ACHTUNG! Aus Sicherheitsgründen wurde ihr Windowssystem blockiert.

BAD_ASS · 28.12.2011, 11:13

Hallo....

nun is bei mir auch soweit... hab schon einiges nachgelesen hier und hab den otl scan gemacht. Ich kann mich halt mit dem zeug überhaupt nicht aus. Ich versuch mal es zu posten.

OTL logfile created on: 28.12.2011 10:43:52 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Berlinger Andreas\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,23% Memory free
6,19 Gb Paging File | 4,53 Gb Available in Paging File | 73,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,04 Gb Total Space | 64,72 Gb Free Space | 44,93% Space Free | Partition Type: NTFS
Drive D: | 139,50 Gb Total Space | 137,04 Gb Free Space | 98,23% Space Free | Partition Type: NTFS

Computer Name: BERLINGERAND-PC | User Name: Berlinger Andreas | Logged in as Administrator.
Cannot determine boot mode. | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Berlinger Andreas\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
PRC - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
PRC - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe ()
PRC - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe ()
PRC - C:\Windows\System32\vfsFPService.exe (Validity Sensors, Inc.)
PRC - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation)
PRC - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation)
PRC - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
PRC - C:\Program Files\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
PRC - C:\ACER\Mobility Center\MobilityService.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Program Files\WinRAR\RarExt.dll ()

========== Win32 Services (SafeList) ==========

SRV - (Bandoo Coordinator) -- File not found
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (Sony Ericsson PCCompanion) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe (Avanquest Software)
SRV - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (ICQ Service) -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
SRV - (IJPLMSVC) -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
SRV - (Browser Defender Update Service) -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (McComponentHostService) -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (sdCoreService) -- C:\Program Files\Spyware Doctor\pctsSvc.exe (PC Tools)
SRV - (sdAuxService) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe (PC Tools)
SRV - (TeamViewer4) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (IGBASVC) -- C:\Program Files\Acer\Acer Bio Protection\BASVC.exe ()
SRV - (HRService) -- C:\Program Files\Haufe\iDesk\iDeskService\iDeskService.exe ()
SRV - (eDataSecurity Service) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated)
SRV - (IAANTMON) Intel(R) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (ETService) -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe ()
SRV - (vfsFPService) -- C:\Windows\System32\vfsFPService.exe (Validity Sensors, Inc.)
SRV - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation)
SRV - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (CLHNService) -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
SRV - (RS_Service) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (MobilityService) -- C:\Acer\Mobility Center\MobilityService.exe ()

========== Driver Services (SafeList) ==========

DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (avkmgr) -- C:\Windows\System32\drivers\avkmgr.sys (Avira GmbH)
DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (atksgt) -- C:\Windows\System32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\Windows\System32\drivers\lirsgt.sys ()
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (PCTCore) -- C:\Windows\system32\drivers\PCTCore.sys (PC Tools)
DRV - (RTL2832U_IRHID) -- C:\Windows\System32\drivers\RTL2832U_IRHID.sys (Realtek)
DRV - (RTL2832UUSB) -- C:\Windows\System32\drivers\RTL2832UUSB.sys (REALTEK SEMICONDUCTOR Corp.)
DRV - (RTL2832UBDA) -- C:\Windows\System32\drivers\RTL2832UBDA.sys (REALTEK SEMICONDUCTOR Corp.)
DRV - (LADF_SBVM) -- C:\Windows\System32\drivers\ladfSBVMi386.sys (Logitech)
DRV - (LADF_DHP2) -- C:\Windows\System32\drivers\ladfDHP2i386.sys (Logitech)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)

desweiteren noch

OTL Extras logfile created on: 28.12.2011 10:43:52 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Berlinger Andreas\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,23% Memory free
6,19 Gb Paging File | 4,53 Gb Available in Paging File | 73,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,04 Gb Total Space | 64,72 Gb Free Space | 44,93% Space Free | Partition Type: NTFS
Drive D: | 139,50 Gb Total Space | 137,04 Gb Free Space | 98,23% Space Free | Partition Type: NTFS

