| |
| |||||||
Log-Analyse und Auswertung: w3i.IQ5.fraud erkennt und es spielt mit meiner Netzwerkkarte und friert Fenster ein.Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
30.07.2012, 11:56
| #1 |
| |  w3i.IQ5.fraud erkennt und es spielt mit meiner Netzwerkkarte und friert Fenster ein. Grüsse euch Hier hab ich mal die Logdatei die ich mit Escan bekommen habe. hxxp://www.gamefront.com/files/22055024/Logfile.rar ich will euch schon mal vorwarnen ich bin neu im Forum und ich habe keine ahnung was ich tun solle. Ich hoffe jedoch ihr könnt mir helfen  Danke euch im voraus und wünsche euch einen Schönen Tag Freundliche Grüsse Pedro Bauer {Edit} OTL.txt OTL Logfile: Code:
ATTFilter OTL logfile created on: 30.07.2012 13:04:19 - Run 1 OTL by OldTimer - Version 3.2.55.0 Folder = C:\Users\Flammerth\Downloads 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 16.00 Gb Total Physical Memory | 8.68 Gb Available Physical Memory | 54.26% Memory free 31.99 Gb Paging File | 23.95 Gb Available in Paging File | 74.86% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 465.66 Gb Total Space | 247.72 Gb Free Space | 53.20% Space Free | Partition Type: NTFS Drive I: | 931.51 Gb Total Space | 692.17 Gb Free Space | 74.31% Space Free | Partition Type: NTFS Drive J: | 931.51 Gb Total Space | 213.72 Gb Free Space | 22.94% Space Free | Partition Type: NTFS Computer Name: ABYSSAL | User Name: Flammerth | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.07.30 13:03:22 | 000,597,504 | ---- | M] (OldTimer Tools) -- C:\Users\Flammerth\Downloads\OTL.exe PRC - [2012.07.30 02:55:26 | 000,529,232 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe PRC - [2012.07.30 02:50:09 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe PRC - [2012.07.29 22:01:03 | 001,536,712 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_268.exe PRC - [2012.07.29 20:10:12 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012.06.09 02:18:08 | 000,433,816 | ---- | M] (VMware, Inc.) -- C:\Windows\SysWOW64\vmnat.exe PRC - [2012.06.09 02:17:40 | 000,103,576 | ---- | M] (VMware, Inc.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe PRC - [2012.06.09 02:17:38 | 000,354,456 | ---- | M] (VMware, Inc.) -- C:\Windows\SysWOW64\vmnetdhcp.exe PRC - [2012.06.09 00:15:22 | 000,079,872 | ---- | M] (VMware, Inc.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe PRC - [2012.05.21 17:10:40 | 001,000,760 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech Gaming Software\Applets\LCDYT.exe PRC - [2012.05.21 17:10:34 | 000,485,176 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech Gaming Software\Applets\LCDWebCam.exe PRC - [2012.05.21 17:10:10 | 000,835,896 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech Gaming Software\Applets\LCDMovieViewer.exe PRC - [2012.05.21 17:10:04 | 000,661,304 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech Gaming Software\Applets\LCDMedia.exe PRC - [2012.05.02 01:42:28 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2012.05.02 00:34:34 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2012.05.02 00:31:35 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2012.01.18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe PRC - [2011.10.20 15:03:30 | 000,546,112 | ---- | M] (TuneUp Software) -- C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe PRC - [2011.10.20 15:03:16 | 001,116,992 | ---- | M] (TuneUp Software) -- C:\Program Files (x86)\TuneUp Utilities 2012\integrator.exe PRC - [2011.09.16 14:39:24 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe PRC - [2011.09.08 18:08:40 | 002,932,224 | ---- | M] (PACE Anti-Piracy, Inc.) -- C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe PRC - [2011.02.22 21:52:54 | 000,086,016 | ---- | M] () -- C:\Programme\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe PRC - [2009.11.06 18:47:25 | 002,329,160 | ---- | M] (MicroWorld Technologies Inc.) -- C:\Users\FLAMME~1\AppData\Local\Temp\mexe.com PRC - [2009.01.26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe PRC - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe ========== Modules (No Company Name) ========== MOD - [2012.07.30 02:55:26 | 020,313,384 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll MOD - [2012.07.30 02:55:26 | 001,099,576 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll MOD - [2012.07.30 02:55:26 | 000,895,312 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.DLL MOD - [2012.07.30 02:55:26 | 000,190,776 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll MOD - [2012.07.30 02:55:26 | 000,123,192 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll MOD - [2012.07.29 22:01:03 | 009,465,032 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll MOD - [2012.07.29 20:10:12 | 002,003,424 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2012.06.03 03:33:44 | 000,159,232 | ---- | M] () -- C:\Program Files (x86)\GitExtensions\GitExtensionsShellEx32.dll MOD - [2012.05.15 12:54:16 | 000,070,536 | ---- | M] () -- C:\Programme\TortoiseSVN\bin\libsasl32.dll MOD - [2012.05.14 11:25:36 | 000,083,968 | ---- | M] () -- C:\Program Files (x86)\Free Download Manager\fdmumsp.dll MOD - [2012.02.17 20:55:35 | 000,166,912 | ---- | M] () -- C:\Programme\WinRAR\RarExt32.dll MOD - [2011.10.20 11:37:46 | 013,420,352 | ---- | M] () -- C:\Program Files (x86)\TuneUp Utilities 2012\libcef.dll MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf MOD - [2010.10.20 15:45:26 | 008,801,120 | ---- | M] () -- C:\PROGRA~2\MIF5BA~1\Office14\1033\GrooveIntlResource.dll MOD - [2009.07.14 03:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWOW64\msjetoledb40.