| Amerilion | 18.03.2011 14:28 |
Abstürze ~ found.005\file000chk
Hallo,
ich habe ein Problem mit meinen Laptop, habe bisher aber keine Infektion gefunden.
Der Laptop stürzt unregelmäßig ab, bei verschiedenen Programmen/Spielen, das aktive Programm arbeitet nicht weiter, ich kann noch eine weile im Windows klicken aber nach einigen Sekunden hängt sich alles auf.
Hijackthis & Malwarebytes finden nichts, Antivir hängt sich regelmäßig bei einer Datei mit Namen found.005\file000chk auf.
Wenn der Rechner wieder hochfährt läuft Checkdisc durch.
Habe vor kurzem mal auf den neusten nVidia-Treiber installiert, danach gab es massive Probleme, der Rechner fror ein beim öffnen von Windows-Fenstern, habe danach wieder auf die etwas ältere stabile Version gewechselt.
Nun die Logs:
Malwarebytes-Log Code:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Datenbank Version: 6097
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19019
18.03.2011 13:54:17
mbam-log-2011-03-18 (13-54-17).txt
Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 175084
Laufzeit: 5 Minute(n), 8 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
OTL.Txt Code:
OTL logfile created on: 18.03.2011 14:10:29 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\******\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 273,60 Gb Total Space | 47,37 Gb Free Space | 17,32% Space Free | Partition Type: NTFS
Drive D: | 182,40 Gb Total Space | 39,13 Gb Free Space | 21,45% Space Free | Partition Type: NTFS
Computer Name: ASUS | User Name: ****** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\******\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
PRC - C:\Windows\System32\msfeedssync.exe (Microsoft Corporation)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version6\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files\Trend Micro\HijackThis\HijackThis.exe (Trend Micro Inc.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Program Files\Unlocker\UnlockerAssistant.exe ()
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
PRC - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
PRC - C:\Program Files\ASUS\ATK Hotkey\HControl.exe (ASUS)
PRC - C:\Program Files\P4G\BatteryLife.exe (ATK)
PRC - C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe (ASUS)
PRC - C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
PRC - C:\Program Files\ASUS\ATK Hotkey\WDC.exe ()
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe ()
PRC - C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe ()
PRC - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe ()
PRC - C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe ()
PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
PRC - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
PRC - C:\Program Files\Wireless Console 2\wcourier.exe ()
PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
PRC - C:\Windows\System32\StkASv2K.exe (Syntek America Inc.)
========== Modules (SafeList) ==========
MOD - C:\Users\******\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll ()
MOD - C:\Program Files\Unlocker\UnlockerHook.dll ()
========== Win32 Services (SafeList) ==========
SRV - (StkSSrv) -- File not found
SRV - (hpqddsvc) -- File not found
SRV - (hpqcxs08) -- File not found
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (sp_rssrv) -- C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (ASLDRService) -- C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe ()
SRV - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
SRV - (spmgr) -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
SRV - (StkASSrv) -- C:\Windows\System32\StkASv2K.exe (Syntek America Inc.)
========== Driver Services (SafeList) ==========
DRV - (sp_rsdrv2) -- C:\Windows\System32\drivers\sp_rsdrv2.sys ()
DRV - (atksgt) -- C:\Windows\System32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\Windows\System32\drivers\lirsgt.sys ()
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (acedrv11) -- C:\Windows\System32\drivers\acedrv11.sys (Protect Software GmbH)
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek )
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (AVerAF15) -- C:\Windows\System32\drivers\AVerAF15.sys (AVerMedia TECHNOLOGIES, Inc.)
DRV - (KMWDFILTER) -- C:\Windows\System32\drivers\KMWDFILTER.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (VtcDrv) -- C:\Windows\System32\drivers\vtcdrv.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (ManyCam) -- C:\Windows\System32\drivers\ManyCam.sys (ManyCam LLC.)
DRV - (itecir) -- C:\Windows\System32\drivers\itecir.sys (ITE Tech. Inc. )
DRV - (FiltUSBET) -- C:\Windows\System32\drivers\etFilter.sys (eMPIA Technology Inc.)
DRV - (ScanUSBET) -- C:\Windows\System32\drivers\etScan.sys (eMPIA Technology, Inc.)
DRV - (DCamUSBET) -- C:\Windows\System32\drivers\etDevice.sys (eMPIA Technology, Inc.)
DRV - (ghaio) -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys ()
DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC)
DRV - (ASMMAP) -- C:\Program Files\ATKGFNEX\ASMMAP.sys ()
DRV - (StkCMini) -- C:\Windows\System32\drivers\StkCMini.sys (Syntek)
DRV - (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor) -- C:\Windows\System32\drivers\atswpdrv.sys (AuthenTec, Inc.)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100)
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
DRV - (StkAMini) -- C:\Windows\System32\drivers\StkAMini.sys (Syntek America Inc.)
DRV - (StkScan) -- C:\Windows\System32\drivers\StkScan.sys (Syntek America Inc.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.groupon.de/deals/bochum|hxxp://www.onlinetvrecorder.com/|hxxp://www.facebook.com/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {8b86149f-01fb-4842-9dd8-4d7eb02fd055}:0.21.1
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.8.4
FF - prefs.js..extensions.enabledItems: {5B52016C-D097-4aec-BE61-9F129D8FDDBA}:2.0
FF - prefs.js..extensions.enabledItems: {e8f509f0-b677-11de-8a39-0800200c9a66}:1.8
FF - prefs.js..extensions.enabledItems: youtube2mp3@mondayx.de:1.0.7
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.5
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {fe0258ab-4f74-43a1-8781-bcdf340f9ee9}:2.6.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: de-DE@dictionaries.addons.mozilla.org:2.0.2
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.2
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.2
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..network.proxy.http: "localhost"
FF - prefs.js..network.proxy.http_port: 9666
FF - prefs.js..network.proxy.socks: "localhost"
FF - prefs.js..network.proxy.socks_port: 9050
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.ssl: "localhost"
FF - prefs.js..network.proxy.ssl_port: 9666
FF - prefs.js..network.proxy.type: 0
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.08.03 17:54:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.03.05 08:33:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.03.05 08:33:12 | 000,000,000 | ---D | M]
[2010.03.09 19:03:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\******\AppData\Roaming\mozilla\Extensions
[2011.03.17 21:42:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions
[2011.03.04 23:39:00 | 000,000,000 | ---D | M] (FlashGot) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2010.04.27 14:01:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.02.09 13:00:09 | 000,000,000 | ---D | M] (PDF Download) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2010.04.20 20:02:33 | 000,000,000 | ---D | M] ("UltraSurf Firefox Tool") -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{5B52016C-D097-4aec-BE61-9F129D8FDDBA}
[2010.04.13 16:57:34 | 000,000,000 | ---D | M] (All-in-One Gestures) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{8b86149f-01fb-4842-9dd8-4d7eb02fd055}
[2011.02.13 00:42:26 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.12.24 10:20:51 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011.03.12 21:04:27 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010.06.02 11:21:52 | 000,000,000 | ---D | M] (Web2PDF converter) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{e8f509f0-b677-11de-8a39-0800200c9a66}
[2010.10.02 13:09:39 | 000,000,000 | ---D | M] (Redirect Remover) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\{fe0258ab-4f74-43a1-8781-bcdf340f9ee9}
[2010.11.20 11:07:13 | 000,000,000 | ---D | M] (German Dictionary) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\de-DE@dictionaries.addons.mozilla.org
[2010.07.20 15:37:24 | 000,000,000 | ---D | M] (FIFA Online Web Launcher) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\eafo3fflauncher@ea.com
[2010.04.28 19:17:09 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\firefox@tvunetworks.com
[2010.09.16 18:15:14 | 000,000,000 | ---D | M] (vShare Plugin) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\vshare@toolbar
[2010.07.11 11:40:35 | 000,000,000 | ---D | M] (YouTube to MP3) -- C:\Users\******\AppData\Roaming\mozilla\Firefox\Profiles\prmt64dh.default\extensions\youtube2mp3@mondayx.de
[2011.03.14 20:50:26 | 000,001,018 | ---- | M] () -- C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\prmt64dh.default\searchplugins\facebook.xml