Computer Name: BERLINGERAND-PC | User Name: Berlinger Andreas | Logged in as Administrator.
Cannot determine boot mode. | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
.vbe [@ = VBEFile] -- C:\Windows\System32\CScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\System32\CScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\System32\CScript.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
vbefile [open] -- %SystemRoot%\System32\CScript.exe "%1" %* (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\CScript.exe "%1" %* (Microsoft Corporation)
wsffile [open] -- %SystemRoot%\System32\CScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E0D2EF9-01B9-4B2C-933E-BF3914A32D2E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1759AA50-A347-421A-A582-C8173BBEE349}" = lport=445 | protocol=6 | dir=in | app=system |
"{1FF5B851-104E-4CED-A2D6-3757EA105B4A}" = rport=139 | protocol=6 | dir=out | app=system |
"{21F46517-277E-430B-A995-37EA86BEE302}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2B2AD7D9-1B5B-48D0-8814-1A6347EED4B9}" = lport=139 | protocol=6 | dir=in | app=system |
"{3FB50854-2C37-4913-B186-578F4354138B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4783985A-4C26-42D5-B10C-794F63693DCC}" = lport=138 | protocol=17 | dir=in | app=system |
"{534919A9-BFC7-4AC9-833B-43006B226F84}" = rport=445 | protocol=6 | dir=out | app=system |
"{58598171-87F1-49F2-B74D-DEF6420D8F9B}" = rport=137 | protocol=17 | dir=out | app=system |
"{5A4BDD49-DA17-464C-9CE8-78E7FA52EE0C}" = lport=137 | protocol=17 | dir=in | app=system |
"{6A00DC17-7869-4CD6-872C-2333B199F278}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6A87C3B2-3221-4F63-8A2A-03E8C93C25F2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{79F306E3-8DD7-44BD-8C1B-F96237851A5F}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{7E968B9C-F953-4615-BAA9-F7F317E9F2D7}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{840A04ED-66BD-488E-8CF6-4A114645E070}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{84593E32-48D6-4456-9ECB-C3DEAB4E336D}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{906FF8B6-9901-470E-9FFC-1FE9E9CC1A19}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9B8285A0-E7A7-4987-9932-572DC5A9BFCE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A6A6967D-DA25-4839-8446-7272FA910622}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B910C810-EF08-424D-ADD3-51B442DDF35B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BFB9A6F4-7288-4FFB-8F90-F8CCF1AB42A3}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{D4076101-BF7A-4BF0-A641-9D852F61C049}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D6A10DFF-234B-4262-A13B-45C3E0E00A18}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{DE7A1665-608C-41BC-8F18-05D470E9917F}" = rport=138 | protocol=17 | dir=out | app=system |
"{E4D9465F-7241-465A-9106-6C337D8E4616}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{EF22AE97-1EA9-4034-B453-A2CB7EB9ACAD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F063D835-ABA9-405D-BBDF-78EACE444F00}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F2230B1B-0A8F-452B-9F16-E901ECF7FDE1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F42E9C39-0C66-4908-B3F3-716FC911ED72}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{F5DA3FF9-A238-49D7-B112-24776C9C773C}" = rport=2869 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{007AC4AA-835D-44FA-A75B-938BEF96FF8D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{098C8E76-8B2D-44AA-B1BE-3908D0B3C0D7}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{0A7264A2-239E-408E-9C8B-D80BEDC77704}" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{0B07A212-E70F-454A-B5D1-4B6C17903787}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{0B08A5C4-8A64-4FFA-96DD-38C0310DAA57}" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{0BD1D7E5-CF90-450D-AFAC-2D140490E6D8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{0D22038B-7054-4478-8BA5-A31B7F2D5430}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{11451F7A-CD07-4946-AC64-DC82466FF4C5}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{19B533F8-717E-4E16-9816-B476FAC3A071}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{1DE42F44-3DF4-48B6-A9E2-B592C1DBFC92}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1EC8261E-74FF-4419-A321-33DC4288BB7A}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{22CC8389-295A-450D-AA40-B95F74CCAA6C}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{2525BFE9-A388-47C3-8545-CDBCBB08B4B9}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{25EB6724-F8FC-4F47-ACD6-9425E0428025}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{26E71699-347B-475C-8209-D5E71E42AC84}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{2DE2A80C-3A32-47E6-AC28-D3CE5FBBAB4E}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{3BD307EA-3715-49CE-B636-285B0BD42492}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{3BE2700A-5CD9-4B30-BB7C-EDA9E617A7C8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3CB85A34-DFEA-443B-B78A-552E95A5CD82}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{427C44DD-34B4-41A2-9EAC-AA86C120DA89}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4281F373-58F0-4E2F-807B-C63D94C3452A}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{42FEFD8D-926F-4366-9FD2-6AD66F959C87}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\client\agentsvc.exe |