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2012.04.06 04:16:02 | 000,236,544 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2009.07.14 03:39:47 | 000,081,920 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tlntsvr.exe -- (TlntSvr) SRV - [2012.07.30 02:55:26 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012.07.29 22:01:03 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012.07.29 20:10:12 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012.06.19 17:39:39 | 000,131,912 | ---- | M] (Desura Pty Ltd) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Desura\desura_service.exe -- (Desura Install Service) SRV - [2012.06.17 16:06:13 | 001,431,888 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Programme\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV - [2012.06.17 00:59:58 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2012.06.09 02:18:08 | 000,433,816 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vmnat.exe -- (VMware NAT Service) SRV - [2012.06.09 02:17:38 | 000,354,456 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vmnetdhcp.exe -- (VMnetDHCP) SRV - [2012.06.09 01:39:40 | 011,839,488 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe -- (VMwareHostd) SRV - [2012.06.09 00:15:22 | 000,079,872 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe -- (VMAuthdService) SRV - [2012.06.07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.05.02 01:42:28 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012.05.02 00:34:34 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2012.01.18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv) SRV - [2011.10.20 15:05:04 | 002,072,896 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc) SRV - [2011.09.10 11:43:18 | 000,018,432 | ---- | M] (Apache Software Foundation) [Auto | Stopped] -- c:\xampp\apache\bin\httpd.exe -- (Apache2.2) SRV - [2011.09.08 18:08:40 | 002,932,224 | ---- | M] (PACE Anti-Piracy, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe -- (PaceLicenseDServices) SRV - [2011.08.29 23:11:04 | 000,846,448 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe -- (VMUSBArbService) SRV - [2011.03.28 21:11:06 | 002,292,096 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2011.02.22 21:52:54 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Programme\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe -- (mi-raysat_3dsmax2012_64) SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010.01.09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008.08.15 05:46:20 | 000,284,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -- (Adobe Version Cue CS4) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.07.06 13:36:29 | 000,101,376 | ---- | M] (Eugene V. Muzychenko) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vrtaucbl.sys -- (EuMusDesignVirtualAudioCableWdm) DRV:64bit: - [2012.06.15 22:11:53 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012.06.09 02:18:28 | 000,063,128 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmx86.sys -- (vmx86) DRV:64bit: - [2012.06.09 02:16:28 | 000,030,360 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmnetuserif.sys -- (VMnetuserif) DRV:64bit: - [2012.06.08 23:52:20 | 000,045,680 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmnetbridge.sys -- (VMnetBridge) DRV:64bit: - [2012.06.08 23:52:20 | 000,020,080 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmnetadapter.sys -- (VMnetAdapter) DRV:64bit: - [2012.05.02 15:24:12 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2012.04.27 10:20:04 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2012.04.25 12:11:36 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64) DRV:64bit: - [2012.04.25 00:32:27 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2012.04.06 07:22:40 | 011,174,400 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2012.04.06 03:10:44 | 000,343,040 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012.02.23 14:32:04 | 000,095,760 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService) DRV:64bit: - [2012.01.18 06:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:64bit: - [2012.01.18 06:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2011.10.25 09:57:38 | 000,213,504 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2011.10.25 09:57:38 | 000,096,768 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2011.08.29 23:11:04 | 000,039,024 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\hcmon.sys -- (hcmon) DRV:64bit: - [2011.08.08 14:59:12 | 000,116,336 | ---- | M] (VMware, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmci.sys -- (vmci) DRV:64bit: - [2011.06.28 17:04:40 | 000,105,592 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Tpkd.sys -- (Tpkd) DRV:64bit: - [2011.06.10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.04.27 13:40:58 | 000,388,448 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr7064.sys -- (rt70x64) DRV:64bit: - [2009.11.24 02:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid) DRV:64bit: - [2009.11.24 02:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum) DRV:64bit: - [2009.08.14 11:15:56 | 000,011,576 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\SSPORT.sys -- (SSPORT) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.07.01 20:54:54 | 000,030,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGPBTDD.sys -- (LGPBTDD) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM) DRV:64bit: - [2009.03.18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV:64bit: - [2008.12.11 14:56:54 | 000,015,488 | ---- | M] (ROCCAT Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Kone.sys -- (KoneFltr) DRV:64bit: - [2008.06.27 07:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs) DRV:64bit: - [2008.02.06 03:00:00 | 000,054,480 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2005.03.29 01:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV - [2011.10.20 11:48:16 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008.08.14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://ch.msn.com/default.aspx?