[2010.03.15 14:22:09 | 000,002,057 | ---- | M] () -- C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\prmt64dh.default\searchplugins\youtube-videosuche.xml
[2011.03.17 21:42:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2010.10.25 12:13:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.02.13 07:47:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010.08.03 17:54:04 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.02.21 13:35:10 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
[2010.01.13 23:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010.09.17 11:49:14 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.09.17 11:49:14 | 000,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2010.09.17 11:49:14 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.09.17 11:49:14 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.09.17 11:49:14 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ISUSPM Startup] File not found
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2 [2011.02.14 10:08:09 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1 [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2 [2011.02.14 10:08:09 | 000,000,000 | ---D | M]
O8 - Extra context menu item: &Alles mit FlashGet laden - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Mit FlashGet laden - C:\Program Files\FlashGet\jc_link.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\******\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\******\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\******\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{032ad35c-1e60-11df-9c74-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{032ad35c-1e60-11df-9c74-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{7c87f4ae-1ef7-11df-ac57-002243c7c22a}\Shell - "" = AutoRun
O33 - MountPoints2\{7c87f4ae-1ef7-11df-ac57-002243c7c22a}\Shell\AutoRun\command - "" = F:\autorun.exe {5E7C721D-B008-4269-A1C4-2CE7E9757983} Setup.msi
O33 - MountPoints2\{b3af1dae-b723-11df-be1e-002354649317}\Shell - "" = AutoRun
O33 - MountPoints2\{b3af1dae-b723-11df-be1e-002354649317}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL G:\Start.hta
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.03.18 14:09:22 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\******\Desktop\OTL.exe
[2011.03.16 14:38:53 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Roaming\TeamViewer
[2011.03.16 08:36:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ballerburg
[2011.03.13 19:49:24 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RTL Playtainment
[2011.03.13 19:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RTL Playtainment
[2011.03.13 19:02:57 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\musik
[2011.03.10 22:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011.03.10 22:40:02 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011.03.10 22:40:01 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011.03.08 15:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft XNA
[2011.03.08 12:43:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011.03.08 12:42:42 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011.03.08 12:40:47 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011.03.08 12:38:49 | 000,123,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2011.03.08 12:38:49 | 000,026,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll
[2011.03.08 12:38:48 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll
[2011.03.08 12:38:48 | 000,065,640 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapo32v.dll
[2011.03.08 12:38:44 | 005,473,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2011.03.08 12:38:43 | 014,899,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011.03.08 12:38:43 | 010,084,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011.03.08 12:38:43 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322030.dll
[2011.03.08 12:38:42 | 010,023,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011.03.08 12:38:42 | 002,666,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011.03.08 12:38:42 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322050.dll
[2011.03.08 12:38:41 | 013,019,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011.03.08 12:38:41 | 004,837,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011.03.08 12:38:41 | 002,912,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011.03.08 12:38:41 | 001,719,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011.03.08 12:38:41 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011.03.08 12:38:41 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011.03.08 12:37:20 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.02.28 21:54:03 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\800AAAAA
[2011.02.24 00:02:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011.02.24 00:00:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2011.02.23 23:59:54 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2011.02.23 23:59:54 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2011.02.23 23:59:54 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2011.02.23 23:59:53 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2011.02.23 23:59:53 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2011.02.23 23:59:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2011.02.23 23:59:53 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2011.02.23 23:59:53 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2011.02.23 23:59:53 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2011.02.23 23:59:52 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2011.02.23 23:59:48 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2011.02.23 23:59:48 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2011.02.23 23:59:48 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2011.02.23 23:59:48 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2011.02.23 23:59:48 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2011.02.20 18:16:51 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Local\AirMouse
[2011.02.20 18:16:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Mouse
[2011.02.20 18:16:06 | 000,000,000 | ---D | C] -- C:\Program Files\Air Mouse
[2011.02.20 18:14:41 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Local\Downloaded Installations
[2011.02.20 09:20:22 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\Kugirock
[2011.02.19 22:38:41 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\HolidayIslandFix
[2011.02.19 08:24:38 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\Holiday Island - Szenarien
[2011.02.18 16:57:09 | 000,000,000 | ---D | C] -- C:\Users\******\Desktop\OTR
[2011.02.18 16:36:58 | 004,184,352 | ---- | C] (Apple, Inc.) -- C:\Windows\System32\usbaaplrc.dll
[2011.02.18 00:52:41 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Roaming\BoneTown
[2011.02.18 00:42:46 | 000,000,000 | ---D | C] -- C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BoneTown
[2010.02.20 22:26:28 | 000,015,928 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011.03.18 14:12:47 | 000,000,400 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{CA64AF00-3FA6-4A84-83EA-9D622EE2C500}.job
[2011.03.18 14:09:26 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\******\Desktop\OTL.exe
[2011.03.18 13:46:35 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.03.18 13:32:02 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.03.18 13:32:02 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.03.18 13:31:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.03.18 13:31:52 | 3218,231,296 | -HS- | M] () -- C:\hiberfil.sys
[2011.03.18 12:37:47 | 000,000,250 | ---- | M] () -- C:\Users\******\Desktop\zDoksbkument.rtf
[2011.03.18 00:11:38 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.03.16 17:25:26 | 1487,701,446 | ---- | M] () -- C:\Users\******\Desktop\Taeter__Mensch_Das_Boese_in_uns_11.03.12_20-15_vox_235_TVOON_DE.mpg.avi.otrkey
[2011.03.16 08:36:29 | 000,000,722 | ---- | M] () -- C:\Users\******\Desktop\Ascaron Internet Client starten.lnk
[2011.03.16 08:36:29 | 000,000,613 | ---- | M] () -- C:\Users\******\Desktop\Ballerburg starten.lnk
[2011.03.15 19:02:28 | 002,338,898 | ---- | M] () -- C:\Users\******\Desktop\IMG_0541.JPG
[2011.03.14 10:27:21 | 000,249,856 | ---- | M] () -- C:\Users\******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.13 21:31:54 | 000,031,970 | ---- | M] () -- C:\Users\******\Desktop\efh.pdf
[2011.03.13 19:49:26 | 000,000,698 | ---- | M] () -- C:\Users\******\Desktop\RTL Biathlon 2007.lnk
[2011.03.13 19:15:16 | 000,001,905 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011.03.13 19:15:16 | 000,001,905 | ---- | M] () -- C:\Windows\diagerr.xml
[2011.03.13 18:47:04 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2011.03.13 09:32:25 | 000,143,844 | ---- | M] () -- C:\Users\******\Desktop\Unbenannt-6.jpg
[2011.03.13 09:31:17 | 000,190,273 | ---- | M] () -- C:\Users\******\Desktop\asd.jpg
[2011.03.13 08:33:46 | 001,326,145 | ---- | M] () -- C:\Users\******\Desktop\asd.png
[2011.03.13 08:33:44 | 000,000,132 | ---- | M] () -- C:\Users\******\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.03.13 08:24:25 | 000,477,676 | ---- | M] () -- C:\Users\******\Desktop\Nackt-X.jpg