"{445AEF5B-8484-46CA-BBCE-38FB101E3F81}" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{49BF5A29-F0DD-4006-9F28-F22A432709B4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{4B251D6D-6C7D-4F4E-BD6B-463A042D7A9A}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{4ED669C2-E76B-4018-95A7-847F98F6A00B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4ED9DB23-E35C-4ECA-B817-3109A1E5DD61}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\empire total war\empire.exe |
"{52F395CD-F871-4EDA-A72A-F836EFDB3C3B}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{54B8397A-7321-4948-AB30-444DCC15CD33}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{5B7EF2D5-EBA1-4DFF-BD96-66A20FD2C83D}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe |
"{5BB4E6C6-3C5D-415B-A579-9ABDFD3AAA81}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5EEBF6B8-D985-45FF-917C-320C85341629}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{5F2B70C0-64D2-4ACF-9620-486FF892DF42}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{5F6E179D-D530-4993-A110-D44794E47E58}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{620A3614-2356-403F-87BF-705E576766AC}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{62407648-B61B-4FBE-BFC1-4453874C34AE}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{62B3E845-585A-4B78-836A-C85C73342D6E}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{63AF7F0E-DBDA-4D2E-A247-73E2AE2462E5}" = dir=in | app=c:\program files\electronic arts\command & conquer 3\retailexe\1.0\cnc3game.dat |
"{6B4433D6-8A66-4A2F-92B6-244268909694}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{6F08BFB0-E6E9-4B56-B20A-9820DC096CD5}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{76497F20-570B-4A6B-9C44-0D3033EAD2A5}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe |
"{7E0C4F18-4F8E-4FD0-BD76-A865E6FA6692}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\client\agentsvc.exe |
"{7EAD3908-DB5F-49C7-9B8E-9DAED78CD424}" = protocol=17 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe |
"{7F0679BF-C2D2-4AD5-BC2D-D294FD5F7CF0}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{7F7B76CC-CFCA-4A0E-B9F9-E58B38A4FEDA}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe |
"{8C72D8EF-6247-48E5-B35A-4D43B4CB3FD1}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{8D7B825B-C237-4FA5-9EE8-DA45705EFD25}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{94DFCE06-4CC5-42E0-AA8B-416763B418F6}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{97F55C3A-A388-4F41-AAED-3B40A6CB4E4E}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{9A5B934B-D746-40E0-B65F-5CE753F9007F}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{9D8285FB-A35A-47C3-9AD5-37F157462411}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\empire total war\empire.exe |
"{9EFECBD8-5B84-4548-9226-530DC30664DB}" = dir=in | app=c:\users\berlinger andreas\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{A6B394D1-6ED7-487F-AC89-285EBB81216F}" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{B552538C-58C4-4E5E-B392-4B438F5DB033}" = protocol=6 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe |
"{B7ACFE53-6CCD-4B32-96C2-319377383BDA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{B88A8CDC-3922-44A5-989F-1D8E9ABF6356}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{B8C771AE-C75B-4B34-82A7-D6BC502A4227}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{BFD6FB21-EE16-4E8A-BE9B-FBE99D97150B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{C1490EA2-2564-4011-B0C6-649D9ADBA36B}" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{C2568E33-BF4C-4EC1-BB64-8F4A97E5F1B9}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{C5D9C772-01AF-402B-A8F0-CCC3FC0EFC16}" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia 3.5\totalmedia.exe |
"{CDF93762-3947-4930-BCE7-BCEC176EBA37}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{D14E0B40-5A73-4913-95C0-BB72B7BEEEBC}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{D7FDAC78-1A83-401F-920D-26ACD71BB3AE}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{D82B561D-EBD1-48AC-B469-9D2202187F65}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{D832C058-71B9-4366-B41F-6C9807EBB339}" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia 3.5\totalmedia.exe |
"{D92AB3FD-3FCA-4F9C-9F37-DCE71384A531}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{E01FD3A7-CC7B-474A-9420-46366C7985C4}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe |
"{E2842015-6DFD-4099-9DF4-3E3B295928C6}" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{E38E2D64-B532-4EEE-8655-A7E6E83193FB}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{E63F84D0-5308-4605-AF4D-A11BBEED5C3D}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{EF63948B-CD71-4439-93DC-2AA60837542D}" = protocol=6 | dir=in | app=d:\spiele\bf2.exe |
"{F260BE29-AB47-4A22-9B24-31CCE6057E86}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{F414F698-9FD8-4563-B49B-FFFD89F0F076}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{F4C8A95E-A31D-4482-A69D-2379364EA530}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{F8B72899-44D1-4E35-90DF-D1F6BB1A6CA3}" = protocol=17 | dir=in | app=d:\spiele\bf2.exe |
"{F931E0B7-2801-4AE5-8DC1-7CC63BC965D1}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{F97BAA2F-8CCA-4C54-88FA-9D55B4D2E011}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{FBD99690-555A-4A31-B316-4A8874805E84}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{FC614412-1C7B-426A-A598-5B8E85474092}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"TCP Query User{207E2202-2510-4FAC-BF7D-C4078A1EE675}C:\program files\starcraft ii\versions\base15405\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base15405\sc2.exe |
"TCP Query User{230D1D99-8989-4F6D-B460-2DACDCE7460D}C:\company of heroes\reliccoh.exe" = protocol=6 | dir=in | app=c:\company of heroes\reliccoh.exe |
"TCP Query User{28D3974A-7B19-4F46-AE27-62A62F72767F}C:\program files\ea games\command & conquer generäle stunde null\game.dat" = protocol=6 | dir=in | app=c:\program files\ea games\command & conquer generäle stunde null\game.dat |
"TCP Query User{48399F95-B8EA-45D8-8578-46C8E4DC8094}C:\company of heroes\reliccoh.exe" = protocol=6 | dir=in | app=c:\company of heroes\reliccoh.exe |
"TCP Query User{530DC1E7-60D5-4CDA-8AEC-47FB89697CC0}C:\program files\starcraft ii\versions\base16755\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base16755\sc2.exe |
"TCP Query User{65D9F198-1B99-4E15-BDE7-EE9235524A6B}C:\program files\thq\company of heroes\reliccoh.exe" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"TCP Query User{6ADD3CFC-E0F4-4754-9F62-51D555211DE7}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{818AC430-7B41-4029-A2BB-821D2AA9EC28}C:\users\berlinger andreas\appdata\local\temp\064fb3cbf8204157a7cb9e3aaa60b069\relicdownloader.exe" = protocol=6 | dir=in | app=c:\users\berlinger andreas\appdata\local\temp\064fb3cbf8204157a7cb9e3aaa60b069\relicdownloader.exe |
"TCP Query User{867CF190-D76E-4381-A105-F86FDE96DDA3}C:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\support\blizzarddownloader.exe |
"TCP Query User{8822B534-51B0-40A8-B658-4E35EE9722D4}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{972AB87A-5801-4289-BC36-2BC7E7B8F5EA}C:\users\berlinger andreas\desktop\skypeportable\app\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\users\berlinger andreas\desktop\skypeportable\app\skype\phone\skype.exe |
"TCP Query User{9EA38A2E-828A-4F28-B1B5-A2C86207ADF1}C:\program files\lanpoker\lanpoker.exe" = protocol=6 | dir=in | app=c:\program files\lanpoker\lanpoker.exe |
"TCP Query User{9FB23138-2513-4B05-8873-DB9D95AC1C6B}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{A61FE400-42E6-4C4C-9DB9-345468903260}C:\program files\ea games\command & conquer generäle stunde null\game.dat" = protocol=6 | dir=in | app=c:\program files\ea games\command & conquer generäle stunde null\game.dat |
"TCP Query User{B7C65EEB-CEBD-497F-A274-40CC632365FE}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{B81760EF-BCB9-4ED2-ADE1-3D05B24315D4}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{BB286B56-0341-4385-984F-69B43AE73AC8}C:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"TCP Query User{C8CC1173-510E-497A-9BAE-48C4FA7C05A1}C:\program files\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"TCP Query User{CC349312-D772-48F5-94D0-226E93C20EE4}C:\users\berlinger andreas\appdata\local\temp\1ec1260c04ff4b5398c5c7d7ad439cc1\relicdownloader.exe" = protocol=6 | dir=in | app=c:\users\berlinger andreas\appdata\local\temp\1ec1260c04ff4b5398c5c7d7ad439cc1\relicdownloader.exe |
"TCP Query User{DD3ABD4B-E26A-4D37-88E8-F4D2B1A37FCE}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"TCP Query User{DD90605C-A32A-41E0-87FE-6E709C21299F}C:\program files\lanpoker\lanpoker.exe" = protocol=6 | dir=in | app=c:\program files\lanpoker\lanpoker.exe |
"TCP Query User{E544A7DE-A5A9-4815-87BF-0DD931219E2F}C:\users\berlinger andreas\downloads\starcraft_2_eu_de-de.exe" = protocol=6 | dir=in | app=c:\users\berlinger andreas\downloads\starcraft_2_eu_de-de.exe |
"UDP Query User{0304E37E-9D77-4151-9A89-4D5F46DA30B3}C:\company of heroes\reliccoh.exe" = protocol=17 | dir=in | app=c:\company of heroes\reliccoh.exe |
