:56 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2010.10.09 10:53:57 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE} [2010.12.10 19:34:04 | 000,000,000 | ---D | M] (kikin plugin) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{AA994882-F391-4d2e-806F-8908DA4814ED} [2010.07.14 17:44:39 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2010.10.09 10:53:57 | 000,000,000 | ---D | M] (softonic-de3 Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065} [2010.10.09 10:53:55 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010.06.24 15:05:01 | 000,000,000 | ---D | M] (FoxTab) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a} [2010.11.11 13:54:27 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\DTToolbar@toolbarnet.com [2010.08.03 01:18:53 | 000,000,000 | ---D | M] (Mein Gutscheincode Finder) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\finder@meingutscheincode.de [2010.06.24 15:09:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\piclens@cooliris.com [2010.07.18 20:40:38 | 000,000,000 | ---D | M] ("QipCounter") -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\QipCounter@qip.ru [2010.12.25 23:38:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\staged-xpis [2010.02.16 18:21:29 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\aedlqb4a.default\extensions\toolbar@ask.com [2010.12.25 23:40:37 | 000,002,425 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\4-loot.xml [2010.10.10 20:09:38 | 000,002,329 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\bing.xml [2010.10.10 20:09:38 | 000,001,117 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\conduit.xml [2010.11.11 13:52:40 | 000,002,059 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\daemon-search.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-1.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-10.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-11.xml [2010.10.10 20:38:13 | 000,000,950 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-12.xml [2010.10.29 16:23:50 | 000,000,950 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-13.xml [2010.11.12 13:27:43 | 000,000,950 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-14.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-2.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-3.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-4.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-5.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-6.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-7.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-8.xml [2010.10.10 20:09:38 | 000,001,097 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin-9.xml [2010.11.13 23:21:16 | 000,000,168 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin.gif [2010.11.13 23:21:16 | 000,000,618 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin.src [2010.04.22 13:33:22 | 000,000,945 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\icqplugin.xml [2010.10.30 12:00:00 | 000,010,017 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\mywebsearch.xml [2010.10.10 20:09:38 | 000,002,314 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\qip-search.xml [2010.12.25 23:38:34 | 000,001,801 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\search-the-web.xml [2010.10.10 20:09:38 | 000,000,733 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\Search.xml [2010.10.10 20:09:38 | 000,001,681 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\winamp-search.xml [2010.10.10 20:09:39 | 000,002,182 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\{4861C4E7-7A28-4C19-BB39-0AC80A363821}.xml [2010.10.10 20:12:34 | 000,001,088 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\{53BEC27A-97B4-49E2-8D77-0959B61D4DB3}.xml [2010.10.10 20:09:39 | 000,002,071 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\{729AC19C-A02A-49AF-ADB9-DDED2EDD6B10}.xml [2010.10.10 20:09:39 | 000,001,864 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\aedlqb4a.default\searchplugins\{D0C53CDC-CFB6-44A8-BD2B-6B8A7C2D69E1}.xml [2011.01.13 17:10:16 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2009.11.07 00:17:40 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.10.10 20:09:29 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Programme\Mozilla Firefox\extensions\quickstores@quickstores.de [2010.11.11 15:18:27 | 000,000,000 | ---D | M] (Free Download Manager plugin) -- C:\PROGRAM FILES\FREE DOWNLOAD MANAGER\FIREFOX\EXTENSION [2006.09.21 17:29:00 | 000,135,227 | ---- | M] (Exent Technologies Ltd.) -- C:\Programme\Mozilla Firefox\plugins\npExentCtl.dll [2010.01.12 21:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll [2010.10.10 20:09:38 | 000,001,678 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.10.10 20:09:38 | 000,002,647 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml [2010.10.10 20:09:38 | 000,007,045 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.10.10 20:09:38 | 000,001,272 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.10.10 20:09:38 | 000,001,164 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.10.10 20:09:36 | 000,000,935 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 im.adtech.de O1 - Hosts: 127.0.0.1 adserver.adtech.de O1 - Hosts: 127.0.0.1 adtech.de O1 - Hosts: 127.0.0.1 atwola.com O1 - Hosts: 127.0.0.1 adserver.71i.de O1 - Hosts: 127.0.0.1 adicqserver.71i.de O1 - Hosts: 127.0.0.1 71i.de O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx () O2 - BHO: (M2Bar Toolbar) - {0df41d51-d5ab-4f8a-941f-0d1ed6596bc7} - C:\Programme\M2Bar\tbM2B1.dll (Conduit Ltd.) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Programme\Winamp Toolbar\winamptb.dll (AOL LLC.) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programme\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\tbWinl.dll (Conduit Ltd.) O2 - BHO: (RadioBar Toolbar) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - C:\Programme\RadioBar\toolbar.ni.dll (IMEDIX WEB TECHNOLOGIES LTD.) O2 - BHO: (QipLI Class) - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (TODO: <Company name>) O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programme\AVG\AVG8\avgtoolbar.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\*****\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru) O2 - BHO: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Programme\softonic-de3\tbsoft.dll (Conduit Ltd.) O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll () O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll (kikin) O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (M2Bar Toolbar) - {0df41d51-d5ab-4f8a-941f-0d1ed6596bc7} - C:\Programme\M2Bar\tbM2B1.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\tbWinl.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (RadioBar Toolbar) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - C:\Programme\RadioBar\toolbar.ni.dll (IMEDIX WEB TECHNOLOGIES LTD.) O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programme\AVG\AVG8\avgtoolbar.dll (AVG Technologies CZ, s.r.o.) O3 - HKLM\..\Toolbar: (no name) - {c9508125-4747-4733-b048-e4b82dc9716d} - No CLSID value found. O3 - HKLM\..\Toolbar: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Programme\softonic-de3\tbsoft.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Programme\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (M2Bar Toolbar) - {0DF41D51-D5AB-4F8A-941F-0D1ED6596BC7} - C:\Programme\M2Bar\tbM2B1.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (Winload Toolbar) - {40C3CC16-7269-4B32-9531-17F2950FB06F} - C:\Programme\Winload\tbWinl.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (RadioBar Toolbar) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - C:\Programme\RadioBar\toolbar.ni.dll (IMEDIX WEB TECHNOLOGIES LTD.) O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programme\AVG\AVG8\avgtoolbar.dll (AVG Technologies CZ, s.r.o.) O3 - HKCU\..\Toolbar\WebBrowser: (softonic-de3 Toolbar) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - C:\Programme\softonic-de3\tbsoft.