[2011.03.12 22:39:25 | 001,328,280 | ---- | M] () -- C:\Users\******\Desktop\unbenanntbk.png
[2011.03.10 22:41:07 | 000,001,671 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011.03.09 20:43:57 | 000,669,120 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.03.09 20:43:57 | 000,629,724 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.03.09 20:43:57 | 000,145,158 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.03.09 20:43:57 | 000,119,088 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.03.08 16:38:04 | 000,030,520 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011.03.08 14:36:52 | 000,022,328 | ---- | M] () -- C:\Users\******\AppData\Roaming\PnkBstrK.sys
[2011.03.08 14:36:30 | 002,250,024 | ---- | M] () -- C:\Windows\System32\pbsvc.exe
[2011.03.08 12:35:01 | 000,001,356 | ---- | M] () -- C:\Users\******\AppData\Local\d3d9caps.dat
[2011.03.07 16:53:02 | 000,000,811 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.03.07 16:48:44 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2011.02.27 09:09:29 | 157,666,977 | ---- | M] () -- C:\Users\******\Desktop\IMG_0395.MOV
[2011.02.27 09:09:29 | 006,663,108 | ---- | M] () -- C:\Users\******\Desktop\IMG_0395.flv
[2011.02.20 18:48:28 | 000,002,513 | ---- | M] () -- C:\Users\******\Desktop\Air Mouse.exe.lnk
[2011.02.19 23:19:20 | 006,067,870 | ---- | M] () -- C:\Users\******\Desktop\Holiday_Island.exe
[2011.02.19 22:34:52 | 000,000,000 | ---- | M] () -- C:\Windows\setup.lst
[2011.02.19 22:34:51 | 000,000,018 | ---- | M] () -- C:\Windows\ssetup.ini
[2011.02.18 16:41:29 | 077,901,191 | ---- | M] () -- C:\Users\******\Desktop\Holiday Island - Szenarien (1997)(DE)(ISO).7z.001
[2011.02.18 16:36:58 | 004,184,352 | ---- | M] (Apple, Inc.) -- C:\Windows\System32\usbaaplrc.dll
[2011.02.18 00:42:47 | 000,000,625 | ---- | M] () -- C:\Users\******\Desktop\BoneTown.lnk
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.03.18 12:37:47 | 000,000,250 | ---- | C] () -- C:\Users\******\Desktop\zDoksbkument.rtf
[2011.03.16 13:53:42 | 1487,701,446 | ---- | C] () -- C:\Users\******\Desktop\Taeter__Mensch_Das_Boese_in_uns_11.03.12_20-15_vox_235_TVOON_DE.mpg.avi.otrkey
[2011.03.16 08:36:29 | 000,000,722 | ---- | C] () -- C:\Users\******\Desktop\Ascaron Internet Client starten.lnk
[2011.03.16 08:36:29 | 000,000,613 | ---- | C] () -- C:\Users\******\Desktop\Ballerburg starten.lnk
[2011.03.15 18:59:14 | 002,338,898 | ---- | C] () -- C:\Users\******\Desktop\IMG_0541.JPG
[2011.03.13 21:31:49 | 000,031,970 | ---- | C] () -- C:\Users\******\Desktop\Evangelische Fachhochschule Rheinland-Westfalen-Lippe.pdf
[2011.03.13 19:49:26 | 000,000,698 | ---- | C] () -- C:\Users\******\Desktop\RTL Biathlon 2007.lnk
[2011.03.13 19:15:10 | 000,001,905 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011.03.13 19:15:10 | 000,001,905 | ---- | C] () -- C:\Windows\diagerr.xml
[2011.03.13 09:32:24 | 000,143,844 | ---- | C] () -- C:\Users\******\Desktop\Unbenannt-6.jpg
[2011.03.13 09:31:14 | 000,190,273 | ---- | C] () -- C:\Users\******\Desktop\asd.jpg
[2011.03.13 08:33:42 | 001,326,145 | ---- | C] () -- C:\Users\******\Desktop\asd.png
[2011.03.13 08:24:25 | 000,477,676 | ---- | C] () -- C:\Users\******\Desktop\Nackt-X.jpg
[2011.03.12 22:39:25 | 001,328,280 | ---- | C] () -- C:\Users\******\Desktop\unbenanntbk.png
[2011.03.10 22:41:07 | 000,001,671 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011.03.08 12:38:43 | 000,004,962 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2011.03.08 12:05:38 | 3218,231,296 | -HS- | C] () -- C:\hiberfil.sys
[2011.03.08 09:27:23 | 000,000,400 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{CA64AF00-3FA6-4A84-83EA-9D622EE2C500}.job
[2011.03.07 16:53:02 | 000,000,811 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.02.28 21:51:00 | 157,666,977 | ---- | C] () -- C:\Users\******\Desktop\IMG_0395.MOV
[2011.02.28 21:51:00 | 006,663,108 | ---- | C] () -- C:\Users\******\Desktop\IMG_0395.flv
[2011.02.23 23:59:49 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011.02.23 23:59:49 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011.02.23 23:59:49 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011.02.20 18:48:17 | 000,002,513 | ---- | C] () -- C:\Users\******\Desktop\Air Mouse.exe.lnk
[2011.02.19 22:34:52 | 000,000,000 | ---- | C] () -- C:\Windows\setup.lst
[2011.02.19 22:34:51 | 000,000,018 | ---- | C] () -- C:\Windows\ssetup.ini
[2011.02.19 17:17:48 | 005,195,141 | ---- | C] () -- C:\Users\******\Desktop\SAM_0733.JPG
[2011.02.19 17:17:48 | 005,194,969 | ---- | C] () -- C:\Users\******\Desktop\SAM_0782.JPG
[2011.02.19 08:22:47 | 006,067,870 | ---- | C] () -- C:\Users\******\Desktop\Holiday_Island.exe
[2011.02.18 16:19:16 | 077,901,191 | ---- | C] () -- C:\Users\******\Desktop\Holiday Island - Szenarien
[2011.02.18 00:42:47 | 000,000,625 | ---- | C] () -- C:\Users\******\Desktop\BoneTown.lnk
[2011.02.06 15:30:08 | 000,017,408 | ---- | C] () -- C:\Users\******\AppData\Local\WebpageIcons.db
[2011.01.21 22:35:41 | 000,083,968 | ---- | C] () -- C:\Windows\UnGins.exe
[2011.01.21 22:35:31 | 000,473,600 | ---- | C] () -- C:\Windows\System32\Harmony.dll
[2011.01.21 22:35:31 | 000,237,568 | ---- | C] () -- C:\Windows\System32\Unlha32.dll
[2011.01.21 13:13:00 | 000,002,572 | R--- | C] () -- C:\Windows\WAVEMIX.INI
[2011.01.02 20:47:56 | 000,142,592 | ---- | C] () -- C:\Windows\System32\drivers\sp_rsdrv2.sys
[2010.12.31 20:58:18 | 000,000,005 | ---- | C] () -- C:\Users\******\AppData\Roaming\.sunvox_pateditor
[2010.12.31 20:30:53 | 000,000,001 | ---- | C] () -- C:\Users\******\AppData\Roaming\.sunvox_colortheme
[2010.11.24 21:04:41 | 000,000,016 | ---- | C] () -- C:\Windows\entpack.ini
[2010.11.16 13:08:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010.10.28 16:09:16 | 000,000,940 | ---- | C] () -- C:\Windows\AnimatorDV.INI
[2010.10.14 01:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010.10.13 17:18:53 | 000,000,132 | ---- | C] () -- C:\Users\******\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2010.07.26 21:54:39 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010.07.20 15:40:19 | 000,030,520 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010.07.20 15:40:18 | 000,022,328 | ---- | C] () -- C:\Users\******\AppData\Roaming\PnkBstrK.sys
[2010.07.20 15:39:04 | 000,107,832 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2010.07.20 15:39:00 | 002,250,024 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2010.07.20 15:39:00 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010.06.21 20:10:43 | 000,079,269 | ---- | C] () -- C:\Windows\remove.EXE
[2010.05.03 23:55:28 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2010.04.21 11:21:12 | 000,001,057 | ---- | C] () -- C:\Windows\eReg.dat
[2010.04.19 22:15:08 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2010.04.12 21:17:44 | 000,000,063 | ---- | C] () -- C:\Windows\AVerText.ini
[2010.04.11 22:07:11 | 000,008,192 | ---- | C] () -- C:\Windows\d3dx.dat
[2010.03.29 15:32:32 | 000,000,350 | ---- | C] () -- C:\Windows\System32\AP6RMHV.BIN
[2010.03.29 15:32:32 | 000,000,308 | ---- | C] () -- C:\Windows\System32\AP6RMKV.BIN
[2010.03.29 15:32:32 | 000,000,252 | ---- | C] () -- C:\Windows\System32\AP6RMJH.BIN
[2010.03.29 15:32:32 | 000,000,238 | ---- | C] () -- C:\Windows\System32\AP6RMFP.BIN
[2010.03.29 15:32:32 | 000,000,189 | ---- | C] () -- C:\Windows\System32\AP6RMKS.BIN
[2010.03.29 15:32:32 | 000,000,126 | ---- | C] () -- C:\Windows\System32\AP6RMHR.BIN
[2010.03.17 14:14:44 | 000,078,187 | ---- | C] () -- C:\Windows\hpqins05.dat
[2010.03.13 16:49:22 | 000,019,573 | ---- | C] () -- C:\Windows\hpqins13.dat.temp
[2010.03.09 14:45:21 | 000,138,540 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010.03.05 14:15:23 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2010.03.05 14:15:08 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2010.03.04 10:42:56 | 000,000,095 | ---- | C] () -- C:\Users\******\AppData\Local\fusioncache.dat
[2010.03.03 19:50:48 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010.02.23 22:03:10 | 000,019,573 | ---- | C] () -- C:\Windows\hpqins13.dat
[2010.02.23 14:26:57 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010.02.23 14:26:56 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010.02.22 19:59:58 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010.02.22 19:20:25 | 000,164,867 | ---- | C] () -- C:\Windows\hpoins21.dat.temp
[2010.02.22 19:20:25 | 000,007,262 | ---- | C] () -- C:\Windows\hpomdl21.dat.temp
[2010.02.22 17:54:49 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010.02.22 17:53:41 | 000,000,395 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2010.02.21 21:46:47 | 000,249,856 | ---- | C] () -- C:\Users\******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.21 14:24:40 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2010.02.21 12:49:19 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.02.21 12:30:55 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2010.02.20 23:00:34 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2010.02.20 21:48:12 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.02.20 21:44:46 | 000,049,152 | ---- | C] () -- C:\Windows\revdevdll.dll
[2010.02.20 21:06:23 | 000,001,356 | ---- | C] () -- C:\Users\******\AppData\Local\d3d9caps.dat