"UDP Query User{251FB330-69E9-4573-87CB-A62D0592A59D}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{31EC551A-E8E4-48AC-8A4B-7F1E25705C27}C:\company of heroes\reliccoh.exe" = protocol=17 | dir=in | app=c:\company of heroes\reliccoh.exe |
"UDP Query User{39151DCD-833C-4B2D-906A-EA7C9EB375CD}C:\program files\lanpoker\lanpoker.exe" = protocol=17 | dir=in | app=c:\program files\lanpoker\lanpoker.exe |
"UDP Query User{3C7005FD-D399-4AA8-AD9D-6447934BE68C}C:\program files\starcraft ii\versions\base16755\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base16755\sc2.exe |
"UDP Query User{479AE806-F84C-4444-9372-378294971CE1}C:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"UDP Query User{56054CB3-4E50-47AC-9BEB-7428B9A9D017}C:\program files\starcraft ii\versions\base15405\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base15405\sc2.exe |
"UDP Query User{662A694B-A520-4453-997E-929CAFB973E9}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{7014EEAA-2778-4C21-99E5-A73BC001C2E4}C:\program files\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"UDP Query User{72092E10-BFD9-4AE7-81C0-A44E2DFB5F07}C:\program files\ea games\command & conquer generäle stunde null\game.dat" = protocol=17 | dir=in | app=c:\program files\ea games\command & conquer generäle stunde null\game.dat |
"UDP Query User{8434F13A-EE99-4343-9B25-9F0FEF37A585}C:\users\berlinger andreas\appdata\local\temp\1ec1260c04ff4b5398c5c7d7ad439cc1\relicdownloader.exe" = protocol=17 | dir=in | app=c:\users\berlinger andreas\appdata\local\temp\1ec1260c04ff4b5398c5c7d7ad439cc1\relicdownloader.exe |
"UDP Query User{8AB476C0-3EA4-4440-A9A4-D529C9ECA1C7}C:\users\berlinger andreas\downloads\starcraft_2_eu_de-de.exe" = protocol=17 | dir=in | app=c:\users\berlinger andreas\downloads\starcraft_2_eu_de-de.exe |
"UDP Query User{975AD854-DC6C-493A-AF4C-216087276A11}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{A2DC41FB-D8A9-4A58-B633-2E56BE9383C7}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{AA0B4A15-CD83-4C47-8224-6842CE56B94A}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"UDP Query User{B3E708C2-5D7F-4E48-BA24-3F574E974685}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{B405887D-9D30-4561-B7B3-55FE99708A8D}C:\program files\ea games\command & conquer generäle stunde null\game.dat" = protocol=17 | dir=in | app=c:\program files\ea games\command & conquer generäle stunde null\game.dat |
"UDP Query User{C5641A37-4D08-45D4-8459-ED85680FBE61}C:\program files\thq\company of heroes\reliccoh.exe" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"UDP Query User{D78D596E-724F-4D3A-8C54-AD64D0E45BC3}C:\program files\lanpoker\lanpoker.exe" = protocol=17 | dir=in | app=c:\program files\lanpoker\lanpoker.exe |
"UDP Query User{E0422C93-C0F6-48BB-A3C1-02B2B00159E5}C:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\support\blizzarddownloader.exe |
"UDP Query User{ECD6619D-3D24-4E02-A8AA-8014F4112692}C:\users\berlinger andreas\desktop\skypeportable\app\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\users\berlinger andreas\desktop\skypeportable\app\skype\phone\skype.exe |
"UDP Query User{F1F4D8EB-ACDB-4874-AF4E-33CCB9EC904A}C:\users\berlinger andreas\appdata\local\temp\064fb3cbf8204157a7cb9e3aaa60b069\relicdownloader.exe" = protocol=17 | dir=in | app=c:\users\berlinger andreas\appdata\local\temp\064fb3cbf8204157a7cb9e3aaa60b069\relicdownloader.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software 6.0.1.5000
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID-Anmelde-Assistent
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0E5FDD1D-DCE8-4F9D-9BFD-4E4CF89811E2}" = iCloud
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX420_series" = Canon MX420 series MP Drivers
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{13D85C14-2B85-419F-AC41-C7F21E68B25D}" = Acer eSettings Management
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14574B7F-75D1-4718-B7F2-EBF6E2862A35}" = Company of Heroes - FAKEMSI
"{152207C3-DBC2-46C2-A096-EAD41984A5D7}" = bit Ten 1.1
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{199E6632-EB28-4F73-AECB-3E192EB92D18}" = Company of Heroes - FAKEMSI
"{1A36CF15-DF66-4756-9482-A9ABF3DDACE6}_is1" = Driver Robot 1.1.0.5
"{1D7CE340-70C3-4848-BCCF-215950328A4C}" = Facebook Video Calling 1.0.0.8953
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{25724802-CC14-4B90-9F3B-3D6955EE27B1}" = Company of Heroes - FAKEMSI
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{26921B2E-3E62-47F9-A514-1FC4A83BD738}" = Intel(R) PROSet/Wireless WiFi-Software
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 26
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{3127F76D-5335-4AC7-BD1E-2F5247A23C24}" = iTunes
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{32C4A4EB-C97D-414E-99C5-38F8DFD31D5D}" = Company of Heroes - FAKEMSI
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}" = Microsoft Works