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Programme\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKCU\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [AVG8_TRAY] C:\Programme\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [Ocs_SM] C:\Users\*****\AppData\Roaming\OCS\SM\SearchAnonymizer.exe (OCS) O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.) O4 - Startup: C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk = C:\Programme\Stardock\ObjectDock\ObjectDock.exe (Stardock) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1 O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files\Free Download Manager\dlall.htm () O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files\Free Download Manager\dlselected.htm () O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files\Free Download Manager\dllink.htm () O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\*****\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm () O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files\Free Download Manager\dlfvideo.htm () O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll (kikin) O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - File not found O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab (System Requirements Lab Class) O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} hxxp://cdn.scan.onecare.live.com/resource/download/scanner/de-de/wlscctrl2.cab (Windows Live OneCare safety scanner control) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://www.schueler.cc/uploader/ImageUploader5.cab (Image Uploader Control) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object) O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) O16 - DPF: {7A0D1738-10EA-47FF-92BE-4E137B5BE1A4} https://mpsnare.iesnare.com/StmOCX.cab (Stm Class) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programme\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\toolbarchrome {718733BC-AD64-4e5f-AC18-A85FBD75D54D} - C:\Programme\RadioBar\toolbar.ni.dll (IMEDIX WEB TECHNOLOGIES LTD.) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - File not found O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - File not found O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\*****\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\*****\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O30 - LSA: Authentication Packages - (C:\Windows\system32\vtUmKDWO) - File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2010.01.24 03:48:34 | 000,000,000 | ---D | M] - C:\Autorun -- [ NTFS ] O32 - AutoRun File - [2010.01.24 03:48:34 | 002,943,488 | ---- | M] () - C:\autorun.dat -- [ NTFS ] O32 - AutoRun File - [2010.01.16 17:33:38 | 000,367,686 | ---- | M] () - C:\Autorun.ico -- [ NTFS ] O32 - AutoRun File - [2010.01.24 03:48:02 | 000,000,162 | ---- | M] () - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2008.12.06 22:08:58 | 000,000,076 | ---- | M] () - E:\AUTORUN.INF -- [ FAT32 ] O33 - MountPoints2\{47f5bbe8-0fe6-11de-89e6-001e8c60eb59}\Shell - "" = AutoRun O33 - MountPoints2\{47f5bbe8-0fe6-11de-89e6-001e8c60eb59}\Shell\AutoRun\command - "" = L:\pushinst.exe O33 - MountPoints2\{54b424a8-1d9e-11e0-8bf2-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{54b424a8-1d9e-11e0-8bf2-806e6f6e6963}\Shell\AutoRun\command - "" = F:\Run.exe O33 - MountPoints2\{903391c1-f27c-11dc-88da-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setupSNK.exe -- [2008.01.19 08:33:30 | 000,013,312 | ---- | M] (Microsoft Corporation) O33 - MountPoints2\{9033930d-f27c-11dc-88da-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{9033930d-f27c-11dc-88da-806e6f6e6963}\Shell\AutoRun\command - "" = F:\Setup.exe O33 - MountPoints2\{9033930e-f27c-11dc-88da-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{9033930e-f27c-11dc-88da-806e6f6e6963}\Shell\AutoRun\command - "" = G:\SETUP.EXE O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setupSNK.exe -- [2008.01.19 08:33:30 | 000,013,312 | ---- | M] (Microsoft Corporation) O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\Installer.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.01.13 22:15:22 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\*****\Desktop\OTL.exe [2011.01.13 20:50:44 | 000,000,000 | ---D | C] -- C:\Programme\Java [2011.01.13 20:14:05 | 000,000,000 | ---D | C] -- C:\Users\*****\Documents\Rainmeter [2011.01.13 20:05:46 | 002,241,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msi.alt [2011.01.12 18:42:26 | 000,000,000 | -H-D | C] -- C:\Programme\old [2011.01.12 18:02:12 | 000,017,488 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2011.01.12 17:38:57 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MinecraftAlpha [2011.01.12 17:38:56 | 000,000,000 | ---D | C] -- C:\Programme\MinecraftAlpha [2011.01.12 17:32:13 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ACE [2011.01.12 17:28:04 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\LoL Mod [2011.01.12 17:02:26 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll [2011.01.12 17:02:16 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe [2011.01.11 18:03:40 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll [2011.01.11 18:03:39 | 000,176,128 | ---- | C] (Realtek ) -- C:\Windows\System32\drivers\Rtlh86.sys [2011.01.11 18:03:39 | 000,094,208 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RTNUninst32.dll [2011.01.11 18:03:36 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll [2011.01.11 18:03:36 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll [2011.01.11 18:03:36 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll [2011.01.11 18:03:35 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll [2011.01.11 18:03:33 | 001,538,592 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll [2011.01.11 18:03:29 | 000,367,136 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll [2011.01.11 18:03:29 | 000,055,328 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll [2011.01.11 18:03:28 | 002,796,064 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll [2011.01.11 18:03:07 | 000,551,456 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl [2011.01.11 18:03:00 | 002,975,776 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2011.01.11 18:03:00 | 000,348,160 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll [2011.01.11 18:03:00 | 000,165,376 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll [2011.01.11 18:03:00 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll [2011.01.11 18:03:00 | 000,059,392 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll [2011.01.11 18:02:55 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll [2011.01.11 18:02:54 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll [2011.01.11 18:02:53 | 001,938,704 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll [2011.01.11 18:02:52 | 000,311,568 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll [2011.01.11 18:02:52 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll [2011.01.11 18:02:52 | 000,068,696 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBWrp32.dll [2011.01.11 18:02:52 | 000,053,848 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBppld32.dll [2011.01.11 18:02:51 | 000,531,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBAPO32.dll [2011.01.11 18:02:51 | 000,050,776 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBPPCn32.dll [2011.01.11 18:02:46 | 000,297,376 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll [2011.01.11 18:02:41 | 000,146,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll [2011.01.11 18:02:41 | 000,096,160 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll [2011.01.11 18:02:37 | 000,000,000 | -H-D | C] -- C:\Programme\Temp [2011.01.11 18:02:13 | 000,000,000 | ---D | C] -- C:\Programme\Gigabyte [2011.01.11 18:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE [2010.12.28 23:45:24 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2010.12.28 23:45:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2010.12.27 21:52:48 | 000,000,000 | ---D | C] -- C:\Users\***** \AppData\Roaming\LolClient [2010.12.27 21:41:13 | 000,000,000 | ---D | C] -- C:\Riot Games [2010.12.27 21:41:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games [2010.12.27 20:40:03 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\lol [2010.12.24 21:23:45 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\Neuer Ordner (3) [2010.12.23 13:11:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} [2010.12.23 13:08:56 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2010.12.23 13:08:56 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2010.12.23 13:08:55 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll [2010.12.23 13:08:54 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2010.12.23 13:01:00 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2010.12.16 14:53:30 | 002,038,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010.12.16 14:53:28 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll [2010.12.16 14:53:28 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll [2010.12.16 14:53:27 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll [2010.12.16 