[2009.12.03 09:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009.05.27 10:48:08 | 000,094,208 | ---- | C] () -- C:\Windows\System32\zmbv.dll
[2008.07.29 17:33:22 | 000,057,344 | ---- | C] () -- C:\Windows\System32\BtwNamespaceExt2.dll
[2008.04.16 12:11:34 | 000,669,120 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2008.04.16 12:11:34 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2008.04.16 12:11:34 | 000,145,158 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2008.04.16 12:11:34 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2008.04.16 11:43:39 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2007.08.16 14:17:50 | 000,143,360 | ---- | C] () -- C:\Windows\System32\nsldap32v50.dll
[2007.04.16 03:24:16 | 000,023,752 | ---- | C] () -- C:\Windows\System32\providers.bin
[2006.11.02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 13:47:37 | 003,904,200 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 11:33:01 | 000,629,724 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 11:33:01 | 000,119,088 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2005.12.21 15:57:04 | 000,024,576 | ---- | C] () -- C:\Windows\System32\nsldappr32v50.dll
[2005.12.21 15:54:34 | 000,040,960 | ---- | C] () -- C:\Windows\System32\nsldapssl32v50.dll
[2005.04.03 15:30:00 | 000,110,592 | R--- | C] () -- C:\Windows\System32\scardsyn.dll
[2004.12.20 11:08:28 | 000,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2004.12.20 11:03:26 | 000,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[1998.05.06 20:10:00 | 000,069,632 | R--- | C] () -- C:\Windows\System32\ODMA32.dll
[1995.03.21 23:00:00 | 000,056,320 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll
========== LOP Check ==========
[2011.01.23 23:03:15 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\.minecraft
[2010.11.04 19:01:06 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Azureus
[2010.11.05 10:15:23 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\biu software
[2011.02.18 01:32:42 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\BoneTown
[2010.05.10 20:28:13 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Braid
[2010.02.21 15:47:17 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\DAEMON Tools Lite
[2010.02.21 14:45:31 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\DAEMON Tools Pro
[2010.08.30 12:43:01 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\DNA
[2011.02.13 00:42:26 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.15 20:58:37 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\FileZilla
[2010.02.21 13:20:22 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\FlashGet
[2010.02.21 13:35:50 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Foxit
[2010.10.03 12:00:10 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Foxit Software
[2010.03.09 15:14:02 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\HD Tune Pro
[2011.03.17 10:51:02 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\ICQ
[2010.05.14 17:45:08 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Loonies
[2010.09.19 10:19:19 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\LucasArts
[2010.03.24 15:41:17 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\ManyCam
[2010.10.28 20:43:20 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\MonkeyJam
[2010.05.18 12:52:59 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\MudTV
[2010.07.30 16:05:25 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Need for Speed World
[2010.08.28 17:48:13 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Nvu
[2010.03.07 11:45:53 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\OpenOffice.org
[2010.04.14 05:57:06 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Opera
[2010.06.01 17:06:22 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Planetside Software
[2010.10.20 10:49:10 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Polynomial
[2011.01.03 08:15:14 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\ProtectDISC
[2010.06.16 20:35:47 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\ScanSoft
[2010.05.03 16:56:31 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\SongBeamer
[2011.03.08 10:43:22 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Spyware Terminator
[2010.04.14 13:31:49 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\SumatraPDF
[2011.03.16 15:05:30 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\TeamViewer
[2010.03.05 08:20:07 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Tropico 3 Demo
[2010.03.31 23:03:42 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\TS3Client
[2010.11.05 09:57:32 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\TubeBox
[2010.03.04 14:02:23 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Turbine
[2010.06.01 17:06:23 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\uk.co.planetside
[2010.05.23 20:38:40 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Ulead Systems
[2011.02.05 23:28:45 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Uniblue
[2011.03.08 10:30:27 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Xilisoft
[2010.02.22 17:55:41 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\Zeon
[2010.09.19 21:42:32 | 000,000,000 | ---D | M] -- C:\Users\******\AppData\Roaming\ZombieDriver
[2011.03.18 00:11:38 | 000,032,536 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.03.18 14:12:47 | 000,000,400 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{CA64AF00-3FA6-4A84-83EA-9D622EE2C500}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 24 bytes -> C:\Windows:7B30FBAD50D9AF91
< End of report >
Extras.Txt Code:
OTL Extras logfile created on: 18.03.2011 14:10:29 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\******\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 273,60 Gb Total Space | 47,37 Gb Free Space | 17,32% Space Free | Partition Type: NTFS
Drive D: | 182,40 Gb Total Space | 39,13 Gb Free Space | 21,45% Space Free | Partition Type: NTFS
Computer Name: ASUS | User Name: ****** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1 -- [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1 -- [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1 -- [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1 -- [2011.02.14 15:03:46 | 000,000,000 | ---D | M]
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2DCA5790-8B56-49CB-B161-88E39C02F97A}" = rport=138 | protocol=17 | dir=out | app=system |
"{31D07A1D-9AEF-4A33-8C5E-C3EF6C170C2F}" = rport=445 | protocol=6 | dir=out | app=system |
"{3921F701-9D31-4F3B-B3A6-1CB907A989D5}" = lport=137 | protocol=17 | dir=in | app=system |
"{44DCCA52-763C-45AB-A143-974FCC16A89B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{57B13531-11C4-4833-8A45-608E4810BAB9}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{5B4E5E25-A3F2-433F-8A24-AADF4347852F}" = lport=138 | protocol=17 | dir=in | app=system |
"{751F77D9-0B39-42AC-A26C-D6C090A20956}" = rport=139 | protocol=6 | dir=out | app=system |
"{79417468-BEB9-4867-82E7-3DD62E6361D6}" = rport=137 | protocol=17 | dir=out | app=system |
"{8599C032-90F5-4CE3-A38E-20E489A04B8B}" = lport=59585 | protocol=6 | dir=in | name=akamai netsession interface |
"{94C9FF76-69C8-4005-AE97-BE6A3E33552E}" = lport=49157 | protocol=6 | dir=in | name=akamai netsession interface |
"{B755E3E5-3157-4B70-8467-A626CC11D5B2}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{C2753D27-4E11-489B-ACBB-91DF67057099}" = lport=139 | protocol=6 | dir=in | app=system |
"{CFEAC2C2-3689-4CBD-9276-09E5A54C9471}" = lport=445 | protocol=6 | dir=in | app=system |
"{DC9DE573-52F1-4524-AAE0-17245732E2A5}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00898167-E852-4BDE-96ED-594A58EF7F9F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{00AFC327-1B80-4BC1-B0AC-B5F5B457CBFE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{00E59D50-6028-41BF-B370-8DA14FCBE406}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\the witcher enhanced edition\system\djinni!.exe |
"{012506B3-9C0B-435A-ACD1-3A02F36A314C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\zombie bowl-o-rama\zombie bowl-o-rama.exe |
"{023EAE46-D7FF-4F75-B6EE-24D33361A070}" = protocol=6 | dir=in | app=d:\spiele\fuel\fuel.exe |
"{05C28E8D-0650-4F7C-A2CF-C8C95B1D6944}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{0636EBBA-6EC2-4511-995A-0C11EB4EE438}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\devil may cry 4\devilmaycry4_dx9.exe |
"{0647721A-95A0-4344-9DDD-BB37355A7EA5}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\jedi academy\gamedata\jasp.exe |
"{092E0198-BB43-432E-8752-8F5076EBDE41}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0C710A3D-9B49-4F40-9535-6DF8BFD1EB91}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0DE28175-3B6B-4A54-999E-B09327D1CFD3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0F8CF295-4CF1-4AAF-8D31-AE71ABE343A9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\overlord\overlord.exe |
"{154C6E42-1CAD-4677-9077-13BD105317EC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{15AAF53F-D008-48A8-9809-A9A769F7002F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\overlord\overlord.exe |