"{50193078-F553-4EBA-AA77-64C9FAA12F98}" = Company of Heroes - FAKEMSI
"{51D718D1-DA81-4FAD-919F-5C1CE3C33379}" = Company of Heroes - FAKEMSI
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{567E8236-C414-4888-8211-3D61608D57AE}" = Validity Sensors software
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57265292-228A-41FA-9AEC-4620CBCC2739}" = Acer eAudio Management
"{586509F0-350D-48B5-B763-9CC2F8D96C4C}" = Windows Live Sync
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5E453519-60F6-4A4D-A0BF-16663F9B3536}" = Safari
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{66F78C51-D108-4F0C-A93C-1CBE74CE338F}" = Company of Heroes - FAKEMSI
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{70AA9B4F-64F7-4B0D-ADD8-05802D61AF72}" = Windows Live Toolbar
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72D25670-523F-43D0-A1CB-BC239F15245F}" = PC SpeedScan Pro
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{74292F90-895A-4FC6-A692-9641532B1B63}" = ArcSoft TotalMedia 3.5
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78B50D1D-642C-4B89-BCC7-352EAE3614D7}" = iPod for Windows 2005-02-07
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7F4B1592-222F-4E5F-A100-E5AFD61A0BB3}" = Company of Heroes - FAKEMSI
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{80D03817-7943-4839-8E96-B9F924C5E67D}" = Company of Heroes - FAKEMSI
"{80F24F31-F641-4349-83F3-59E335976D16}" = PC SpeedScan Pro
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11029123}" = Bricks of Egypt
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110322783}" = Big Kahuna Reef
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110411970}" = Chuzzle
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111118433}" = Mystery Case Files - Huntsville
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}" = Cake Mania
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111543617}" = Backspin Billiards
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111692950}" = Mahjongg Artifacts
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363}" = Mystery Solitaire - Secret Island
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111872660}" = Diner Dash Flo on the Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112531267}" = Chicken Invaders 3
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112615863}" = Agatha Christie Death on the Nile
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113080210}" = Azada
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{850C7BD3-9F3F-46AD-9396-E7985B38C55E}" = Windows Live Fotogalerie
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C13BEE4-E7CE-4E46-BD13-8F41DAD00FEF}" = SweetIM Toolbar for Internet Explorer 3.4
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8F1B6239-FEA0-450A-A950-B05276CE177C}" = Acer Empowering Technology
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{926BD0E8-24A3-41D2-AF9B-340F1A37ED12}" = MobileMe Control Panel
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{94F3D243-2006-4B2D-9160-C2A33F74BB84}" = Windows Media Center Edition MPEG Codec Plug-in
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-0407-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{97E5205F-EA4F-438F-B211-F1846419F1C1}" = Company of Heroes - FAKEMSI
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99A7722D-9ACB-43F3-A222-ABC7133F159E}" = Company of Heroes - FAKEMSI
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A9DBEBC-C800-4776-A970-D76D6AA405B1}" = PHOTOfunSTUDIO
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9EDBB857-8028-49CD-B9C9-0B4D10CD1031}" = Nero 8
"{A5633652-3795-4829-BB0B-644F0279E279}" = Acer eDataSecurity Management
"{A7496F46-78AE-4DB2-BCF5-95F210FA6F96}" = Windows Live Movie Maker
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam 3.0.6.3
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B5761811-28F3-4257-B537-815C5EEF472C}" = Vodafone Mobile Connect Lite
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BA801B94-C28D-46EE-B806-E1E021A3D519}" = Company of Heroes - FAKEMSI
"{BB05BD70-4605-4829-93FC-AD80D8CC5B66}" = Performance Center
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"{D4D244D1-05E0-4D24-86A2-B2433C435671}" = Company of Heroes - FAKEMSI
"{D5C8E140-6E6F-11DD-9AA9-0050560400B1}" = Haufe iDesk-Service
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{DDBB7C89-1A09-441E-AA0F-6AA465755C17}" = REALTEK DTV USB DEVICE
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E848C9C0-E6FF-4A3F-9D67-AE53AC3628FE}" = SweetIM for Messenger 2.7
"{EAF636A9-F664-4703-A659-85A894DA264F}" = Company of Heroes - FAKEMSI
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.217
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F48AAE0F-52F4-11DD-B1F7-0050560400B1}" = Haufe iDesk-Browser
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Acer Acer Bio Protection 6.0.00.15" = Acer Bio Protection