14:53:25 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe [2010.12.16 14:53:24 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010.12.16 14:53:24 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2010.12.16 14:53:24 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010.12.16 14:53:19 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010.12.16 14:53:19 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010.12.16 14:53:18 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010.12.16 14:53:18 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010.12.16 14:53:18 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010.12.16 14:53:17 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010.12.16 14:53:17 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010.12.16 14:53:17 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2010.12.16 14:53:17 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010.12.16 14:53:17 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010.12.16 14:53:17 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010.12.16 14:53:17 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010.12.16 14:53:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010.12.16 14:53:17 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010.12.16 14:53:17 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010.12.16 14:53:17 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2010.12.16 14:53:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010.12.16 14:53:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010.08.31 00:45:41 | 000,210,728 | ---- | C] (Valve Corporation) -- C:\Programme\steamerrorreporter.exe [2010.08.20 11:31:34 | 007,764,264 | ---- | C] (Valve Corporation) -- C:\Programme\steamclient64.dll [2010.08.20 11:31:34 | 000,784,680 | ---- | C] (Valve Corporation) -- C:\Programme\GameOverlayRenderer64.dll [2010.08.20 11:31:34 | 000,723,240 | ---- | C] (Valve Corporation) -- C:\Programme\vstdlib_s64.dll [2010.08.20 11:31:34 | 000,376,616 | ---- | C] (Valve Corporation) -- C:\Programme\tier0_s64.dll [2010.08.20 11:31:34 | 000,292,648 | ---- | C] (Valve Corporation) -- C:\Programme\crashhandler.dll [2008.10.03 15:21:39 | 004,474,664 | ---- | C] (Valve Corporation) -- C:\Programme\steamclient.dll [2008.10.03 15:21:39 | 000,595,752 | ---- | C] (Valve Corporation) -- C:\Programme\GameOverlayRenderer.dll [2008.10.03 15:21:39 | 000,454,952 | ---- | C] (RAD Game Tools, Inc.) -- C:\Programme\mss32_s.dll [2008.10.03 15:21:39 | 000,440,104 | ---- | C] (Valve Corporation) -- C:\Programme\vstdlib_s.dll [2008.10.03 15:21:39 | 000,284,456 | ---- | C] (Valve Corporation) -- C:\Programme\tier0_s.dll [2008.10.03 15:21:39 | 000,122,864 | ---- | C] (Valve) -- C:\Programme\CSERHelper.dll [2008.10.03 15:21:39 | 000,071,464 | ---- | C] (Valve Corporation) -- C:\Programme\GameOverlayUI.exe [2008.10.03 15:21:38 | 003,348,264 | ---- | C] (Valve Corporation) -- C:\Programme\SteamUI.dll [2008.10.03 15:21:38 | 002,925,904 | ---- | C] (Valve Corporation) -- C:\Programme\Steam.dll [2008.10.03 15:21:38 | 001,039,192 | ---- | C] (Microsoft Corporation) -- C:\Programme\dbghelp.dll [2008.10.03 15:21:38 | 000,268,352 | ---- | C] (Valve Corporation) -- C:\Programme\WriteMiniDump.exe [2005.09.01 14:43:40 | 001,242,448 | ---- | C] (Valve Corporation) -- C:\Programme\Steam.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011.01.13 22:15:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\*****\Desktop\OTL.exe [2011.01.13 21:29:46 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2011.01.13 21:29:24 | 000,005,136 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011.01.13 21:29:24 | 000,005,136 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011.01.13 21:29:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.01.13 21:29:13 | 3219,644,416 | -HS- | M] () -- C:\hiberfil.sys [2011.01.13 21:23:32 | 000,437,061 | ---- | M] () -- C:\Users\*****\Desktop\MSIrepair.exe [2011.01.13 21:14:59 | 002,618,237 | ---- | M] () -- C:\Program Files\ClientRegistry.blob [2011.01.13 20:30:38 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{45FFAF24-290A-4589-B269-817CBCB0B14F}.job [2011.01.13 20:05:08 | 000,629,886 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.01.13 20:05:08 | 000,595,982 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.01.13 20:05:08 | 000,127,566 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.01.13 20:05:08 | 000,105,416 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.01.13 19:30:50 | 000,039,828 | ---- | M] () -- C:\Program Files\AppUpdateStats.blob [2011.01.13 17:11:50 | 070,093,797 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm [2011.01.12 22:41:00 | 000,093,219 | ---- | M] () -- C:\Users\*****\Desktop\Hausaufgabe (und CSS RATES) (52276589).rtf [2011.01.12 20:43:23 | 000,000,020 | ---- | M] () -- C:\Users\*****\defogger_reenable [2011.01.12 18:42:33 | 007,764,264 | ---- | M] (Valve Corporation) -- C:\Program Files\steamclient64.dll [2011.01.12 18:42:33 | 000,784,680 | ---- | M] (Valve Corporation) -- C:\Program Files\GameOverlayRenderer64.dll [2011.01.12 18:42:33 | 000,723,240 | ---- | M] (Valve Corporation) -- C:\Program Files\vstdlib_s64.dll [2011.01.12 18:42:33 | 000,376,616 | ---- | M] (Valve Corporation) -- C:\Program Files\tier0_s64.dll [2011.01.12 18:42:33 | 000,292,648 | ---- | M] (Valve Corporation) -- C:\Program Files\crashhandler.dll [2011.01.12 18:42:33 | 000,212,992 | ---- | M] () -- C:\Program Files\ThirdPartyLegalNotices.doc [2011.01.12 18:42:33 | 000,210,728 | ---- | M] (Valve Corporation) -- C:\Program Files\steamerrorreporter.exe [2011.01.12 18:42:33 | 000,071,464 | ---- | M] () -- C:\Program Files\avutil-50.dll [2011.01.12 18:42:33 | 000,020,480 | ---- | M] () -- C:\Program Files\SteamUI_1440.mst [2011.01.12 18:42:30 | 004,474,664 | ---- | M] (Valve Corporation) -- C:\Program Files\steamclient.dll [2011.01.12 18:42:30 | 000,595,752 | ---- | M] (Valve Corporation) -- C:\Program Files\GameOverlayRenderer.dll [2011.01.12 18:42:30 | 000,454,952 | ---- | M] (RAD Game Tools, Inc.) -- C:\Program Files\mss32_s.dll [2011.01.12 18:42:30 | 000,440,104 | ---- | M] (Valve Corporation) -- C:\Program Files\vstdlib_s.dll [2011.01.12 18:42:30 | 000,284,456 | ---- | M] (Valve Corporation) -- C:\Program Files\tier0_s.dll [2011.01.12 18:42:30 | 000,122,864 | ---- | M] (Valve) -- C:\Program Files\CSERHelper.dll [2011.01.12 18:42:30 | 000,071,464 | ---- | M] (Valve Corporation) -- C:\Program Files\GameOverlayUI.exe [2011.01.12 18:42:26 | 003,348,264 | ---- | M] (Valve Corporation) -- C:\Program Files\SteamUI.dll [2011.01.12 18:42:26 | 002,925,904 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam.dll [2011.01.12 18:42:26 | 001,039,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\dbghelp.dll [2011.01.12 18:42:26 | 000,268,352 | ---- | M] (Valve Corporation) -- C:\Program Files\WriteMiniDump.exe [2011.01.12 17:52:33 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini [2011.01.11 18:04:42 | 000,000,087 | RH-- | M] () -- C:\Windows\ctfile.rfc [2011.01.11 18:03:45 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2011.01.11 17:18:28 | 000,000,680 | ---- | M] () -- C:\Users\*****\AppData\Local\d3d9caps.dat [2010.12.29 02:20:31 | 000,088,899 | ---- | M] () -- C:\Users\*****\Desktop\jessica-alba.jpg [2010.12.28 20:22:25 | 000,064,512 | ---- | M] () -- C:\Users\*****\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll [2010.12.21 17:15:52 | 000,458,309 | ---- | M] () -- C:\Users\*****\shot0080.jpg [2010.12.21 17:15:52 | 000,416,572 | ---- | M] () -- C:\Users\*****\shot0076.jpg [2010.12.21 17:15:52 | 000,393,286 | ---- | M] () -- C:\Users\*****\shot0079.jpg [2010.12.21 17:15:50 | 000,435,212 | ---- | M] () -- C:\Users\*****\shot0081.jpg [2010.12.21 17:15:50 | 000,384,532 | ---- | M] () -- C:\Users\*****\shot0075.jpg [2010.12.21 17:15:47 | 000,382,291 | ---- | M] () -- C:\Users\*****\shot0073.jpg [2010.12.21 17:15:46 | 000,399,401 | ---- | M] () -- C:\Users\*****\shot0077.jpg [2010.12.21 17:15:46 | 000,398,049 | ---- | M] () -- C:\Users\*****\shot0078.jpg [2010.12.21 17:15:42 | 000,340,173 | ---- | M] () -- C:\Users\*****\shot0074.jpg [2010.12.21 17:15:32 | 000,328,792 | ---- | M] () -- C:\Users\*****\shot0083.jpg [2010.12.21 17:15:12 | 000,217,011 | ---- | M] () -- C:\Users\*****\shot0082.jpg [2010.12.17 13:31:29 | 002,292,728 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010.12.17 00:53:28 | 671,501,486 | R--- | M] () -- C:\Users\*****\Desktop\Paranormal Activities 2.avi [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.01.13 21:23:23 | 000,437,061 | ---- | C] () -- C:\Users\*****\Desktop\MSIrepair.exe [2011.01.12 20:43:04 | 000,000,020 | ---- | C] () -- C:\Users\*****\defogger_reenable [2011.01.12 18:42:33 | 000,071,464 | ---- | C] () -- C:\Programme\avutil-50.dll [2011.01.12 18:04:31 | 000,020,480 | ---- | C] () -- C:\Programme\SteamUI_1440.mst [2011.01.11 18:04:42 | 000,146,432 | ---- | C] () -- C:\Windows\System32\APOMngr.DLL [2011.01.11 18:04:42 | 000,072,704 | ---- | C] () -- C:\Windows\System32\CmdRtr.DLL [2011.01.11 18:04:42 | 000,000,087 | RH-- | C] () -- C:\Windows\ctfile.rfc [2011.01.11 18:03:39 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll [2011.01.11 18:00:54 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2011.01.11 17:48:05 | 3219,644,416 | -HS- | C] () -- C:\hiberfil.sys [2010.12.23 13:22:07 | 000,011,776 | ---- | C] () -- C:\Windows\System32\rtl120.bpl [2010.12.21 17:14:07 | 000,458,309 | ---- | C] () -- C:\Users\*****\shot0080.jpg [2010.12.21 17:14:07 | 000,435,212 | ---- | C] () -- C:\Users\*****\shot0081.jpg [2010.12.21 17:14:07 | 000,416,572 | ---- | C] () -- C:\Users\*****\shot0076.jpg [2010.12.21 17:14:07 | 000,399,401 | ---- | C] () -- C:\Users\*****\shot0077.jpg [2010.12.21 17:14:07 | 000,398,049 | ---- | C] () -- C:\Users\*****\shot0078.jpg [2010.12.21 17:14:07 | 000,393,286 | ---- | C] () -- C:\Users\*****\shot0079.jpg [2010.12.21 17:14:07 | 000,384,532 | ---- | C] () -- C:\Users\*****\shot0075.jpg [2010.12.21 17:14:07 | 000,382,291 | ---- | C] () -- C:\Users\*****\shot0073.jpg [2010.12.21 17:14:07 | 000,340,173 | ---- | C] () -- C:\Users\*****\shot0074.jpg [2010.12.21 17:14:07 | 000,328,792 | ---- | C] () -- C:\Users\*****\shot0083.jpg [2010.12.21 17:14:07 | 000,217,011 | ---- | C] () -- C:\Users\*****\shot0082.jpg [2010.12.17 00:53:28 | 671,501,486 | R--- | C] () -- C:\Users\*****\Desktop\Paranormal Activities 2.avi [2010.11.15 20:16:18 | 000,000,014 | ---- | C] () -- C:\Programme\Steam_64.mst [2010.10.11 14:46:12 | 000,000,207 | ---- | C] () -- C:\Windows\aimpr.ini [2010.10.10 19:39:13 | 000,020,478 | ---- | C] () -- C:\Users\*****\AppData\Roaming\UserTile.png [2010.10.08 13:26:43 | 000,138,056 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2010.10.08 13:26:42 | 000,138,056 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PnkBstrK.sys [2010.08.26 15:56:02 | 000,000,065 | ---- | C] () -- C:\Programme\debug.log [2010.08.22 22:37:52 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.INI [2010.08.14 17:45:21 | 000,001,585 | ---- | C] () -- C:\ProgramData\hpzinstall.log [2010.08.04 19:17:46 | 000,006,943 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.ini [2010.07.26 21:32:57 | 000,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010.07.26 21:32:55 | 000,755,027 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2010.07.26 21:32:55 | 000,159,839 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2010.07.26 21:32:54 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2010.07.26 21:32:54 | 000,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll [2010.06.26 15:53:09 | 000,000,110 | ---- | C] () -- C:\Programme\GameValidation.log [2010.06.11 21:10:00 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI [2010.04.24 00:25:37 | 000,048,961 | ---- | C] () -- C:\Programme\big5_string.txt [2010.04.24 00:02:24 | 000,113,030 | ---- | C] () -- C:\Programme\locale_big5.lua [2010.04.24 00:01:52 | 000,000,143 | ---- | C] () -- C:\Programme\.k5login [2010.04.19 17:25:04 | 000,000,032 | ---- | C] () -- C:\Windows\Menu.INI [2010.04.17 12:57:28 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll [2010.03.20 00:47:26 | 000,000,028 | ---- | C] () -- C:\Windows\Robota.INI [2010.03.13 18:52:16 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll [2010.01.20 14:13:08 | 000,005,020 | ---- | C] () -- C:\Programme\GameOverlayRenderer.log [2009.12.27 00:38:58 | 000,002,075 | ---- | C] () -- C:\Programme\GameOverlayUI.exe.log.last [2009.12.27 00:38:58 | 000,001,675 | ---- | C] () -- C:\Programme\GameOverlayUI.exe.log [2009.11.15 17:58:39 | 000,000,600 | ---- | C] () -- C:\Users\*****\AppData\Local\PUTTY.RND [2009.11.14 00:59:07 | 001,589,248 | ---- | C] () -- C:\Windows\System32\libmysql_d.dll [2009.11.07 15:26:55 | 000,004,236 | ---- | C] () -- C:\Programme\GameOverlayRenderer.dll.log [2009.11.06 23:50:46 | 000,039,828 | ---- | C] () -- C:\Programme\AppUpdateStats.blob [2009.11.06 23:41:52 | 002,349,631 | ---- | C] () -- C:\Programme\Steam.log [2009.11.06 23:41:49 | 000,212,992 | ---- | C] () -- C:\Programme\ThirdPartyLegalNotices.doc [2009.11.06 23:40:38 | 002,618,237 | ---- | C] () -- C:\Programme\ClientRegistry.blob [2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2009.11.04 14:22:52 | 000,060,360 | ---- | C] () -- C:\Programme\SteamUI_1020.mst [2009.10.21 11:08:07 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009.10.03 03:57:14 | 001,073,152 | ---- | C] () -- C:\Windows\System32\libmysql_c.dll [2009.08.25 16:17:32 | 000,352,648 | ---- | C] () -- C:\Windows\System32\SysCheck2.dll [2009.06.11 23:28:32 | 000,041,808 | ---- | C] () -- C:\Windows\System32\xfcodec.dll [2009.04.18 19:53:37 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2009.03.27 16:29:19 | 000,000,040 | ---- | C] () -- C:\ProgramData\ra3.ini [2009.03.01 19:40:51 | 000,000,000 | ---- | C] () -- C:\Users\*****\AppData\Local\RT73_{F9D98C4E-BBA2-4D3E-8BB7-8A49FF288017}_prof [2009.03.01 19:32:07 | 000,000,151 | ---- | C] () -- C:\Windows\PhotoSnapViewer.INI [2009.02.17 19:34:16 | 000,000,035 | ---- | C] () -- C:\Windows\WorldBuilder.INI [2008.10.07 08:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll [2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll [2008.10.03 15:16:25 | 000,153,088 | ---- | C] () -- C:\Programme\Unwise32.exe [2008.07.22 12:30:25 | 000,645,640 | -HS- | C] () -- C:\Windows\System32\vxtonuli.ini [2008.07.21 12:01:00 | 000,617,220 | -HS- | C] () -- C:\Windows\System32\xnanuaem.ini [2008.07.21 11:53:44 | 000,628,465 | -HS- | C] () -- C:\Windows\System32\ivuxxaah.ini [2008.07.20 10:49:47 | 000,617,105 | -HS- | C] () -- C:\Windows\System32\sidonfik.ini [2008.07.19 08:53:42 | 000,616,944 | -HS- | C] () -- C:\Windows\System32\qwjnyqys.ini [2008.07.18 23:14:57 | 000,617,234 | -HS- | C] () -- C:\Windows\System32\qwxmeyqf.ini [2008.07.18 23:09:56 | 000,150,797 | -HS- | C] () -- C:\Windows\System32\OWDKmUtv.ini [2008.07.18 23:09:56 | 000,150,781 | -HS- | C] () -- C:\Windows\System32\OWDKmUtv.ini2 [2008.06.25 13:46:53 | 000,000,552 | ---- | C] () -- C:\Users\*****\AppData\Local\d3d8caps.dat [2008.06.05 08:58:26 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll [2008.04.17 12:52:39 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI [2008.03.29 12:05:36 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2008.03.16 20:18:53 | 000,000,680 | ---- | C] () -- C:\Users\*****\AppData\Local\d3d9caps.dat [2008.03.16 17:57:54 | 000,000,000 | ---- | C] () -- C:\Windows\System32\swunilog.ini [2008.03.16 12:23:52 | 000,064,512 | ---- | C] () -- C:\Users\*****\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008.03.15 12:15:35 | 000,000,095 | ---- | C] () -- C:\Users\*****\AppData\Local\fusioncache.dat [2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2005.08.31 00:13:02 | 000,111,574 | R--- | C] () -- C:\Programme\uninstall_steam.exe [2005.02.27 12:09:34 | 000,286,208 | ---- | C] () -- C:\Windows\System32\CNCS232.DLL ========== Alternate Data Streams ========== @Alternate Data Stream - 64 bytes -> C:\Users\*****\Desktop\YouTube - [FULL HD 1080p]Official Short Version of Kings and Queens by 30 Seconds To Mars.mp3:TOC.WMV @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:7E95B6FD < End of report > Logfile 2: Code:
ATTFilter OTL Extras logfile created on: 13.01.2011 22:16:43 - Run 2
OTL by OldTimer - Version 3.2.20.2 Folder = C:\Users\*****\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18999)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 159,27 Gb Free Space | 34,20% Space Free | Partition Type: NTFS
Drive D: | 445,75 Gb Total Space | 444,99 Gb Free Space | 99,83% Space Free | Partition Type: NTFS
Drive E: | 19,99 Gb Total Space | 16,27 Gb Free Space | 81,36% Space Free | Partition Type: FAT32
Computer Name: CSS-PC | User Name: *****| Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1361188788-2792366461-4237611130-1002]
"EnableNotifications" = 0
"EnableNotificationsRef" = 5
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C05B0D7-49D4-4E96-BF61-D5121958A1B1}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{0FEF7D48-F3CF-459C-9151-A91DD4110F75}" = lport=8390 | protocol=6 | dir=in | name=league of legends game client |