"{15FA0846-5B31-4AB5-BE38-E4E59144E91B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{183E3052-2E5B-4EC9-A40D-D96D5C69D147}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{187DBBA6-7E11-4226-A0D6-114A481C4089}" = protocol=6 | dir=in | app=d:\spiele\audition\audition.exe |
"{19BD77A9-FBDF-4029-83A4-BAAAE9736ABA}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\drakensang\drakensang.exe |
"{1C7772A7-3DB9-4BE8-9021-30D706C9E2C3}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{1CED9DBA-8C0D-404A-AFAC-2BD14DDC3694}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1DE7D319-BDE2-42A3-8BCD-3B914303B1F2}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{1F7ACB0C-2DA9-4D78-9CA3-3D9DE48DAE10}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{21B37D7F-824A-4EEF-985D-704BA896F391}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\plants vs zombies\plantsvszombies.exe |
"{223C1A0E-E91B-4FCF-A130-5570A7411F3F}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{230F9F0E-E1AC-4764-ABDF-557F2AC79109}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{252DC52D-9E1D-429E-AD4F-7ECB319A3FB5}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\devil may cry 4\devilmaycry4_dx10.exe |
"{25549F93-D22F-4BD4-B50E-6D6A5F9F232E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpsapp.exe |
"{2648C9DF-5AC4-40DE-AEB7-10103598DEFB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2794C239-D13D-4DB6-866C-1712E50F503D}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{27C55760-50FC-4B5F-AF5C-ADC4C448BD06}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{27DA28FE-1645-42E7-B8A8-8970C5C138C8}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{290A9BF0-B652-4291-B9DF-936EE97E0520}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\the witcher enhanced edition\system\witcher.exe |
"{291CEB1E-E2BD-4FC5-A743-3D0FDA1FE5DE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2BB64876-30DE-4C76-9AE3-1EC9923B0B52}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\farcry2.exe |
"{2DCE4E9C-4558-414F-BC46-91173E2812C8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\monkey2\monkey2.exe |
"{2E70CB66-5E76-4645-9AE9-6FFA0AF39383}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2F018CFD-F681-4DD1-94C5-79806A03AAA2}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{34D13072-D0A6-4962-98B8-D809DA22CA49}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3594CA95-D364-425C-94E8-F49D041383DA}" = protocol=6 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_dx9.exe |
"{361504F4-E3DE-449F-8D81-49134F84D18D}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\unreal tournament 3\binaries\ut3.exe |
"{36DDD466-01D4-42BD-A91C-FC92E9E9C1B0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{38AD6400-1C2A-4F59-B852-82960986CFD0}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{3BCC8403-48F0-4C75-8670-6BA2E7F12184}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3DB50B7F-C0CF-4356-9978-98A2C8665063}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\farcry2.exe |
"{3EDA2BA7-5FF9-4602-9B2B-D2E4D08E09DD}" = protocol=17 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_dx10.exe |
"{3F345316-7B6F-4265-91DD-CF7D17D23053}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{409AB07A-8686-482E-94BC-F8FAF8A32B90}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4112236B-F478-44D1-91A1-159C80D9EC18}" = dir=in | app=c:\program files\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{41F5C93D-B2BE-40CC-8346-6A722D6AC913}" = protocol=6 | dir=in | app=d:\spiele\world of warcraft\wow-3.2.0-dede-downloader.exe |
"{4485E311-91F9-47C8-83C4-65C1DDA9E45D}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{45CF5986-4060-45D7-9CA6-58E8B7A8C588}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{46F09DAD-86B1-4874-A151-B30EA2B1B900}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dogfighter\bin\x86_vc8\dogfightersteam.exe |
"{47CA7B3E-A973-4AA2-B4E4-EC066E97D6AB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{483B8705-4628-41AC-BD0C-DEE07CB1A9EB}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\overlord ii\overlord2.exe |
"{48E7F18E-34C2-4A4A-BD99-7A16225D2B78}" = protocol=17 | dir=in | app=d:\spiele\fuel\fuel.exe |
"{4B645235-393D-4CE8-92BB-5EC459A99CE9}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpse.exe |
"{4DCEA031-2BB5-459E-8003-9E7CA12D40CC}" = protocol=17 | dir=in | app=d:\spiele\world of warcraft\wow-3.2.0-dede-downloader.exe |
"{5006A125-D4A7-41AD-84A6-4014CCA43E0F}" = protocol=6 | dir=in | app=d:\steam\steamapps\bastelm\garrysmod\hl2.exe |
"{52E7A131-3D84-4A57-A9E4-04C932CE05CB}" = protocol=17 | dir=in | app=d:\spiele\audition\patcher.exe |
"{53192378-2AA4-4BB9-A0EE-CD2BD28C58A9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{531B5BE0-63FA-4E62-8ABE-39560E14A685}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{533207E3-894D-447E-A2C2-09AFE9A020F1}" = protocol=17 | dir=in | app=d:\spiele\s.t.a.l.k.e.r. - shadow of chernobyl\bin\xr_3da.exe |
"{55EDCA78-924D-4C38-8C09-E4F97CC28353}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{56014AD0-B5B9-4A20-9B6B-095C27C7CB7D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{564E848C-48A9-405D-B713-0131BC6F722C}" = protocol=17 | dir=in | app=d:\steam\steamapps\bastelm\garrysmod\hl2.exe |
"{56D816CD-B1BE-44C0-B87D-60A481B32734}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5836535E-70FF-4D39-9E0C-45241B3CEF58}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2editor.exe |
"{5A2B0D36-5206-4FB5-95B0-ABE4A61FFCF5}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5C25D98A-F8CB-40D9-9123-3302F39A3BA5}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{5E1552D3-5A6F-4918-AC0F-6FEB05F4719F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{603985CB-5A5A-4028-99EF-539F4DCD7D04}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{6083571C-2DF7-43B2-8A35-FE21B78BDC08}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\shank\bin\shank.exe |
"{643CDDC5-7A41-4D92-906B-80AAE1AE6448}" = protocol=17 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_dx9.exe |
"{64D3A9B2-62F6-4735-9A12-09C9AE3B513A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{661F8987-19EC-488A-8901-4F4B00FA99B6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6627A9AA-DAD6-4C92-9BE9-A8675A637ECC}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{68BF946F-3900-4832-8405-C1837DB5CCAA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6C402114-3608-424F-A338-A3EA9132BBCC}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{6E01B023-4F6E-496E-8344-D0CA1633AB49}" = protocol=6 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_dx10.exe |
"{6E319063-3749-4EDD-9A1B-73AEAADFD3DA}" = protocol=17 | dir=in | app=d:\steam\steamapps\bastelm\counter-strike source\hl2.exe |
"{6ED168C3-F008-4FCF-94C2-0B0A31CB4480}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\jedi academy\gamedata\jamp.exe |
"{6FD1895E-C4E2-4B4B-A9FC-81FBD2E2E108}" = protocol=6 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_launcher.exe |
"{6FF650A1-F4E2-4A9F-8002-9B6862D1E0DE}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{70177300-3063-4260-8281-77C36D834BA9}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{702457BC-4AE4-410C-9932-7CCFDD47D12F}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{72766982-39D0-4A85-B053-72C846E7881F}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{7276ADA5-0A6C-4EA5-BE0F-66B86F09768B}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{7418DD7F-0AFB-458B-AC94-190FFFA1555A}" = protocol=6 | dir=in | app=d:\steam\steam.exe |
"{756C68BA-D81E-4FB9-ABCF-D49FBC8DD5A9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7687483E-084E-4851-A348-2ED6189330D9}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqsudi.exe |
"{7722FFAF-2E57-431E-B040-4919E97BA4C9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7802F1AE-D668-45A4-9C82-3D00A640C408}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\the secret of monkey island special edition\mise.exe |
"{795B2EAA-D656-4E0B-ABE1-3F986294A7D3}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{7966D095-9CD4-48D9-B942-8001B414D4B2}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\plants vs zombies\plantsvszombies.exe |
"{7C229D21-86D4-491C-AF57-7CFA70DB57C9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2editor.exe |
"{7E028448-836D-4CF2-BE07-E8406280C3C8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\zombie driver\release\zombiedriver.exe |
"{803B3856-8E95-4929-BFE2-47DD475CE584}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{811D89FA-E900-4573-A4A2-0D6EB225150B}" = protocol=6 | dir=in | app=d:\spiele\s.t.a.l.k.e.r. - shadow of chernobyl\bin\dedicated\xr_3da.exe |
"{8236C17A-AFCD-4A78-8579-9D8FAD665BAA}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\the witcher enhanced edition\system\witcher.exe |
"{825C7401-96E3-4DE1-BEAA-258CBF27756F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\alien swarm\swarm.exe |
"{8281204A-D692-4554-9AE5-944F46A33E58}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\overlord\config.exe |
"{844FF435-3CB7-4693-AF93-A85C74B53D07}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{8945C9C7-12CA-451C-A415-1DC526528F61}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2serverlauncher.exe |