AAV 6.0.00.15
"Acer GameZone Console_is1" = Acer GameZone Console 2.0.1.1
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"Avira AntiVir Desktop" = Avira Free Antivirus
"BabylonToolbar" = Babylon toolbar on IE
"Bandoo" = Bandoo
"Browser Defender_is1" = Browser Defender 2.0.6.15
"Canon MX420 series Benutzerregistrierung" = Canon MX420 series Benutzerregistrierung
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"CCleaner" = CCleaner
"Company of Heroes" = Company of Heroes
"conduitEngine" = Conduit Engine
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Printer and Utilities" = EPSON-Drucker-Software
"EPSON Scanner" = EPSON Scan
"Free Audio CD to MP3 Converter_is1" = Free Audio CD to MP3 Converter version 1.3.12.908
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.11.923
"GridVista" = Acer GridVista
"Hamachi" = Hamachi 1.0.1.5
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{3521F7CF-9343-4C1F-AE5E-0D2A57A18D2B}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"InstallShield_{78B50D1D-642C-4B89-BCC7-352EAE3614D7}" = iPod for Windows 2005-02-07
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{97EE1BAC-C04F-4935-8110-B1BBAB99D09D}" = Call of Duty(R) - World at War(TM) 1.4.1 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{CC862A04-B2B0-4A79-ADD2-4B76D6CF4DCD}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"Kalender-Excel_is1" = Kalender-Excel 8.6.1
"LManager" = Launch Manager
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MP Navigator EX 4.1" = Canon MP Navigator EX 4.1
"Neffy" = Neffy 1,3,29,0
"NVIDIA Drivers" = NVIDIA Drivers
"PokerStars.net" = PokerStars.net
"ProInst" = Intel PROSet Wireless
"PunkBusterSvc" = PunkBuster Services
"Searchqu MediaBar" = Windows Searchqu Toolbar
"sp6" = Logitech SetPoint 6.20
"Speed Dial Utility" = Canon Kurzwahlprogramm
"Spyware Doctor" = Spyware Doctor 7.0
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamViewer 4" = TeamViewer 4
"Uninstall_is1" = Uninstall 1.0.0.1
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"Xfire" = Xfire (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Game Organizer" = GameXN GO
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 27.12.2011 20:45:53 | Computer Name = BerlingerAnd-PC | Source = WinMgmt | ID = 10
Description =