"{26D6637A-1D90-4B6E-B996-8DBA13B19DD7}" = lport=6964 | protocol=6 | dir=in | name=league of legends launcher |
"{2A298769-A237-48F2-90BF-336E18F324CC}" = lport=49162 | protocol=6 | dir=in | name=akamai netsession interface |
"{346CC373-B614-4FC3-AB75-39816DDE0A3F}" = lport=3724 | protocol=6 | dir=in | name=blizzard downloader: 3724 |
"{3D6DA3AD-3F73-4EF2-9A1C-6AD7601F56FC}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{4ADA7AE3-E1B9-4852-AEBE-11BDD06CD296}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{55D0AA9A-DDC3-40F5-80A6-877C2F7EC540}" = lport=27015 | protocol=6 | dir=in | name=css tcp |
"{5BA21E03-FBCA-451A-9FF4-CA1476A8CA43}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher |
"{6082B1F3-D98D-4EC7-B573-D54448B76066}" = lport=6943 | protocol=6 | dir=in | name=league of legends launcher |
"{63189846-F72F-4E3F-A0F2-6F839A2C9438}" = lport=6963 | protocol=17 | dir=in | name=league of legends launcher |
"{64CA02A0-321D-4FD0-B1F7-30C48E4620F8}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{6BB69875-A88C-4667-AEF4-9D93F13913F3}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{71679C42-473F-4516-AEC2-323C3BF3DA04}" = lport=6964 | protocol=17 | dir=in | name=league of legends launcher |
"{73B0A2C9-1407-44B0-A5DC-ED2A393E33F0}" = lport=6940 | protocol=17 | dir=in | name=league of legends launcher |
"{77B8D4CC-DA25-4012-BC58-7DBCDB858080}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8A82D27F-DA69-48C3-853B-A230CBAE9A23}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{905B16F4-7464-4B45-818C-CBF826FB7168}" = lport=8390 | protocol=17 | dir=in | name=league of legends game client |
"{969DDEFF-9405-4619-8B3E-2E34923D715A}" = lport=50792 | protocol=6 | dir=in | name=akamai netsession interface |
"{97BBA0D8-8363-4161-AFC4-C0F1131449C9}" = lport=5120 | protocol=6 | dir=in | name=icq |
"{9927911A-E64B-4BBC-B918-63F9BBF6EF44}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{9D2DAA21-730C-471F-BC19-71338798E5CA}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher |
"{A0384400-3D52-4956-998B-A10F6EDA5740}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A4F3D7EE-214E-4FE1-8EE7-CEA52415F585}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{AD9368E2-A4CE-4A52-936D-EA1D26106719}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B6153BE9-767D-49D6-9A2D-35195F7E61F2}" = lport=8393 | protocol=6 | dir=in | name=league of legends lobby |
"{B9203F82-1142-4C7C-AB01-A52DF0DC39B7}" = lport=5120 | protocol=17 | dir=in | name=icq2 |
"{B979BC7B-317A-4135-9F42-7482FBA463A7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BA483036-4EF8-4EF5-B121-52C0E7E4F12F}" = lport=6940 | protocol=6 | dir=in | name=league of legends launcher |
"{BA98E333-2F55-4E3F-8562-51EE1A632A80}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{BB6737FD-ADC0-4BA1-A5E6-FDBAA1DF1E29}" = lport=8393 | protocol=17 | dir=in | name=league of legends lobby |
"{C08EECF9-7D86-4E41-BE2D-5B2D0E136783}" = lport=6943 | protocol=17 | dir=in | name=league of legends launcher |
"{C28F08DD-5D21-4C6A-BBE0-F3E8D708CD31}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CD44F454-4912-46EF-BED8-15B3862489B2}" = rport=2869 | protocol=6 | dir=out | app=system |
"{D40B4AA4-F57E-4E49-AFF8-0673B6B196F6}" = lport=6963 | protocol=6 | dir=in | name=league of legends launcher |
"{D725C3EE-2DA4-4961-A126-AB3D3EF4AE9B}" = lport=27015 | protocol=17 | dir=in | name=css udp |
"{D8741B57-8D10-4FBA-9A41-EB3A64D72362}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{DED64368-543D-4054-8F5B-5F5F67BDA9AF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{E8F8D001-2E76-4799-BCA4-93F99F93E8AE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F448CAD1-DB4A-477D-A3DC-3B8D36C20E80}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{FE7B6091-698D-4C63-9903-F0AC739E1E60}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{008F45F5-8B0A-4132-BF02-088EBD7EF96E}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{01A95DFE-1DAA-4B6D-9063-5EBBD3DCEC92}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{01FF90FB-01E4-453B-BE81-C27D729B316C}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{04E6A5C9-86CB-48D3-A38C-5419A2D9104D}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{05A8065F-95B0-4641-A006-3435EACEC439}" = protocol=6 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\air\lolclient.exe |
"{0FC0617C-0BF6-4048-A016-3FCA060C043D}" = protocol=17 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe |
"{111B2C21-33DE-404F-96F7-4180D7E7B278}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1121F50F-8723-437C-8EF4-38B06A2B8983}" = protocol=17 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe |
"{1A73F621-336E-4DF3-8345-375111EBD144}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{1B1748DC-6165-4265-A637-F50FD695EF59}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{1B2FBE93-CB00-43D4-B4DD-AC4B570FE120}" = dir=in | app=c:\program files\avg\avg8\avgnsx.exe |
"{21659195-52C1-4D99-AD63-B4D237D6C481}" = protocol=58 | dir=in | app=system |
"{21B3BC2B-F0E1-420F-B23F-777BDE2186E3}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{232A5A42-522D-4801-BC2D-C595233DCF41}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{2356D6D6-0753-422C-805E-0561945DDFC1}" = dir=in | app=c:\program files\avg\avg8\avgupd.exe |
"{275741E9-F33F-4763-8DE3-49CCC2AF99D7}" = protocol=6 | dir=in | app=c:\program files\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"{2767024E-E854-48FC-932E-E746C80A7564}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{292B7806-1773-4B16-AB42-C8736B5413EC}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackops.exe |
"{2AF52DCE-31FB-4821-A019-025F55222085}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{2C1DC298-4BF6-499E-B846-E2BC739839C2}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{2D6A14E8-057A-4E2F-A015-A5F65BBCE660}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{329C7D66-D527-4586-A81B-E881A0A1A131}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{36A7542E-FFD9-4162-AD17-004600F61A31}" = protocol=6 | dir=in | app=c:\program files\steam.exe |
"{392604E7-1051-474F-9663-43BAB43916EE}" = protocol=6 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe |
"{3A167DB3-4866-460C-A072-1BFE9CD08BF6}" = protocol=17 | dir=in | app=c:\program files\steam.exe |
"{3A57850A-DEEC-4B42-9C1B-A3E623AF9338}" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"{3D845C86-79C4-4AC1-AB6A-E00C7318983D}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{3E9DAA9A-BB76-452D-B1A7-D74F3DF7E114}" = protocol=17 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\lol.launcher.exe |
"{3F5F87F9-DCC0-4F4B-A530-6BB879C236CF}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{3F6CF742-2126-4501-9F69-876671DF79A4}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{405ACEB2-FECE-4F0A-8DB0-2FE05B7EF8B2}" = protocol=6 | dir=in | app=c:\users\*****\desktop\utorrent.exe |
"{442603C3-E0B2-4D55-9324-A843926F727C}" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"{45513716-8560-42F2-877D-FFD723DBDE23}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackops.exe |
"{4572AD5A-F025-4F77-B48B-76EF3BA9D2BC}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{49110F9D-D408-4A19-9AEA-5EBD7415137F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4988ECF2-FC21-4953-BF25-A06A02A3B78E}" = dir=in | app=c:\program files\avg\avg8\avgemc.exe |
"{4A024153-8BBE-4806-945B-D06E87E80225}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{4CA553A5-E498-44EA-B29D-1654492FB82C}" = protocol=6 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\lol.launcher.exe |
"{5542E07D-0537-4537-9D1F-E6E8A87B28F4}" = protocol=17 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\air\lolclient.exe |
"{5B316294-15E3-46FE-981A-9EA0A7C83C0B}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{5D05496D-5C4B-4D5F-97EE-0F0D680BE091}" = protocol=17 | dir=in | app=c:\users\*****\desktop\utorrent.exe |
"{5EFD9B5D-1469-4DB9-BB55-262F6BD0E058}" = protocol=17 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\air\lolclient.exe |
"{6344AB96-B2EF-4CBE-8D59-094B1D06A590}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{63E9822C-555C-4EA6-A380-AA48520024D7}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackopsmp.exe |
"{678C4889-5934-4425-AAE6-B6FA2EA4ED62}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{69CAEA38-F11F-4F5B-8541-B6F4CAFCE42E}" = protocol=17 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\lol.launcher.exe |
"{6BBDEE17-BC91-46E8-B3EF-5A8C8D09CE10}" = protocol=6 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe |
"{7078527B-98B3-47E0-AAC3-B0C17DB1F26E}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{73FB1374-A2AA-4A61-A77A-9142F95867A7}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{74D46DD9-1171-4067-9933-A1E090CC0A61}" = protocol=6 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\air\lolclient.exe |
"{7B24F64C-A031-4B0C-8F46-7EC75B925C2B}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{7BE35FED-5ACF-444D-93C0-BA8C0B44AFBD}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8615D0F3-DD73-44C9-8428-93F3219CD1C6}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{874CD647-4969-4DDF-8EF3-98B495F896FA}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{8C24367B-70D5-4305-B2D1-EEE1647DDBEE}" = protocol=6 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\lol.launcher.exe |
"{8DB7DEE8-2169-4E45-B51A-213FB1ECEAAD}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{8EC74C0A-02AC-41E3-AF7A-41F8CE2ADE37}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackopsmp.exe |
"{8F87465C-804D-448F-90AC-30EA9B8D43DC}" = protocol=17 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\game\league of legends.exe |
"{91EC3469-06D9-4C3A-ACB7-29B477D8228A}" = protocol=6 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\game\league of legends.exe |
"{95A45C5A-E659-4D43-9BB9-40C815D40473}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{980A412B-C118-4F22-B2B7-AE0F47DFBAA1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{999C995E-83B5-47B0-9440-1E9C67738E70}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackops.exe |
"{9EA2C909-D83E-4D49-AF79-FDD90EB82996}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-203 |
"{A3A751F7-934A-4E9F-808B-B50CB48660E5}" = protocol=17 | dir=in | app=c:\program files\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"{A50CEF40-2383-44E8-A139-36A437A6C8D8}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{A6C0D567-3046-41D1-976E-9AD7C32D3B1B}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{AC05320C-9267-48E0-8CFE-82B8DE7FC1ED}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{B02E554B-F392-41FB-A272-68EF3D3EDF13}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackopsmp.exe |
"{B1E2D66E-608D-4ADB-B8BB-EBC28D130837}" = protocol=6 | dir=in | app=c:\program files\electronic arts\aufstieg des hexenkönigs\game.dat |
"{B20244CD-5E42-41EA-A7F7-943D2FAF3483}" = protocol=17 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\game\league of legends.exe |
"{B4705038-051B-40D9-BB3E-92DE7E4D4DA5}" = protocol=17 | dir=in | app=c:\program files\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"{B7F1D8AB-6827-481E-9EAF-02C697C8333F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{BF16A81D-2DF0-43E4-9A33-E26CC4307051}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{BFC907A9-3872-4F41-883A-3AD260858AAE}" = protocol=6 | dir=in | app=c:\program files\steamapps\the_six_samurais\counterstrike source beta\hl2.exe |
"{C1322C69-1E6B-4D3E-AC5E-3C3610DBFFB9}" = protocol=6 | dir=in | app=c:\users\*****\desktop\wery wichtig\league of legends\lol.launcher.exe |
"{C26E84C1-18BA-4597-9CBE-1DECBE1124F6}" = protocol=17 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\lol.launcher.exe |
"{C60FDA62-0581-4237-8A44-A1936BF7E6AB}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackopsmp.exe |
"{C6612500-B109-4895-BAA1-DB2C2E6B7451}" = protocol=17 | dir=in | app=c:\program files\steamapps\the_six_samurais\counterstrike source beta\hl2.exe |
"{C880E9FE-F658-4604-B6CE-741320853FC2}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{CE836109-FAFE-4920-8DC3-10F6B6FECC9D}" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty black ops\blackops.exe |
"{D12915DD-705F-4729-8404-C2A8FC83988F}" = protocol=6 | dir=in | app=c:\users\*****\desktop\lol mod\league of legends\game\league of legends.exe |
"{D1EBD428-84C4-4B17-9962-277C6F399303}" = protocol=17 | dir=in | app=c:\program files\electronic arts\aufstieg des hexenkönigs\game.dat |
"{DC658D46-A73C-4129-9F02-C267DAA58BE1}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{DED723A1-8646-45C1-A599-BDB1322EA006}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{E0677503-11FE-4164-AEE3-82F4845C515B}" = protocol=6 | dir=in | app=c:\program files\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"{E5380076-DDB1-44B5-AA64-55287302F805}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{EF1274FF-6D7B-41B6-A559-3AFC8DA463DE}" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{F23F2661-67C5-44E9-B549-3DD5E0AE2285}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{F9FD91CE-E32F-4D7A-A511-40F9883D75A5}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"TCP Query User{22B11FA9-C940-417B-B013-D4C202AB34D2}C:\program files\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\program files\warcraft iii\war3.exe |
"TCP Query User{2AD252BC-910C-453A-8336-4AE4BFAE3BA6}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{2CAAA46D-4104-4E77-BC8F-0B6ECCCD1F93}C:\users\*****\desktop\wery wichtig\ching chang chong chinesesesen sein nicht dum bum bum\mc.exe" = protocol=6 | dir=in | app=c:\users\*****\desktop\wery wichtig\ching chang chong chinesesesen sein nicht dum bum bum\mc.exe |
"TCP Query User{2EB0E936-557A-4045-BF95-1D35BCA22BE2}C:\xampp\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
"TCP Query User{2F6217E1-B1BE-4226-A0CD-D88BD3E0AC52}C:\users\*****\desktop\mtvision\metin2.exe" = protocol=6 | dir=in | app=c:\users\*****\desktop\mtvision\metin2.exe |
"TCP Query User{3AE56084-BFAE-4575-802C-8B6557E1A8EE}C:\program files\metin2_germany\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2_germany\metin2.bin |
"TCP Query User{47D23921-E682-49C4-B8F1-65AD96D250E1}C:\hamel\orangebox\srcds.exe" = protocol=6 | dir=in | app=c:\hamel\orangebox\srcds.exe |
"TCP Query User{4BD347E3-56D3-4366-8673-271368AB7D34}C:\program files\metin2_germany\metin_longjuyt2_server2.exe" = protocol=6 | dir=in | app=c:\program files\metin2_germany\metin_longjuyt2_server2.exe |
"TCP Query User{5A6F42F3-1380-4219-8B2D-3172CEE4D696}C:\program files\portmap\portmap.exe" = protocol=6 | dir=in | app=c:\program files\portmap\portmap.exe |
"TCP Query User{6516A5C6-EDE6-495B-B40E-186109C5345E}C:\program files\metin2_germany\metin_longjuyt2.exe" = protocol=6 | dir=in | app=c:\program files\metin2_germany\metin_longjuyt2.exe |
"TCP Query User{6A87AE03-1DDC-4C4D-A9E0-1919B607BF29}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"TCP Query User{7781CA83-D818-43A5-A151-EABAFB37433D}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{934C7A5E-CDF7-45CA-8425-5F41169B908C}C:\program files\metin2_germany\germanserver1.exe" = protocol=6 | dir=in | app=c:\program files\metin2_germany\germanserver1.exe |
"TCP Query User{9662171D-FE71-46B7-848D-76E0CAAF5CC2}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.12.game" = protocol=6 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.12.game |
"TCP Query User{9AEF68B0-93A8-4503-99DD-AF5BCF36BADD}C:\users\*****\desktop\wery wichtig\da alde wurschtordner\mc.exe" = protocol=6 | dir=in | app=c:\users\*****\desktop\wery wichtig\da alde wurschtordner\mc.exe |
"TCP Query User{9AF9A36E-2B53-433F-852C-F6F14723139E}C:\program files\steamapps\the_six_samurais\half-life 2 deathmatch\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steamapps\the_six_samurais\half-life 2 deathmatch\hl2.exe |
"TCP Query User{9D9039D2-FE88-496E-824A-97176231B7D4}C:\users\*****\desktop\metin2\metin2client.bin" = protocol=6 | dir=in | app=c:\users\*****\desktop\metin2\metin2client.bin |
"TCP Query User{AC769B75-998A-4858-9247-F071FE565635}C:\users\*****\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\*****\program files\dna\btdna.exe |
"TCP Query User{AD86CACE-F018-4F9A-854E-8E78FFB2C256}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.6.game" = protocol=6 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.6.game |
"TCP Query User{AEF80AC3-1B78-4A47-9F92-1759A9D0F18D}C:\program files\metin2_germany\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2_germany\metin2.bin |
"TCP Query User{B0E9F6E4-8343-4A43-B7EC-49BABE2654C4}C:\program files\steam\andi\steamapps\the_six_samurais\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\andi\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"TCP Query User{B20159EB-2B1F-48D6-9DAF-5BA612721831}C:\xampp\filezillaftp\filezilla server.exe" = protocol=6 | dir=in | app=c:\xampp\filezillaftp\filezilla server.exe |
"TCP Query User{B56F48A3-6824-4D0B-901C-E2FE2264DB1E}C:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = protocol=6 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"TCP Query User{C4BC6D2C-DF96-4517-8E98-FAC322320FC2}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.7.game" = protocol=6 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.7.game |