"{8A127B39-6AAC-472F-83AC-7CE01A750F42}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{8B5891E3-1993-4CEB-8807-39BA709D4F97}" = protocol=17 | dir=in | app=d:\steam\steam.exe |
"{8B6912C9-CBE2-4F70-9DE9-C0F90FEDE878}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\star wars battlefront ii\gamedata\battlefrontii.exe |
"{8C58C865-1D55-4C09-845F-F4C664527E4A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8D40B468-683B-41DF-8BEA-870698C44683}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{8D49A8E8-7FCA-4D9B-B67D-88B20E1EEC43}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{8DEC090A-8C08-4A3A-AEB9-D660390B2487}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8E815A27-8AD5-455E-AD6B-AF7F0ABEBBC4}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{8F0C8C99-EA69-43D6-AED6-7887B957C4EB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9022F1EB-A5C0-4597-88E6-C0678C0CA8F0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{907AD5B0-9EC2-41C2-BE49-2644BAA644BA}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{9200E0B4-F1DC-4BE3-9225-02180D08286D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\star wars battlefront ii\gamedata\battlefrontii.exe |
"{92E05223-E184-4C96-B0A1-741720AE42E1}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{939A3A04-306A-4834-85B1-E7E7F15CF19F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{96CA9A9C-8781-483E-96F6-FF62B894C6EE}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{98F12F52-A000-4AAE-998F-C31B1CA13F1D}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{9C4304A4-6908-4E41-9F81-6DB8D6471465}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{9D8521E7-5AE4-4943-ADF7-74E63182090F}" = protocol=17 | dir=in | app=d:\spiele\s.t.a.l.k.e.r. - shadow of chernobyl\bin\dedicated\xr_3da.exe |
"{9FB78DA9-3CCF-4B31-AB53-30B749EE12C5}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\jedi academy\gamedata\jasp.exe |
"{A1D778CA-A297-4099-89C2-5E190685BBCD}" = protocol=6 | dir=in | app=d:\spiele\s.t.a.l.k.e.r. - shadow of chernobyl\bin\xr_3da.exe |
"{A2D28676-5D8B-4AEB-A070-AEA226AB1C4E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A5B0F76F-8B6D-4A3D-99F8-3C8534765A6A}" = protocol=6 | dir=in | app=d:\spiele\pro evolution soccer 2008\pes2008.exe |
"{A5ECB99A-6B87-4277-BEDB-42F2724FDE5F}" = protocol=6 | dir=in | app=d:\steam\steamapps\bastelm\counter-strike source\hl2.exe |
"{A69959F3-EFB6-4D49-AB6C-09DEB851D5FE}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\shank\bin\shank.exe |
"{A77E9046-45A5-4D79-98E3-91136030E79A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A806ECA5-FF89-409E-AF90-EC1B28718D37}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A85CB57F-786F-42F0-A8A3-DCE73DDAAF4A}" = protocol=17 | dir=in | app=d:\spiele\pro evolution soccer 2008\pes2008.exe |
"{A8C88223-3C6F-4430-A227-198D060D451F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\overlord\overlord.exe |
"{A8F646E3-4499-4913-8E30-CDC950384826}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2serverlauncher.exe |
"{AA63B86C-D62A-4400-93C6-0F90D863CB32}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{AA904CCA-4C33-4501-B755-FEEEBBC2673A}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{AEB5EB0B-39E9-400F-9500-25A3F3711286}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{AFA2E658-62B9-41A9-B913-46600C7F2807}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AFAA6061-C226-4300-B75F-8D1FE86C6BDC}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2benchmarktool.exe |
"{AFDC27CE-DB87-47E9-BDE7-BA537623B110}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{B03BAA00-1969-4657-A5F1-DF88A4A1BD56}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B1DEAFC5-4319-41C8-BAAC-97ECB104E259}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B2B29A14-00D2-4E5E-BE99-234D2D2F774C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B2DF9674-0E0F-4ABE-9500-23F5C5C30691}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\the witcher enhanced edition\system\djinni!.exe |
"{B3E3E168-B87C-4B14-988F-309D9399F9C0}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\jedi academy\gamedata\jamp.exe |
"{B3E7A93E-53FF-4A9E-BC4A-16C0742F239D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B404EBF6-242E-4DCD-8F9F-5B822F4C2E2E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\unreal tournament 3\binaries\ut3.exe |
"{BAD3A760-D324-45A1-B0FB-DDD56276AC9B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BAD6E4A1-E327-49AE-A546-1AC38E51CB19}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BB7CD099-7599-492A-975A-D45031527C34}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{BC8A8971-5DFE-45E9-B54E-095669EEEC7D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BDF97E36-6785-4BDA-B8D5-F6CE9E6DD0A4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BE658BB6-F082-4EF3-A4F4-BB71F18091C7}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\drakensang\drakensang.exe |
"{C2B16A8A-1890-499E-A27A-684AAF9A8B80}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C2B72B9D-E881-4751-AEDC-C0AB2DD584EF}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{C2BCFA6E-C0DC-4A4B-8F1B-629EE4DCF863}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\overlord\config.exe |
"{C36AB76D-A2DC-4CDD-8555-03200471616C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C5796D7F-530C-4912-982C-FCBCB744F492}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C9B01188-EBDF-41FD-93F1-34F0477DC11A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C9C3DE50-83DF-493B-BB05-5EC2F5269418}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{CA46A66B-FECD-4450-AB85-5CF3A1CAB4D3}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{CCC9D64A-F7E8-4333-9986-7DBEF5F60AC4}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\devil may cry 4\devilmaycry4_dx10.exe |
"{CE8CA67A-03E7-40E1-882F-3D5E6E2BF919}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\overlord ii\config.exe |
"{D1F9E36E-018A-4351-A47D-5D5798FB2089}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D33456EC-E485-4802-A046-3068A2C3A6A0}" = protocol=17 | dir=in | app=d:\spiele\assassin's creed\assassinscreed_launcher.exe |
"{D36C14EB-7EFE-4566-AED4-44D35C765DFE}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dogfighter\bin\x86_vc8\dogfightersteam.exe |
"{D421A97A-6BA9-44CB-BFB4-1B49BE4F8E54}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{D53BA302-A503-43C6-B996-E9F931F562FE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D64A185A-778A-4BFC-8939-39A1146CAAFE}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\overlord ii\overlord2.exe |
"{D8C525BF-5921-41B2-8FE0-84D89250643D}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{DBA05100-D4BC-46C1-AC43-836D1056FB51}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DC3E495B-9A1E-476B-A133-683B06BD26CD}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DD1DB137-7DA3-42EB-8F13-4F4661F2A47E}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\alien swarm\swarm.exe |
"{E09AD6FE-ACB6-4628-96FE-4BBE7583EA28}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\the secret of monkey island special edition\mise.exe |
"{E0C56EA3-204D-48FE-A445-0A04805CED41}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{E3594F9C-8583-4B8C-902A-B31E7A8F2980}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{E365F570-ED6F-46D5-871A-44C98B86FD09}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{E3A043D3-315B-44D3-968C-3C05B39AEAAF}" = protocol=17 | dir=in | app=d:\spiele\audition\audition.exe |
"{E402D635-4278-4DDB-BD89-679397DD5053}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E45E9461-2EAD-499E-93E8-F212B2EB634A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E92EE28F-B72A-4A3A-B32E-A97BE27BBB6C}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{EA00973C-9335-4A34-B7B0-372A0CB97D1C}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{EA253D0A-B36A-42E2-B302-812B5B064DF4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{EB885CF7-2555-4B5E-929B-81B400BCD27D}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{EC35750D-CA2E-485B-A04D-B5F483F42646}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{EE2AC095-47AB-4C72-8484-3285ED34CC85}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\zombie driver\release\zombiedriver.exe |
"{EF719682-444B-497C-9986-C05B5459B67D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{EFD2E670-DB0A-4622-B05B-D0632E0B3789}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{EFE45421-6F65-46B4-B2BB-2D78A37950FB}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{F0EAB370-86BC-44CE-AA7E-91864B6AF477}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\far cry 2\bin\fc2benchmarktool.exe |
"{F114E044-3DE9-40B1-8A03-7CAE4B2A3603}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F203DB38-534C-4D25-BFAC-7380049DBEA5}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{F2F6D947-F65F-42DF-8AF0-688B328A0F61}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\overlord\overlord.exe |
"{F407DC61-2C2F-4D76-AB7D-B962494E256A}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\overlord ii\config.exe |
"{F41DCA5F-BA3D-4738-8C5C-EDD929DBC651}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F4EC5100-CCF6-4CC1-BCC6-488C0FAF1DC5}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F58A7692-1D2D-412A-B96A-7A0027346282}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{F5B79C2A-4DBA-42E4-9288-618E2971390E}" = protocol=6 | dir=in | app=d:\spiele\audition\patcher.exe |