Error - 27.12.2011 20:47:18 | Computer Name = BerlingerAnd-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung ArcCon.ac, Version 1.1.0.47, Zeitstempel 0x4b999aa1,
fehlerhaftes Modul MagCore.dll, Version 6.0.6002.18327, Zeitstempel 0x4cb73436,
Ausnahmecode 0xc0000135, Fehleroffset 0x00009f7d, Prozess-ID 0x1310, Anwendungsstartzeit
01ccc4fa39cffdc6.

Error - 27.12.2011 20:52:03 | Computer Name = BerlingerAnd-PC | Source = EventSystem | ID = 4609
Description =

Error - 27.12.2011 20:52:55 | Computer Name = BerlingerAnd-PC | Source = WinMgmt | ID = 10
Description =

Error - 27.12.2011 21:40:36 | Computer Name = BerlingerAnd-PC | Source = WinMgmt | ID = 10
Description =

Error - 27.12.2011 21:43:01 | Computer Name = BerlingerAnd-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung ArcCon.ac, Version 1.1.0.47, Zeitstempel 0x4b999aa1,
fehlerhaftes Modul MagCore.dll, Version 6.0.6002.18327, Zeitstempel 0x4cb73436,
Ausnahmecode 0xc0000135, Fehleroffset 0x00009f7d, Prozess-ID 0x1500, Anwendungsstartzeit
01ccc501fabd1b8a.

Error - 28.12.2011 04:50:34 | Computer Name = BerlingerAnd-PC | Source = WinMgmt | ID = 10
Description =

Error - 28.12.2011 04:51:59 | Computer Name = BerlingerAnd-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung ArcCon.ac, Version 1.1.0.47, Zeitstempel 0x4b999aa1,
fehlerhaftes Modul MagCore.dll, Version 6.0.6002.18327, Zeitstempel 0x4cb73436,
Ausnahmecode 0xc0000135, Fehleroffset 0x00009f7d, Prozess-ID 0x1560, Anwendungsstartzeit
01ccc53ddf7c65ba.

Error - 28.12.2011 04:58:03 | Computer Name = BerlingerAnd-PC | Source = Software Licensing Service | ID = 1001
Description = Fehler beim Starten des Softwarelizenzierungsdienstes. hr=0x80070002,
[2, 4]

Error - 28.12.2011 04:59:13 | Computer Name = BerlingerAnd-PC | Source = WinMgmt | ID = 10
Description =

[ OSession Events ]
Error - 13.11.2009 10:17:34 | Computer Name = BerlingerAnd-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 107
seconds with 60 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 28.12.2011 04:59:14 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 28.12.2011 04:59:14 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 28.12.2011 04:59:14 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7023
Description =

Error - 28.12.2011 04:59:14 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 28.12.2011 04:59:14 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 28.12.2011 04:59:24 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 28.12.2011 04:59:31 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7023
Description =

Error - 28.12.2011 04:59:33 | Computer Name = BerlingerAnd-PC | Source = ipnathlp | ID = 34001
Description = ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.

Error - 28.12.2011 04:59:33 | Computer Name = BerlingerAnd-PC | Source = ipnathlp | ID = 30013
Description = Die DHCP-Zuweisung wurde für IP-Adresse 192.168.2.100 deaktiviert,
da die IP-Adresse außerhalb des Bereichs 192.168.0.0/255.255.255.0 liegt, von der
die Adressen DHCP-Clients zu gewiesen werden. Ändern Sie den Bereich, sodass die
IP-Adresse mit einbezogen wird, oder ändern Sie die IP-Adresse, sodass sie innerhalb
dieses Bereichs liegt, um die DHCP-Zuweisung zu aktivieren.

Error - 28.12.2011 05:05:10 | Computer Name = BerlingerAnd-PC | Source = Service Control Manager | ID = 7022
Description =

< End of report >

ich hab ka was ich machen soll kann

danke

gruß

markusg · 28.12.2011, 11:58

hi,
warum keine otl.txt? ist bisher nur extras.txt zu sehen :-)

BAD_ASS · 28.12.2011, 12:16

ich hab die zwei Seiten mit engebunden die mir der otl scan geöffnet hat wo find ich das wonach du fragst?

markusg · 28.12.2011, 12:40

scanne halt noch mal.

28.12.2011, 11:58	#2
markusg /// Malware-holic	ACHTUNG! Aus Sicherheitsgründen wurde ihr Windowssystem blockiert. hi, warum keine otl.txt? ist bisher nur extras.txt zu sehen :-) __________________ __________________

28.12.2011, 12:40	#4
markusg /// Malware-holic	ACHTUNG! Aus Sicherheitsgründen wurde ihr Windowssystem blockiert. scanne halt noch mal. __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

ACHTUNG! Aus Sicherheitsgründen wurde ihr Windowssystem blockiert.

Log-Analyse und Auswertung: ACHTUNG! Aus Sicherheitsgründen wurde ihr Windowssystem blockiert.