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-CH IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = BC DC BA C2 B4 6D CD 01 [binary data] IE - HKCU\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..keyword.URL: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851647&SearchSource=2&q=" FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Flammerth\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Flammerth\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.07.29 20:10:12 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.07.29 20:10:12 | 000,000,000 | ---D | M] [2012.07.06 20:39:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Flammerth\AppData\Roaming\mozilla\Extensions [2012.07.30 02:44:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Flammerth\AppData\Roaming\mozilla\Firefox\Profiles\ja760yz4.default\extensions [2012.07.30 01:13:55 | 000,000,000 | ---D | M] (uTorrentBar_DE Community Toolbar) -- C:\Users\Flammerth\AppData\Roaming\mozilla\Firefox\Profiles\ja760yz4.default\extensions\{c840e246-6b95-475e-9bd7-caa1c7eca9f2} [2012.06.18 19:20:40 | 000,000,000 | ---D | M] (Default Manager) -- C:\Users\Flammerth\AppData\Roaming\mozilla\Firefox\Profiles\ja760yz4.default\extensions\DefaultManager@Microsoft [2012.06.15 22:10:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012.07.29 20:10:12 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012.06.01 18:33:00 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.06.01 18:33:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012.06.01 18:33:00 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2012.06.01 18:33:00 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2012.06.01 18:33:00 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2012.06.01 18:33:00 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - homepage: CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Flammerth\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Flammerth\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Flammerth\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll CHR - plugin: DX Studio Plugin (Enabled) = C:\Users\Flammerth\AppData\Roaming\Mozilla\plugins\npDXStudioPlugin.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll CHR - plugin: Java(TM) Platform SE 7 U5 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Google Update (Enabled) = C:\Users\Flammerth\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - Extension: YouTube = C:\Users\Flammerth\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google-Suche = C:\Users\Flammerth\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: uTorrentBar_DE = C:\Users\Flammerth\AppData\Local\Google\Chrome\User Data\Default\Extensions\leocdeigfnkaojcapikdjcdbedcjmffc\2.3.15.10_0\ CHR - Extension: Google Mail = C:\Users\Flammerth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012.06.17 00:56:02 | 000,001,392 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 wip3.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited) O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000 File not found O8:64bit: - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105 File not found O8 - Extra context menu item: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105 File not found O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.2.17.60 62.2.24.162 62.2.17.61 62.2.24.158 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C801A419-7E8F-4B1A-8EFF-062091482170}: DhcpNameServer = 62.2.17.60 62.2.24.162 62.2.17.61 62.2.24.158 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012.06.17 16:09:56 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2012.06.20 21:57:19 | 000,000,000 | ---D | M] - I:\autobuild -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.07.30 03:59:27 | 000,000,000 | ---D | C] -- C:\Windows\rundll16.exe [2012.07.30 03:59:27 | 000,000,000 | ---D | C] -- C:\Windows\logo1_.exe [2012.07.30 03:13:24 | 000,000,000 | ---D | C] -- C:\Windows\VDLL.DLL [2012.07.30 03:13:24 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\runouce.exe [2012.07.30 03:13:24 | 000,000,000 | ---D | C] -- C:\Windows\RUNDL132.EXE [2012.07.30 03:13:24 | 000,000,000 | ---D | C] -- C:\Windows\logo_1.exe [2012.07.30 02:57:09 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam [2012.07.30 02:49:36 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\inkscape [2012.07.30 02:49:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2012.07.30 02:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam [2012.07.30 02:45:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Inkscape [2012.07.30 02:21:10 | 000,632,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr80.dll [2012.07.30 02:21:09 | 000,554,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp80.dll [2012.07.30 02:21:08 | 000,034,048 | ---- | C] (MicroWorld Technologies Inc.) -- C:\Windows\SysWow64\eEmpty.exe [2012.07.30 02:21:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MicroWorld [2012.07.30 02:21:00 | 000,000,000 | ---D | C] -- C:\ProgramData\MicroWorld [2012.07.30 01:41:31 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\temp [2012.07.30 01:18:30 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe [2012.07.30 01:18:29 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll [2012.07.30 01:18:29 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll [2012.07.30 01:18:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012 [2012.07.30 01:17:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2012 [2012.07.29 20:05:17 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{9953F4C1-7CC9-46F8-B75A-478CBE466477} [2012.07.29 20:05:04 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{BAFBCBAF-CBBA-40D2-B2BD-BACD1FDB9A7D} [2012.07.15 01:29:34 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{1BD7010B-9B0C-44C7-8EDC-FDE99A7C5B8B} [2012.07.15 01:29:11 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{1560F711-BA4A-4DCB-867B-A1CD038B01AC} [2012.07.14 13:28:57 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{179C7681-B346-4956-9809-0CC0232D60A5} [2012.07.14 13:28:46 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{842ED797-8FAF-4AEA-A189-8BCF79574422} [2012.07.14 02:19:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment [2012.07.14 02:19:17 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment [2012.07.14 02:16:29 | 000,000,000 | ---D | C] -- C:\Perfect World Entertainment [2012.07.14 01:36:22 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\éÁéÕé+é±é¦âAâNâVâçâô [2012.07.14 01:01:31 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll [2012.07.13 23:54:06 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\PMB Files [2012.07.13 23:54:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files [2012.07.13 23:54:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks [2012.07.13 21:10:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garrys Mod Final [DiGiTALZONE] 2010 Edition [2012.07.13 19:51:33 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\Temporary Projects [2012.07.13 18:59:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server [2012.07.13 17:55:15 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\MinecraftForge-3.3.8.152-Client [2012.07.13 17:17:31 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{CF00ACDF-091F-4497-AA37-F5573A31B5AB} [2012.07.13 17:17:17 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{4B881369-65CF-439B-9B23-3C78777D0735} [2012.07.12 21:22:00 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\wow 4.3.4 [2012.07.12 20:52:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft [2012.07.12 20:23:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\World of Warcraft [2012.07.12 15:40:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment [2012.07.12 14:31:37 | 000,000,000 | ---D | C] -- C:\Trinity [2012.07.12 14:18:08 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\GitExtensions [2012.07.12 14:17:34 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\GitExtensions [2012.07.12 13:58:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GitExtensions [2012.07.12 13:56:30 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\HeidiSQL [2012.07.12 13:56:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HeidiSQL [2012.07.12 13:56:25 | 000,000,000 | ---D | C] -- C:\ProgramData\HeidiSQL [2012.07.12 13:56:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HeidiSQL [2012.07.12 11:56:27 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{36FF5DDB-57D3-4F09-AEAE-A9348D0B88F9} [2012.07.12 11:56:05 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{A789CB7E-9488-4EC5-9301-957D073CB607} [2012.07.11 23:55:38 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{FA17ABB3-23A8-4CD3-AC80-EF1C042F4A7C} [2012.07.11 23:55:16 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{F604D3D2-FACC-4EDF-BEEB-17DFC6B33372} [2012.07.11 23:07:28 | 000,000,000 | ---D | C] -- C:\ProgramData\MySQL [2012.07.11 23:07:28 | 000,000,000 | ---D | C] -- C:\Program Files\MySQL [2012.07.11 23:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle [2012.07.11 23:05:54 | 000,955,800 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll [2012.07.11 23:05:54 | 000,839,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2012.07.11 23:05:54 | 000,268,680 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2012.07.11 23:05:50 | 000,189,360 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2012.07.11 23:05:50 | 000,188,840 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2012.07.11 23:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012.07.11 22:58:14 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\Neuer Ordner (2) [2012.07.11 22:51:27 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\Multiverse Tools [2012.07.11 22:35:04 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\Navicat [2012.07.11 22:33:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft [2012.07.11 22:33:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PremiumSoft [2012.07.11 21:05:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment [2012.07.11 