"{F8197B63-3104-409B-B6BB-C918B870E227}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\devil may cry 4\devilmaycry4_dx9.exe |
"{F8224B49-DDC9-480F-A067-587D156EE996}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\zombie bowl-o-rama\zombie bowl-o-rama.exe |
"{FB99CB56-CF4F-4647-A810-69146E26EF62}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{FC058DB0-0A19-4AFC-B871-2AFEC1434D2E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\monkey2\monkey2.exe |
"{FED2F012-36CF-4D36-A3E3-FC14916D1EE6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{02769DC7-4A70-423F-BA15-819B967C228E}C:\program files\air mouse\air mouse\air mouse.exe" = protocol=6 | dir=in | app=c:\program files\air mouse\air mouse\air mouse.exe |
"TCP Query User{16DB056E-D4E1-4F6C-87BE-F44333E0AAFF}D:\spiele\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=d:\spiele\world of warcraft\launcher.exe |
"TCP Query User{1FDDB126-23DE-464E-A3EC-A25011F97AEF}D:\spiele\battlefield 1942\bf1942.exe" = protocol=6 | dir=in | app=d:\spiele\battlefield 1942\bf1942.exe |
"TCP Query User{23051233-0E5B-4F23-8CF1-4B97D0E2AAB7}D:\spiele\gta iv complete edition\gtaiv.exe" = protocol=6 | dir=in | app=d:\spiele\gta iv complete edition\gtaiv.exe |
"TCP Query User{2490ABFD-447D-4016-BA75-50C0768E86CA}D:\steam\steamapps\common\defcon\defcon.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\defcon\defcon.exe |
"TCP Query User{2BC36F3C-C459-402E-B514-CF947AA6CF61}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=6 | dir=in | app=c:\programdata\electronic arts\need for speed world\data\nfsw.exe |
"TCP Query User{337620E6-E929-4C6A-A5D6-9D53CBD27898}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{3932F929-677A-4B3B-9364-1F03CF685706}D:\steam\steamapps\bastelm\source sdk base\hl2.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\bastelm\source sdk base\hl2.exe |
"TCP Query User{3ECA6548-FCAB-4BC0-9D31-B78BD3CAB559}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"TCP Query User{524210CF-DEAE-4EA7-BD48-54BC4FC35FF1}D:\spiele\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\spiele\tmnationsforever\tmforever.exe |
"TCP Query User{721A14E0-43BD-4181-A8B7-46F34E75968D}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{758AC190-D20E-40B5-9EAD-193E6724CB7B}D:\spiele\der herr der ringe online - beta\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\der herr der ringe online - beta\lotroclient.exe |
"TCP Query User{795B1DCE-855A-4341-95DF-71AD4E88D5FD}D:\spiele\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\spiele\tmnationsforever\tmforever.exe |
"TCP Query User{8053BD0D-518F-48E4-AE2E-CE2F97B65B2A}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{80CB22B1-849F-4594-97DD-03E12FE95A9C}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"TCP Query User{A63D241D-6E5F-452A-8FB1-68A3C932E980}C:\program files\icq7.2\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"TCP Query User{AEB45952-03E2-4873-A49F-B97AF46F07D2}C:\program files\flashget\flashget.exe" = protocol=6 | dir=in | app=c:\program files\flashget\flashget.exe |
"TCP Query User{B40BBC59-594C-4767-9D6E-D2D5E43E7F3E}D:\spiele\fifa online\nfe.exe" = protocol=6 | dir=in | app=d:\spiele\fifa online\nfe.exe |
"TCP Query User{BC4C77DF-3D54-4DA4-B5BD-D74EDF83D31D}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{BF705CC0-2630-4597-9526-FD38C9EB89A9}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{C095F34F-011F-49F5-B0BF-DA1F58BBF28B}C:\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"TCP Query User{C2034F7C-F6FD-40D3-9B18-6E48B0BF02B5}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{C9C5CE45-EEC1-471F-AE89-AE27566C24F6}D:\spiele\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=d:\spiele\borderlands\binaries\borderlands.exe |
"TCP Query User{D14BA693-115C-4FB0-B38C-612A3E7AA31F}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"TCP Query User{D5FF86B6-5CE3-47AF-B253-6B757204B52F}C:\program files\air mouse\air mouse\air mouse.exe" = protocol=6 | dir=in | app=c:\program files\air mouse\air mouse\air mouse.exe |
"TCP Query User{DA3031DF-5195-45D3-9D76-750A5D55AA92}C:\program files\flashget\flashget.exe" = protocol=6 | dir=in | app=c:\program files\flashget\flashget.exe |
"TCP Query User{ECCBD67C-7C99-4C56-80E5-8A344DEF542D}D:\spiele\flatout2\flatout2.exe" = protocol=6 | dir=in | app=d:\spiele\flatout2\flatout2.exe |
"TCP Query User{F2844D80-0486-4401-8363-720846F727B0}D:\spiele\dirt\dirt.exe" = protocol=6 | dir=in | app=d:\spiele\dirt\dirt.exe |
"TCP Query User{F290C10E-49EC-4096-BC0E-79AF0B36FB20}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"UDP Query User{03E2420A-6983-41A0-B107-5E2A4F38B09F}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"UDP Query User{111AAEDD-ED78-43D0-B7FD-1FB83E4F039E}D:\spiele\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=d:\spiele\world of warcraft\launcher.exe |
"UDP Query User{13666EB0-69CB-413B-86E0-E6470DAAE075}D:\steam\steamapps\common\defcon\defcon.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\defcon\defcon.exe |
"UDP Query User{16D9E6E0-5F8C-4A3C-B32B-8C871A9B385F}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"UDP Query User{2012BAE4-6777-47D5-8E7C-902AB4C33879}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{20B745F0-3ED6-4F0B-8BB9-E725BCBB6AD3}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{2402130B-17A7-4431-AA57-23DC6765D871}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{25DBEB88-8CBD-4110-AA96-5AC90D547A88}D:\spiele\gta iv complete edition\gtaiv.exe" = protocol=17 | dir=in | app=d:\spiele\gta iv complete edition\gtaiv.exe |
"UDP Query User{369CD1E3-69CE-482C-A918-245D068D9F88}C:\program files\air mouse\air mouse\air mouse.exe" = protocol=17 | dir=in | app=c:\program files\air mouse\air mouse\air mouse.exe |
"UDP Query User{4FA1F888-B199-455C-BBAF-14007907C4A6}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{558EA5F9-E5D7-4628-B593-F648679B4182}D:\spiele\fifa online\nfe.exe" = protocol=17 | dir=in | app=d:\spiele\fifa online\nfe.exe |
"UDP Query User{5B5A95DD-59AE-419A-94EB-A81723B60117}D:\spiele\flatout2\flatout2.exe" = protocol=17 | dir=in | app=d:\spiele\flatout2\flatout2.exe |
"UDP Query User{5CC0CB49-43A2-43B1-9A9E-6AFF82F3BD1E}D:\spiele\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\spiele\tmnationsforever\tmforever.exe |
"UDP Query User{5E284B56-D7B3-45F9-AFDB-12FE0D42CED7}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=17 | dir=in | app=c:\programdata\electronic arts\need for speed world\data\nfsw.exe |
"UDP Query User{69417623-2C0E-43E1-ADEF-01DE85FF697F}C:\program files\air mouse\air mouse\air mouse.exe" = protocol=17 | dir=in | app=c:\program files\air mouse\air mouse\air mouse.exe |
"UDP Query User{77D67615-6F2B-445D-A39F-2C4EFCB33246}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"UDP Query User{96B649D3-962E-4DE8-A445-880D54A7F749}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{9D286C10-59C5-4CE1-BB9F-50A760D15DB7}C:\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"UDP Query User{A25D69D4-AD2A-40A6-99FC-A4E604C3224F}C:\program files\flashget\flashget.exe" = protocol=17 | dir=in | app=c:\program files\flashget\flashget.exe |
"UDP Query User{A37DD893-1C6C-4332-ACC7-1B75FD50698E}D:\spiele\dirt\dirt.exe" = protocol=17 | dir=in | app=d:\spiele\dirt\dirt.exe |
"UDP Query User{B3F21E48-77D1-4170-A61A-8915094DEEE6}C:\program files\flashget\flashget.exe" = protocol=17 | dir=in | app=c:\program files\flashget\flashget.exe |
"UDP Query User{B448E412-A68D-4B3B-96BA-5EB6CEF064B9}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{B87E7C82-40E6-49E8-90F0-DB10EE7EB039}D:\spiele\der herr der ringe online - beta\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\der herr der ringe online - beta\lotroclient.exe |
"UDP Query User{C24F723C-0C20-4555-95B6-64BE68F24576}D:\spiele\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\spiele\tmnationsforever\tmforever.exe |
"UDP Query User{CA0F1A91-3146-4458-A393-266048223FB4}D:\steam\steamapps\bastelm\source sdk base\hl2.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\bastelm\source sdk base\hl2.exe |
"UDP Query User{CEEEB785-10D7-43F7-B489-8CC6766DD9C1}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{D246B467-38D9-4B43-9B16-B574EC60775A}D:\spiele\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=d:\spiele\borderlands\binaries\borderlands.exe |
"UDP Query User{D376A109-B1D5-4933-8756-A7FAB9318EEA}C:\program files\icq7.2\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"UDP Query User{E107E57B-A5FD-4CE4-AC48-6E9AE59DE535}D:\spiele\battlefield 1942\bf1942.exe" = protocol=17 | dir=in | app=d:\spiele\battlefield 1942\bf1942.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{05ADEEC8-BD58-43D9-A9E3-1F53B0DA117A}" = Opera 10.51
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08C5815C-2C6E-44f8-8748-0E61BC9AFB0c}" = LaTale_eu_Test
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{09BDEEF0-5590-457D-89A9-5DB2742F9BBF}" = 32 Bit HP CIO Components Installer
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F61E0B1-1AB8-F15E-07C4-46D100A1D3F7}" = Borderlands