"TCP Query User{D035CCAE-E26C-4F17-83C8-F801694AA3CD}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{D3652472-EF17-4B1A-8C05-A30B967695EE}C:\program files\metin2_germany\germanserver1.exe" = protocol=6 | dir=in | app=c:\program files\metin2_germany\germanserver1.exe |
"TCP Query User{DB6315D5-0562-4FD0-812A-5F26372B695C}C:\users\*****\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe" = protocol=6 | dir=in | app=c:\users\*****\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe |
"TCP Query User{DF78AC16-DAF7-477A-9539-6AFBF9C6792B}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{EC1C3E0C-55FC-4465-98B7-79FDC3555CC5}C:\users\*****\desktop\metin2\metin2.bin" = protocol=6 | dir=in | app=c:\users\*****\desktop\metin2\metin2.bin |
"TCP Query User{F0A17A22-937D-48D7-9180-D64CD5CFA1D5}C:\users\*****\desktop\mtvision\metin2.exe" = protocol=6 | dir=in | app=c:\users\*****\desktop\mtvision\metin2.exe |
"TCP Query User{F4A06F2F-031A-4316-8C74-14BDF102CD4A}C:\program files\steamapps\lostprophet28\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steamapps\lostprophet28\counter-strike source\hl2.exe |
"UDP Query User{00D04891-15E4-4A05-B5E2-5E08114177A3}C:\program files\steam\andi\steamapps\the_six_samurais\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\andi\steamapps\the_six_samurais\counter-strike source\hl2.exe |
"UDP Query User{159B034A-BF75-439B-AEC5-D194C580DC98}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.12.game" = protocol=17 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.12.game |
"UDP Query User{2AB6B720-FCC5-49D7-BECE-5238BE174D34}C:\users\*****\desktop\wery wichtig\ching chang chong chinesesesen sein nicht dum bum bum\mc.exe" = protocol=17 | dir=in | app=c:\users\*****\desktop\wery wichtig\ching chang chong chinesesesen sein nicht dum bum bum\mc.exe |
"UDP Query User{2C2C5DDA-DA53-4FE4-BF55-683A1D9C11E1}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"UDP Query User{32565325-C25A-491F-9F5F-CCE340CED673}C:\program files\metin2_germany\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2_germany\metin2.bin |
"UDP Query User{3B5BC08B-27F0-4ED1-8BB8-9311E5182F20}C:\users\*****\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\*****\program files\dna\btdna.exe |
"UDP Query User{4F2437B7-9BC1-4D19-A25E-7D5CC7D065B5}C:\program files\metin2_germany\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2_germany\metin2.bin |
"UDP Query User{5561A9D5-8F66-427D-91DA-F7FBE60E2261}C:\users\*****\desktop\wery wichtig\da alde wurschtordner\mc.exe" = protocol=17 | dir=in | app=c:\users\*****\desktop\wery wichtig\da alde wurschtordner\mc.exe |
"UDP Query User{5C59311B-37B7-4574-8976-79802A83F40F}C:\program files\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\program files\warcraft iii\war3.exe |
"UDP Query User{64D1EC70-1D87-4BBC-B854-318161B44264}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{66E00EC8-7A78-430F-91D2-9CD7DCE095CE}C:\users\*****\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe" = protocol=17 | dir=in | app=c:\users\*****\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe |
"UDP Query User{69281F5D-91E5-4344-854C-752EFCA822F2}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{6AF0E7F8-6F09-4B58-BC34-31813184EF59}C:\users\*****\desktop\mtvision\metin2.exe" = protocol=17 | dir=in | app=c:\users\*****\desktop\mtvision\metin2.exe |
"UDP Query User{7F86212A-1358-4D60-B92C-BB5C078B9142}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{97979998-4987-4393-8EFB-3E822877BAE5}C:\program files\steamapps\the_six_samurais\half-life 2 deathmatch\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steamapps\the_six_samurais\half-life 2 deathmatch\hl2.exe |
"UDP Query User{97BF56CD-0F29-4D79-8F6D-9AA1584713FC}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.7.game" = protocol=17 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.7.game |
"UDP Query User{98937C8E-B64E-4B6E-B11B-FF9D2802A172}C:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = protocol=17 | dir=in | app=c:\program files\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"UDP Query User{9976F999-A510-4249-A8EF-D8991BF80355}C:\program files\steamapps\lostprophet28\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steamapps\lostprophet28\counter-strike source\hl2.exe |
"UDP Query User{9A94FA93-BD5B-4444-B19E-2AA1DF4DC519}C:\users\*****\desktop\mtvision\metin2.exe" = protocol=17 | dir=in | app=c:\users\*****\desktop\mtvision\metin2.exe |
"UDP Query User{9DB479EA-580B-4F57-9258-E242C201511E}C:\program files\metin2_germany\metin_longjuyt2.exe" = protocol=17 | dir=in | app=c:\program files\metin2_germany\metin_longjuyt2.exe |
"UDP Query User{A69BF432-2FFB-40C7-911F-3BE1B26EDFA1}C:\users\*****\desktop\metin2\metin2client.bin" = protocol=17 | dir=in | app=c:\users\*****\desktop\metin2\metin2client.bin |
"UDP Query User{A856DBA5-19F6-439A-95CD-0AA7557C6E68}C:\program files\portmap\portmap.exe" = protocol=17 | dir=in | app=c:\program files\portmap\portmap.exe |
"UDP Query User{B300B99D-A0EA-42C8-8D17-8DAD45B6311F}C:\hamel\orangebox\srcds.exe" = protocol=17 | dir=in | app=c:\hamel\orangebox\srcds.exe |
"UDP Query User{C2FBB6D2-1A21-4CC2-8629-7BCB0825E467}C:\program files\metin2_germany\metin_longjuyt2_server2.exe" = protocol=17 | dir=in | app=c:\program files\metin2_germany\metin_longjuyt2_server2.exe |
"UDP Query User{C6DD96E0-D8DE-4E24-A79F-E5AD039CA900}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{CF17191A-B125-45C2-9CA2-6BF5D876E57B}C:\xampp\filezillaftp\filezilla server.exe" = protocol=17 | dir=in | app=c:\xampp\filezillaftp\filezilla server.exe |
"UDP Query User{E29953D1-48BB-450B-9849-34661BD71DA7}C:\program files\metin2_germany\germanserver1.exe" = protocol=17 | dir=in | app=c:\program files\metin2_germany\germanserver1.exe |
"UDP Query User{E9BC478D-5A20-4216-9DC3-E6A47ACAD022}C:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.6.game" = protocol=17 | dir=in | app=c:\program files\electronic arts\alarmstufe rot 3\data\ra3_1.6.game |
"UDP Query User{F1801F0B-5E8B-47C9-91FF-82A799FC44E2}C:\program files\metin2_germany\germanserver1.exe" = protocol=17 | dir=in | app=c:\program files\metin2_germany\germanserver1.exe |
"UDP Query User{F4421D05-751F-4346-826C-766E3D1ACF9C}C:\xampp\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
"UDP Query User{F5A4F25B-4062-4A68-95D3-61404C17B1C4}C:\users\*****\desktop\metin2\metin2.bin" = protocol=17 | dir=in | app=c:\users\*****\desktop\metin2\metin2.bin |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{023EC958-023C-42D1-B2A4-E9E4BEF599FC}" = SweetIM for Messenger 2.6
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{067EC517-9731-43FD-B4D5-296EE0027BBB}" = LogMeIn Hamachi
"{07300F01-89CA-4CF8-92BD-2A605EB83C95}" = EasySaver B9.0904.1
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3143 Banner Remover 1.1
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0CA38F52-F0FA-4B9F-8A36-EC8A9609FBBC}" = HALO 2 FÜR WINDOWS VISTA
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1B14B0C3-2D60-477C-A1FE-B88E60948854}" = OpenOffice.org 2.4
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{2258EB2F-185C-43A0-BD05-F8717375A70B}" = Vegas Pro 9.0
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{266C7330-C0F4-49E5-8F20-A56F9F822875}" = SweetIM Toolbar for Internet Explorer 3.3
"{27FDF949-69CE-435A-8372-339F72336AC5}" = MEDIONbox
"{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}" = Hama Wireless LAN Adapter
"{296D8550-CB06-48E4-9A8B-E5034FB64715}" = Command & Conquer™ Alarmstufe Rot 3
"{2B7BDADB-EC8C-4C54-B5DD-CE45A016D3A7}" = Metaboli Player
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{5527CA99-AAEC-45E2-9EB9-CED0BB2FC2BD}" = MorphVOX Pro
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{63B75E16-F290-4FCD-AF67-A9134CD01031}" = Nero 7 Essentials
"{6CDC748B-47B0-45EB-B740-681E8429F7F9}" = Opera 10.01
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows Vista and Later
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9E012857-0B5E-40A0-A36A-36751966A79B}_is1" = ICQ Status Checker 1.7
"{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
"{A401975C-C1C5-4ECB-BC18-BFD9F8F401B7}" = Paint.NET v3.5.3
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AD483998-2E9A-4405-83FF-6E503AF49CBB}" = Microsoft Virtual PC 2007 SP1
"{BDC88E5A-F47B-4314-AB38-994592E32C95}" = 802.11g Pen Size Wireless USB 2.0 Adapter HW.32 V1.10
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D761C5D2-E727-415A-BC4E-52642CEA1A1C}" = TubeBox!