"{1FDA5A37-B22D-43FF-B582-B8964050DC13}" = Microsoft Games for Windows - LIVE Redistributable
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 23
"{27337663-2619-11D4-99DC-0000F49094C7}" = Memory Stick Formatter
"{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}" = Express Gate
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29F05234-DCBB-4FE0-88DC-5160C9250312}" = Adobe Photoshop CS3
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{42F7C377-2A1F-44FB-A17F-053C29E81031}" = Nero 7 Premium
"{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}" = SPEEDLINK Strike 2 Gamepad
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.03
"{5AB36A6C-27A8-4CB1-89A1-9D05F3F16625}" = Mobile Mouse Server
"{5B593C8E-ACD9-47B8-85DA-7EB9294A39FA}" = StarMoney
"{5E7C721D-B008-4269-A1C4-2CE7E9757983}" = BoneTown
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67EC0AB2-8CF7-4415-9F70-7FBC593C0D5E}" = ScanSoft PDF Create! 4
"{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{86A4C6D9-29EE-4719-AFA1-BA3341862B83}" = Microsoft Games for Windows - LIVE
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
"{88C0C3AF-744D-49BB-99D3-117A6DC74AFF}_is1" = Robinson Crusoe
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A6AD979-8170-49ED-8529-14174317B281}" = SA60xx Device Manager
"{8C4504A1-9280-11D5-9F7E-00902712427E}" = Sid Meier's SimGolf
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}" = Ulead VideoStudio SE DVD
"{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear eXtreme
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9FD45917-95E6-449D-ACC9-01E634A34CBD}_is1" = MPEG Video Wizard DVD 5.0.0.109 (07/2010)
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AE6FB990-18C6-40A0-B45D-A30FBFBA0BD3}_is1" = MadTV 2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 260.99
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.1.9.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}" = Fable - The Lost Chapters
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C5C8DE40-1AB7-11D4-854E-00A0C99F6AF9}" = LEGO Alpha Team
"{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}" = FlatOut2
"{CA1ED5B6-CCD6-4C77-AB4B-DD7C6F8F6B9A}" = Flashgrabber Gold 1.0.8
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC4729BF-0396-47EF-AA0B-3A04111F19F9}" = FightBoard
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD0B60EF-1F53-41B7-A2C2-E5B51FCEC821}" = StarMoney
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}" = Dolby Control Center
"{DF74C7BA-5C9F-4F17-8B6F-5ECE08280F34}" = ScanSoft OmniPage 16
"{E337B156-DF81-48D8-8977-B1574EE87BCF}" = USB2.0 Capture Device
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E71AC707-179D-458D-A1E8-F52977CAEAB4}" = M.U.D. TV
"{EB4DF30B-102B-4F0C-927A-D50E037A325D}" = AuthenTec Fingerprint Sensor Minimum Install
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F01F79AD-1F47-4685-AE4E-CCFA4EA9FF7C}" = Adobe Setup
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4f6dcc3b-179d-4b1b-80f0-b6083a0b3ce6_is1" = DER HERR DER RINGE ONLINE: Die Minen Von Moria v02.01.03.4020
"7-Zip" = 7-Zip 4.65
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_5f143314a5d434c8511097393d17397" = Adobe Photoshop CS3
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnimatorDV Simple+ 9.02_is1" = AnimatorDV Simple+ 9.02
"Aquaria" = Aquaria
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Ballerburg_is1" = Ballerburg
"Binary Clock Screensaver 3_is1" = Binary Clock Screensaver 3
"Bridge Building Game" = Bridge Building Game
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Daemon Vector" = Daemon Vector 1.0
"DDA23392-9C73-4909-A221-BC12C6D2664D" = GmoteServer
"D-Fend Reloaded" = D-Fend Reloaded 0.9.3 (deinstallieren)
"Die Gilde - Gaukler, Gruften und Geschütze" = Die Gilde - Gaukler, Gruften und Geschütze
"Die Gilde Addon Update v. 2.06 " = Die Gilde Addon Update v. 2.06
"DOSShell" = DOSShell 1.6
"EvilLyrics" = EvilLyrics
"FairUse Wizard 2" = FairUse Wizard 2
"FileZilla Client" = FileZilla Client 3.3.5.1
"FlashGet" = FlashGet 1.9.6.1073
"FormatFactory" = FormatFactory 2.60
"Foxit Creator" = Foxit Creator
"Foxit Reader" = Foxit Reader
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free Video Flip and Rotate_is1" = Free Video Flip and Rotate version 1.8.10
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.33
"GyroMeter" = GyroMeter
"HijackThis" = HijackThis 2.0.2
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}" = Fable - The Lost Chapters
"InstallShield_{CC4729BF-0396-47EF-AA0B-3A04111F19F9}" = FightBoard Advanced 2.00
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox (3.6.15)" = Mozilla Firefox (3.6.15)
"Mpeg Video Wizard DVD 5.0" = MPEG Video Wizard DVD 5.0.0.109 (07/2010)
"Need For Speed - Porsche" = Need For Speed - Porsche
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 12.0" = RealPlayer
"RTL Biathlon 2007_0001" = RTL Biathlon 2007
"RTP for RM2K (Png, Wav, Midi, Fonts)" = RTP for RM2K (Png, Wav, Midi, Fonts)
"Spyware Terminator_is1" = Spyware Terminator
"Steam App 11450" = Overlord
"Steam App 12710" = Overlord: Raising Hell
"Steam App 12810" = Overlord II
"Steam App 19900" = Far Cry 2
"Steam App 20900" = The Witcher: Enhanced Edition
"Steam App 215" = Source SDK Base 2006
"Steam App 26800" = Braid
"Steam App 31410" = Zombie Driver
"Steam App 32160" = Zombie Bowl-O-Rama
"Steam App 32360" = The Secret of Monkey Island: Special Edition
"Steam App 32460" = Monkey Island 2: Special Edition
"Steam App 3592" = Plants vs. Zombies Demo
"Steam App 400" = Portal
"Steam App 4000" = Garry's Mod
"Steam App 42500" = DogFighter
"Steam App 45700" = Devil May Cry 4
"Steam App 6020" = Star Wars Jedi Knight: Jedi Academy
"Steam App 6060" = Star Wars - Battlefront II
"Steam App 6120" = Shank
"Steam App 73050" = Magicka - Demo
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 6" = TeamViewer 6
"TmNationsForever_is1" = TmNationsForever
"Uninstall_is1" = Uninstall 1.0.0.1
"Unlocker" = Unlocker 1.8.9
"USB2.0 1.3M UVC WebCam" = USB2.0 1.3M UVC WebCam
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VLC media player 1.1.5
"WBFS Manager 3.0" = WBFS Manager 3.0
"Winamp" = Winamp
"XviD_is1" = XviD MPEG-4 Video Codec
"ZMBV" = Zip Motion Block Video codec (Remove Only)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)
"Winamp Detect" = Winamp Erkennungs-Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 08.03.2011 06:14:37 | Computer Name = Asus | Source = Windows Search Service | ID = 9002
Description =
Error - 08.03.2011 06:14:37 | Computer Name = Asus | Source = Windows Search Service | ID = 3029
Description =
Error - 08.03.2011 06:14:40 | Computer Name = Asus | Source = Windows Search Service | ID = 3029
Description =
Error - 08.03.2011 06:14:40 | Computer Name = Asus | Source = Windows Search Service | ID = 3028
Description =
Error - 08.03.2011 06:14:40 | Computer Name = Asus | Source = Windows Search Service | ID = 3058
Description =
Error - 08.03.2011 07:23:03 | Computer Name = Asus | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung mDNSResponder.exe, Version 2.0.4.0, Zeitstempel
0x4cae1be1, fehlerhaftes Modul mDNSResponder.exe, Version 2.0.4.0, Zeitstempel
0x4cae1be1, Ausnahmecode 0xc0000005, Fehleroffset 0x0000110a, Prozess-ID 0x3b4, Anwendungsstartzeit
01cbdd832e4ed4c8.
Error - 08.03.2011 10:13:13 | Computer Name = Asus | Source = Application Hang | ID = 1002
Description = Programm FarCry2.exe, Version 0.1.0.1 arbeitet nicht mehr mit Windows
zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen
für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem
zu suchen. Prozess-ID: 1778 Anfangszeit: 01cbdd970c997a05 Zeitpunkt der Beendigung:
1194
Error - 08.03.2011 10:20:18 | Computer Name = Asus | Source = VSS | ID = 8194
Description =
Error - 08.03.2011 10:21:03 | Computer Name = Asus | Source = System Restore | ID = 8193
Description =
Error - 13.03.2011 02:47:29 | Computer Name = Asus | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung mDNSResponder.exe, Version 2.0.4.0, Zeitstempel
0x4cae1be1, fehlerhaftes Modul mDNSResponder.exe, Version 2.0.4.0, Zeitstempel
0x4cae1be1, Ausnahmecode 0xc0000005, Fehleroffset 0x0000110a, Prozess-ID 0x318, Anwendungsstartzeit
01cbe14a83208f59.
[ System Events ]
Error - 03.03.2010 03:38:36 | Computer Name = Asus | Source = disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.
Error - 03.03.2010 14:38:25 | Computer Name = Asus | Source = HTTP | ID = 15016
Description =
Error - 03.03.2010 14:39:56 | Computer Name = Asus | Source = Service Control Manager | ID = 7022
Description =
Error - 03.03.2010 14:40:23 | Computer Name = Asus | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 03.03.2010 15:41:43 | Computer Name = Asus | Source = HTTP | ID = 15016
Description =
Error - 03.03.2010 15:43:17 | Computer Name = Asus | Source = Service Control Manager | ID = 7022
Description =
Error - 03.03.2010 15:44:26 | Computer Name = Asus | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 04.03.2010 03:45:44 | Computer Name = Asus | Source = HTTP | ID = 15016
Description =
Error - 04.03.2010 03:47:32 | Computer Name = Asus | Source = Service Control Manager | ID = 7022
Description =
Error - 04.03.2010 03:47:56 | Computer Name = Asus | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
< End of report >
|