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin 2.9
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"ACE LoL Client" = League of Legends - ACE Client by Matricus
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface
"Ashampoo WinOptimizer 4 FREE_is1" = Ashampoo WinOptimizer 4 FREE
"AVG8Uninstall" = AVG Free 8.5
"AVMWLANCLI" = AVM FRITZ!WLAN
"CCleaner" = CCleaner
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Setup.divx.com" = DivX-Setup
"Drumaxx" = Drumaxx
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FL Studio 9" = FL Studio 9
"Fraps" = Fraps (remove only)
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4
"Free Convert to DIVX AVI WMV MP4 MPEG Converter_is1" = Free Convert to DIVX AVI WMV MP4 MPEG Converter 5.8
"Free Download Manager_is1" = Free Download Manager 3.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"GoldWave v5.58" = GoldWave v5.58
"Google Chrome" = Google Chrome
"Half-Life Dedicated Server Update Tool" = Half-Life Dedicated Server Update Tool
"HyperCam 2" = HyperCam 2
"ICQ Password" = ICQ Password
"ICQToolbar" = ICQ Toolbar
"InstallShield_{BDC88E5A-F47B-4314-AB38-994592E32C95}" = 802.11g Pen Size Wireless USB 2.0 Adapter HW.32 V1.10
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.0.0 (Full)
"MAGIX Music Maker 16 Download-Version D" = MAGIX Music Maker 16 Download-Version
"MAGIX Music Maker 16 Premium Download Version UK" = MAGIX Music Maker 16 Premium Download Version
"MAGIX Screenshare D" = MAGIX Screenshare
"MAGIX Screenshare UK" = MAGIX Screenshare
"MAGIX Speed burnR D" = MAGIX Speed burnR
"MAGIX Speed burnR UK" = MAGIX Speed burnR
"MAGIX Video deluxe 16 Download-Version D" = MAGIX Video deluxe 16 Download-Version 9.0.0.55 (D)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan Plus
"Messenger Key" = Messenger Key 10.0
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MinecraftAlpha" = MinecraftAlpha
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"PC Fix 2010_is1" = PCFix
"PC Matic_is1" = PC Matic 1.1.0.32
"PremiumSoft Navicat for MySQL_is1" = PremiumSoft Navicat 9.0 for MySQL
"PunkBusterSvc" = PunkBuster Services
"PuTTY_is1" = PuTTY version 0.60
"QuickStores-Toolbar_is1" = QuickStores-Toolbar 1.2.0
"RadioBar" = RadioBar Toolbar
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"Sakura" = Sakura
"Sawer" = Sawer
"SearchAnonymizer" = SearchAnonymizer
"SiS163u" = 802.11 USB Wireless LAN Adapter
"softonic-de3 Toolbar" = softonic-de3 Toolbar
"Software Informer_is1" = Software Informer 1.0 BETA
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 205" = Source Dedicated Server
"Steam App 211" = Source SDK
"Steam App 240" = Counter-Strike: Source
"Steam App 260" = Counter-Strike: Source Beta
"Steam App 300" = Day of Defeat: Source
"Steam App 340" = Half-Life 2: Lost Coast
"Steam App 36920" = All Aspect Warfare Demo
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 5" = TeamViewer 5
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.4
"Warcraft III" = Warcraft III
"Winamp" = Winamp
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinLiveSuite_Wave3" = Windows Live Essentials
"Winload Toolbar" = Winload Toolbar
"WinRAR archiver" = WinRAR
"World of Warcraft" = World of Warcraft
"Xfire" = Xfire (remove only)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Advanced IM Password Recovery" = Advanced IM Password Recovery
"Octoshape add-in for Adobe Flash Player" = Octoshape add-in for Adobe Flash Player
"QIP Infium" = QIP Infium 2.0.9036
"QipGuard" = QIP Internet Guardian
"Winamp Detect" = Winamp Anwendungserkennung
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 07.05.2010 19:39:48 | Computer Name = CSS-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 07.05.2010 19:39:48 | Computer Name = CSS-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 07.05.2010 19:39:48 | Computer Name = CSS-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 08.05.2010 15:04:13 | Computer Name = CSS-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung ICQ.exe, Version 6.5.0.2024, Zeitstempel 0x4b010ef1,
fehlerhaftes Modul mshtml.dll, Version 8.0.6001.18904, Zeitstempel 0x4b837769,
Ausnahmecode 0xc0000005, Fehleroffset 0x00209b1c, Prozess-ID 0x13fc, Anwendungsstartzeit
01caeecb7b39bbc6.
Error - 08.05.2010 21:22:40 | Computer Name = CSS-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung PortMap (2) - Kopie.exe, Version 0.0.0.0, Zeitstempel
0x00000000, fehlerhaftes Modul PortMap (2) - Kopie.exe, Version 0.0.0.0, Zeitstempel
0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x000080f7, Prozess-ID 0xf8c,
Anwendungsstartzeit 01caee9c570e3da5.
Error - 09.05.2010 16:04:33 | Computer Name = CSS-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 09.05.2010 16:23:23 | Computer Name = CSS-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 10.05.2010 12:12:45 | Computer Name = CSS-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung Wieselmt2-Starter.exe, Version 0.0.0.0, Zeitstempel
0x4ab38d8e, fehlerhaftes Modul Wieselmt2-Starter.exe, Version 0.0.0.0, Zeitstempel
0x4ab38d8e, Ausnahmecode 0xc0000005, Fehleroffset 0x000655a9, Prozess-ID 0x1888,
Anwendungsstartzeit 01caf05b9f6c8042.
Error - 10.05.2010 12:12:58 | Computer Name = CSS-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung Wieselmt2-Starter.exe, Version 0.0.0.0, Zeitstempel
0x4ab38d8e, fehlerhaftes Modul Wieselmt2-Starter.exe, Version 0.0.0.0, Zeitstempel
0x4ab38d8e, Ausnahmecode 0xc0000005, Fehleroffset 0x000655a9, Prozess-ID 0x1fdc,
Anwendungsstartzeit 01caf05ba779f1d9.
Error - 10.05.2010 17:43:05 | Computer Name = CSS-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung winamp.exe, Version 5.5.7.2830, Zeitstempel
0x4b4cd59d, fehlerhaftes Modul ml_bookmarks.dll, Version 0.0.0.0, Zeitstempel 0x4b4cd5a8,
Ausnahmecode 0xc0000005, Fehleroffset 0x0000128b, Prozess-ID 0x247c, Anwendungsstartzeit
01caf089bed651aa.
[ Media Center Events ]
Error - 08.12.2008 15:41:00 | Computer Name = CSS-PC | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
GetLastError returned 10000105 Prozess: DefaultDomain Objektname: Media Center Guide
Error - 12.12.2008 13:58:52 | Computer Name = CSS-PC | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
GetLastError returned 10000105 Prozess: DefaultDomain Objektname: Media Center Guide
Error - 20.02.2009 21:39:45 | Computer Name = CSS-PC | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
GetLastError returned 10000105 Prozess: DefaultDomain Objektname: Media Center Guide
Error - 19.07.2009 12:18:51 | Computer Name = CSS-PC | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
GetLastError returned 10000105 Prozess: DefaultDomain Objektname: Media Center Guide
Error - 19.08.2009 17:37:59 | Computer Name = CSS-PC | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
GetLastError returned 10000105 Prozess: DefaultDomain Objektname: Media Center Guide
[ System Events ]
Error - 13.01.2011 16:27:14 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 13.01.2011 16:30:26 | Computer Name = CSS-PC | Source = DCOM | ID = 10016
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7009
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7023
Description =
Error - 13.01.2011 16:30:51 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 13.01.2011 16:30:54 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7009
Description =
Error - 13.01.2011 16:30:54 | Computer Name = CSS-PC | Source = Service Control Manager | ID = 7000
Description =
< End of report >
|
|
13.01.2011, 23:01
| #14 |
| /// Selecta Jahrusso | Windows Installer funktioniert nicht mehr [gelöst] Ich sehe das Du sogenannte Registry Cleaner am System hast. In deinem Fall TuneUp. Wir empfehlen auf keinen Fall jegliche Art von Registry Cleaner. Der Grund ist ganz einfach: Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Wir lesen oft genug von Hilfesuchenden, dass deren System nach der Nutzung von Registry Cleanern nicht mehr booted.
Zerstörst Du die Registry, zerstörst Du Windows. Ich empfehle Dir hiermit die oben genannte Software zu deinstallieren und in Zukunft auf solche Art von Software zu verzichten. WIndows + R Taste --> sfc /scannow ( eingeben ) --> Ok Dies wird deine Systemdateien nach Fehlern durchsuchen. Mache dies so lange bis keine Fehler mehr gefunden werden.
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
13.01.2011, 23:16
| #15 |
| | Windows Installer funktioniert nicht mehr [gelöst] Ja das mit TuneUp hab ich auch schon mitbekommen. Ich wollte es ja schon seit längerem deinstallieren, aber dies benötigt zur Deinstallation ebenfalls den Windows Installer. Mit CC Cleaner hab ichs auch schon mal versucht, aber dann kam wieder die Fehlermeldung mit der Ordnungszahl. Edit: das mit dem Deinstallieren hat sich erledigt hab es doch hinbekommen. TuneUp ist jetzt drunten. Hätte noch ne Frage mit dem sfc /scannow. ist das normal, sobald ich den Befehl eingegeben habe, dass sich das cmd Fenster sofort wieder schließt? Geändert von redbull639 (13.01.2011 um 23:33 Uhr) |
|
| Themen zu Windows Installer funktioniert nicht mehr |
| ahnung, beendet, benötigt, beschädigt, computer, datei, daten, dienste, eingestellt, fehler, funktionieren, funktioniert, funktioniert nicht, funktioniert nicht mehr, gestartet, installiert, meldung, nicht mehr, nicht vorhanden, problem, programm, starten, status, systemsteuerung, trojaner, windows, windows installer |
Linear-Darstellung