21:05:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard [2012.07.11 21:04:43 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment [2012.07.11 20:43:10 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\JeutieControl [2012.07.11 20:33:49 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\WOW Private Server [2012.07.11 11:57:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll [2012.07.11 11:57:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll [2012.07.11 11:57:53 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll [2012.07.11 11:57:51 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll [2012.07.11 11:57:51 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll [2012.07.11 11:54:35 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{42E62F9B-9C15-48EC-B03D-6B79F44C55CD} [2012.07.11 11:54:24 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{BD833942-4BFC-4926-9F63-A43D695A7C8D} [2012.07.10 19:40:51 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\My Documents [2012.07.10 19:40:51 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\Multiverse World Browser [2012.07.10 19:39:34 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Multiverse Tools [2012.07.10 19:39:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Multiverse Tools [2012.07.10 19:39:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Multiverse Software Foundation [2012.07.10 19:39:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Multiverse Software Foundation [2012.07.10 13:21:45 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{43BAF543-47D5-4BBC-A87C-3DB21EC18784} [2012.07.10 13:21:22 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{694E2F70-A5D6-449E-8B3A-818BE47E7FD7} [2012.07.09 21:19:23 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{B2931683-4499-496F-A15E-1A590490A4D0} [2012.07.09 21:19:01 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{AB491E28-397D-4855-8C4C-BC851B8A0AFC} [2012.07.09 16:31:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phoenix Viewer [2012.07.09 16:30:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Phoenix Viewer [2012.07.09 09:18:47 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{EFB0F00B-6C4C-4550-9F49-8409A3AEB6F3} [2012.07.09 09:18:36 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{89F176AD-8C7F-4A90-9F1B-019DE99E018D} [2012.07.08 19:41:32 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\teamspeak3-server_win32 [2012.07.08 19:26:04 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\TS3Client [2012.07.08 19:25:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client [2012.07.08 19:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client [2012.07.08 13:55:29 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{8900E88B-83A9-4CED-8967-330EE32765A5} [2012.07.08 13:55:07 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{78B05496-407A-464D-A19C-10E3BFE467AB} [2012.07.07 17:12:02 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\Minecraft server_Pedro [2012.07.07 15:20:38 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{95498BB0-430F-4AC1-856F-657BAD932520} [2012.07.07 15:20:26 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{4777B497-B384-4E6E-86C5-15E1172158CF} [2012.07.07 01:58:32 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\yWriter Projects [2012.07.07 01:26:47 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{09724BF5-7BE6-40BB-9106-ED766B11F214} [2012.07.07 01:26:13 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{07699D5D-4F6A-4B3E-8B7A-75053D588A5E} [2012.07.06 13:58:31 | 000,000,000 | ---D | C] -- C:\ProgramData\PACE [2012.07.06 13:58:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PACE [2012.07.06 13:58:29 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antares Audio Technologies [2012.07.06 13:58:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Antares Audio Technologies [2012.07.06 13:58:29 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Antares [2012.07.06 13:42:02 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\Mixcraft Projects [2012.07.06 13:38:22 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\SynthMaker [2012.07.06 13:38:17 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Acoustica [2012.07.06 13:36:29 | 000,101,376 | ---- | C] (Eugene V. Muzychenko) -- C:\Windows\SysNative\drivers\vrtaucbl.sys [2012.07.06 13:36:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable [2012.07.06 13:36:29 | 000,000,000 | ---D | C] -- C:\Program Files\Virtual Audio Cable [2012.07.06 13:25:48 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{D9FA795D-2242-4C1F-80A9-56A32AFE03C1} [2012.07.06 13:25:13 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{3F89BABA-BB12-4A19-AB2B-877302196590} [2012.07.06 01:24:48 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{DE0625A2-DDB5-42BF-98B5-822472F062CB} [2012.07.06 01:24:13 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{F038AF1A-1E5C-4802-9628-0F048CC0CC85} [2012.07.06 00:51:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\i-Funbox DevTeam [2012.07.06 00:51:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\i-Funbox DevTeam [2012.07.05 18:51:36 | 000,000,000 | ---D | C] -- C:\xampp [2012.07.05 18:13:06 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\Virtual Machines [2012.07.05 17:06:03 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeDNS Update [2012.07.05 17:06:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeDNS Update [2012.07.05 17:06:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreeDNS Update [2012.07.05 13:24:00 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{28E4315F-00A5-4620-92DD-2B4FE9FC39D2} [2012.07.05 13:23:46 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{B388A025-0832-48B0-9BD8-59AA25CF7BD3} [2012.07.04 20:37:59 | 000,063,128 | ---- | C] (VMware, Inc.) -- C:\Windows\SysNative\drivers\vmx86.sys [2012.07.04 20:37:36 | 000,354,456 | ---- | C] (VMware, Inc.) -- C:\Windows\SysWow64\vmnetdhcp.exe [2012.07.04 20:37:32 | 000,433,816 | ---- | C] (VMware, Inc.) -- C:\Windows\SysWow64\vmnat.exe [2012.07.04 20:37:31 | 000,030,360 | ---- | C] (VMware, Inc.) -- C:\Windows\SysNative\drivers\vmnetuserif.sys [2012.07.04 20:37:30 | 000,942,744 | ---- | C] (VMware, Inc.) -- C:\Windows\SysNative\vnetlib64.dll [2012.07.04 20:37:27 | 000,039,024 | ---- | C] (VMware, Inc.) -- C:\Windows\SysNative\drivers\hcmon.sys [2012.07.04 20:37:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware [2012.07.04 20:36:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VMware [2012.07.04 20:36:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\VMware [2012.07.04 20:36:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VMware [2012.07.04 17:24:24 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\lesson01 [2012.07.04 17:13:13 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{DF091AF9-ED24-4193-B44C-CC875AFB1110} [2012.07.04 17:12:48 | 000,033,856 | -H-- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\hamachi.sys [2012.07.04 17:12:41 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{A8285C38-B532-4A65-83F5-230D882ED039} [2012.07.03 23:11:51 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\TeamViewer [2012.07.03 23:05:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer [2012.07.03 22:40:15 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\MinecraftServer [2012.07.03 20:55:01 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Documents\ArmA 2 Other Profiles [2012.07.03 17:24:12 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\Desktop\mathe [2012.07.03 16:49:55 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{18C24573-3D89-440F-83C0-E0394473400B} [2012.07.03 16:49:33 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{981C459E-53DF-4EF2-BA24-4657BF3BBD4A} [2012.07.02 22:09:38 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Dev-Cpp [2012.07.02 22:09:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++ [2012.07.02 22:09:32 | 000,000,000 | ---D | C] -- C:\Dev-Cpp [2012.07.02 19:18:49 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{D53B8F44-796D-41E0-B4D1-3A345E2DEEEF} [2012.07.02 19:18:21 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{C45C0731-502A-4227-9F84-8FD77877544F} [2012.07.01 20:38:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ArmA 2 [2012.07.01 20:28:24 | 000,000,000 | ---D | C] -- C:\TA2DST [2012.07.01 20:01:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bohemia Interactive [2012.07.01 19:17:34 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\.minecraft [2012.07.01 19:00:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2012.07.01 19:00:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.07.01 19:00:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Oracle [2012.07.01 19:00:06 | 000,772,504 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2012.07.01 19:00:06 | 000,687,504 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2012.07.01 19:00:06 | 000,227,720 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2012.07.01 19:00:02 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2012.07.01 19:00:02 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2012.07.01 18:59:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.07.01 18:29:56 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012.07.01 13:57:11 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{B5AFB786-745B-45DA-BE37-ED631AF082AB} [2012.07.01 13:56:33 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{9738991A-4C0A-4102-9AA8-539D74F510A2} [2012.07.01 01:42:04 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\TSVNCache [2012.06.30 14:38:19 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin [2012.06.30 14:38:09 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Lansoftware [2012.06.30 14:34:11 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\TortoiseSVN [2012.06.30 14:33:11 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Roaming\Subversion [2012.06.30 14:32:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN [2012.06.30 14:32:56 | 000,000,000 | ---D | C] -- C:\Program Files\TortoiseSVN [2012.06.30 14:07:07 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{BE60F00D-27A8-434D-8A65-9C414D60BC66} [2012.06.30 14:06:38 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{CFC5179B-A63D-4E99-8F02-5E7540BF0969} [2012.06.30 13:14:17 | 000,000,000 | ---D | C] -- C:\Users\Flammerth\AppData\Local\{F3C81851-0346-4AB0-A1D4-E1A321BCB2FB} [1 C:\Users\Flammerth\Desktop\*.tmp files -> C:\Users\Flammerth\Desktop\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.07.30 13:01:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012.07.30 12:53:59 | 004,720,568 | ---- | M] () -- C:\Users\Flammerth\Desktop\Logfile.rar [2012.07.30 12:19:10 | 000,001,136 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1383788583-3412269104-3032018097-1000UA.job [2012.07.30 03:59:27 | 000,000,054 | ---- | M] () -- C:\Windows\Lic.xxx [2012.07.30 03:51:31 | 000,044,568 | ---- | M] () -- C:\Users\Flammerth\Documents\pinfect.zip [2012.07.30 03:15:14 | 027,149,090 | ---- | M] () -- C:\Windows\REGBK00.ZIP [2012.07.30 03:00:42 | 000,000,221 | ---- | M] () -- C:\Users\Flammerth\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url [2012.07.30 02:58:19 | 000,000,220 | ---- | M] () -- C:\Users\Flammerth\Desktop\Garry's Mod.url [2012.07.30 02:57:09 | 000,000,219 | ---- | M] () -- C:\Users\Flammerth\Desktop\Left 4 Dead 2.url [2012.07.30 02:50:40 | 000,000,218 | ---- | M] () -- C:\Users\Flammerth\.recently-used.xbel [2012.07.30 02:49:49 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk [2012.07.30 02:47:57 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\Inkscape.lnk [2012.07.30 02:21:09 | 000,632,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr80.dll [2012.07.30 02:21:08 | 000,554,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp80.dll [2012.07.30 02:21:07 | 000,034,048 | ---- | M] (MicroWorld Technologies Inc.) -- C:\Windows\SysWow64\eEmpty.exe [2012.07.30 01:19:57 | 000,015,376 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.30 01:19:57 | 000,015,376 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.30 01:18:26 | 000,002,213 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2012.07.30 01:18:26 | 000,002,187 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk [2012.07.30 01:12:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.29 22:01:03 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2012.07.29 22:01:03 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2012.07.29 20:19:00 | 000,001,084 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1383788583-3412269104-3032018097-1000Core.job [2012.07.14 22:51:13 | 000,001,321 | ---- | M] () -- C:\Users\Public\Desktop\Firestorm-Release.lnk [2012.07.14 15:21:51 | 001,652,692 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.07.14 15:21:51 | 000,710,640 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.07.14 15:21:51 | 000,664,236 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.07.14 15:21:51 | 000,154,652 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.07.14 15:21:51 | 000,126,848 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.07.14 02:20:41 | 000,001,174 | ---- | M] () -- C:\Users\Flammerth\Desktop\Perfect World International.lnk [2012.07.14 00:49:01 | 000,258,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll [2012.07.13 19:48:25 | 000,000,862 | ---- | M] () -- C:\Windows\SysNative\termcap [2012.07.13 17:55:02 | 000,834,135 | R--- | M] () -- C:\Users\Flammerth\Desktop\MinecraftForge-3.3.8.152-Client.zip [2012.07.13 17:36:04 | 000,002,420 | ---- | M] () -- C:\Users\Flammerth\Desktop\Google Chrome.lnk [2012.07.13 17:20:45 | 060,448,165 | ---- | M] () -- C:\Users\Flammerth\Desktop\Minecraft.zip [2012.07.12 21:11:25 | 000,001,068 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2012.07.12 15:59:47 | 000,001,038 | ---- | M] () -- C:\Users\Flammerth\Flammerth - Verknüpfung.lnk [2012.07.12 14:39:22 | 000,000,025 | ---- | M] () -- C:\Users\Flammerth\.gitconfig [2012.07.12 13:58:23 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Git Extensions.lnk [2012.07.12 13:56:25 | 000,001,011 | ---- | M] () -- C:\Users\Flammerth\Desktop\HeidiSQL.lnk [2012.07.12 07:48:07 | 003,020,184 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.07.11 23:45:15 | 000,157,644 | ---- | M] () -- C:\Users\Flammerth\Desktop\Xelliya_Echo_Replica.jpg [2012.07.11 23:45:15 | 000,156,629 | ---- | M] () -- C:\Users\Flammerth\Desktop\Xelliya_Basic_Costume.jpg [2012.07.11 23:45:12 | 000,155,713 | ---- | M] () -- C:\Users\Flammerth\Desktop\Xelliya_Unknown_Costume.jpg [2012.07.11 23:45:11 | 000,171,464 | ---- | M] () -- C:\Users\Flammerth\Desktop\Xelliya_Wedding_Dress.jpg [2012.07.11 23:05:46 | 000,189,360 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2012.07.11 23:05:46 | 000,188,840 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2012.07.11 22:33:47 | 000,001,184 | ---- | M] () -- C:\Users\Public\Desktop\Navicat Lite.lnk [2012.07.11 21:05:12 | 000,001,332 | ---- | M] () -- C:\Users\Flammerth\Desktop\World of Warcraft Installer.lnk [2012.07.10 20:33:03 | 000,002,733 | ---- | M] () -- C:\Users\Public\Desktop\Multiverse Client.lnk [2012.07.10 19:39:35 | 000,001,436 | ---- | M] () -- C:\Users\Flammerth\Desktop\Multiverse COLLADA Import Tool.lnk [2012.07.10 19:39:35 | 000,001,376 | ---- | M] () -- C:\Users\Flammerth\Desktop\Multiverse World Editor.lnk [2012.07.10 19:39:35 | 000,001,376 | ---- | M] () -- C:\Users\Flammerth\Desktop\Multiverse Model Viewer.lnk [2012.07.10 19:39:35 | 000,001,299 | ---- | M] () -- C:\Users\Flammerth\Desktop\Multiverse Asset Packager.lnk [2012.07.10 19:39:35 | 000,001,299 | ---- | M] () -- C:\Users\Flammerth\Desktop\Multiverse Asset Importer.lnk [2012.07.10 19:39:34 | 000,001,446 | ---- | M] () -- C:\Users\Flammerth\Desktop\MulitverseTerrain Generator.lnk [2012.07.09 16:31:07 | 000,001,194 | ---- | M] () -- C:\Users\Public\Desktop\Phoenix Viewer.lnk [2012.07.09 01:07:21 | 000,005,696 | ---- | M] () -- C:\Users\Flammerth\Desktop\avatar.jpg [2012.07.09 01:04:26 | 000,067,666 | ---- | M] () -- C:\Users\Flammerth\Desktop\atilus.jpg [2012.07.08 19:25:42 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk [2012.07.06 19:04:41 | 001,105,602 | ---- | M] () -- C:\Users\Flammerth\Desktop\IMG_06072012_190411.png [2012.07.06 13:36:29 | 000,101,376 | ---- | M] (Eugene V. Muzychenko) -- C:\Windows\SysNative\drivers\vrtaucbl.sys [2012.07.05 23:16:44 | 000,034,290 | ---- | M] () -- C:\Users\Flammerth\Desktop\Iphonestatistiken.jpg [2012.07.05 19:15:48 | 000,000,162 | -H-- | M] () -- C:\Users\Flammerth\Desktop\~$calhost.sql [2012.07.05 17:06:03 | 000,001,078 | ---- | M] () -- C:\Users\Flammerth\Desktop\FreeDNS Update.lnk [2012.07.04 21:04:09 | 000,169,576 | ---- | M] () -- C:\Users\Flammerth\Desktop\GEILESIECH.jpg [2012.07.04 20:37:14 | 001,672,648 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.04 20:37:13 | 000,002,135 | ---- | M] () -- C:\Users\Public\Desktop\VMware Workstation.lnk [2012.07.03 23:05:56 | 000,001,166 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk [2012.07.02 23:25:39 | 000,001,400 | ---- | M] () -- C:\Users\Flammerth\Desktop\Modulprüfung118.cpp [2012.07.02 21:51:29 | 133,481,837 | ---- | M] () -- C:\Users\Flammerth\Desktop\Allevorträge.zip [2012.07.01 18:59:58 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2012.07.01 18:59:58 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2012.07.01 14:43:12 | 000,196,506 | ---- | M] () -- C:\Users\Flammerth\Desktop\not_to_brag2_but____by_night_ferocity-d53w30h.png [1 C:\Users\Flammerth\Desktop\*.tmp files -> C:\Users\Flammerth\Desktop\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.07.30 12:53:48 | 004,720,568 | ---- | C] () -- C:\Users\Flammerth\Desktop\Logfile.rar [2012.07.30 03:51:31 | 000,044,568 | ---- | C] () -- C:\Users\Flammerth\Documents\pinfect.zip [2012.07.30 03:13:25 | 027,149,090 | ---- | C] () -- C:\Windows\REGBK00.ZIP [2012.07.30 03:00:42 | 000,000,221 | ---- | C] () -- C:\Users\Flammerth\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url [2012.07.30 02:58:19 | 000,000,220 | ---- | C] () -- C:\Users\Flammerth\Desktop\Garry's Mod.url [2012.07.30 02:57:09 | 000,000,219 | ---- | C] () -- C:\Users\Flammerth\Desktop\Left 4 Dead 2.url [2012.07.30 02:50:40 | 000,000,218 | ---- | C] () -- C:\Users\Flammerth\.recently-used.xbel [2012.07.30 02:49:49 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk [2012.07.30 02:48:10 | 000,001,035 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape.lnk [2012.07.30 02:47:57 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\Inkscape.lnk [2012.07.30 02:21:36 | 000,000,054 | ---- | C] () -- C:\Windows\Lic.xxx [2012.07.30 01:18:26 | 000,002,213 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2012.07.30 01:18:26 | 000,002,187 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk [2012.07.30 01:18:25 | 000,002,199 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012.lnk [2012.07.14 02:20:41 | 000,001,174 | ---- | C] () -- C:\Users\Flammerth\Desktop\Perfect World International.lnk [2012.07.13 19:48:27 | 000,000,862 | ---- | C] () -- C:\Windows\SysNative\termcap [2012.07.13 17:55:11 | 000,834,135 | R--- | C] () -- C:\Users\Flammerth\Desktop\MinecraftForge-3.3.8.152-Client.zip [2012.07.13 17:20:18 | 060,448,165 | ---- | C] () -- C:\Users\Flammerth\Desktop\Minecraft.zip [2012.07.12 20:23:04 | 000,001,068 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2012.07.12 15:59:47 | 000,001,038 | ---- | C] () -- C:\Users\Flammerth\Flammerth - Verknüpfung.lnk [2012.07.12 14:39:22 | 000,000,025 | ---- | C] () -- C:\Users\Flammerth\.gitconfig [2012.07.12 13:58:23 | 000,001,983 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git Extensions.lnk [2012.07.12 13:58:23 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Git Extensions.lnk [2012.07.12 13:56:25 | 000,001,011 | ---- | C] () -- C:\Users\Flammerth\Desktop\HeidiSQL.lnk [2012.07.11 23:45:02 | 000,171,464 | ---- | C] () -- C:\Users\Flammerth\Desktop\Xelliya_Wedding_Dress.jpg [2012.07.11 23:45:02 | 000,157,644 | ---- | C] () -- C:\Users\Flammerth\Desktop\Xelliya_Echo_Replica.jpg [2012.07.11 23:45:02 | 000,156,629 | ---- | C] () -- C:\Users\Flammerth\Desktop\Xelliya_Basic_Costume.jpg [2012.07.11 23:45:02 | 000,155,713 | ---- | C] () -- C:\Users\Flammerth\Desktop\Xelliya_Unknown_Costume.jpg [2012.07.11 22:33:47 | 000,001,184 | ---- | C] () -- C:\Users\Public\Desktop\Navicat Lite.lnk [2012.07.11 22:33:45 | 001,589,248 | ---- | C] () -- C:\Windows\SysWow64\libmysql_d.dll [2012.07.11 21:05:12 | 000,001,332 | ---- | C] () -- C:\Users\Flammerth\Desktop\World of Warcraft Installer.lnk [2012.07.10 19:39:35 | 000,001,436 | ---- | C] () -- C:\Users\Flammerth\Desktop\Multiverse COLLADA Import Tool.lnk [2012.07.10 19:39:35 | 000,001,376 | ---- | C] () -- C:\Users\Flammerth\Desktop\Multiverse World Editor.lnk [2012.07.10 19:39:35 | 000,001,376 | ---- | C] () -- C:\Users\Flammerth\Desktop\Multiverse Model Viewer.lnk [2012.07.10 19:39:35 | 000,001,299 | ---- | C] () -- C:\Users\Flammerth\Desktop\Multiverse Asset Packager.lnk [2012.07.10 19:39:35 | 000,001,299 | ---- | C] () -- C:\Users\Flammerth\Desktop\Multiverse Asset Importer.lnk [2012.07.10 19:39:34 | 000,001,446 | ---- | C] () -- C:\Users\Flammerth\Desktop\MulitverseTerrain Generator.lnk [2012.07.10 19:39:06 | 000,002,733 | ---- | C] () -- C:\Users\Public\Desktop\Multiverse Client.lnk [2012.07.09 16:31:07 | 000,001,194 | ---- | C] () -- C:\Users\Public\Desktop\Phoenix Viewer.lnk [2012.07.09 01:07:21 | 000,005,696 | ---- | C] () -- C:\Users\Flammerth\Desktop\avatar.jpg [2012.07.09 01:04:26 | 000,067,666 | ---- | C] () -- C:\Users\Flammerth\Desktop\atilus.jpg [2012.07.08 19:25:42 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk [2012.07.06 19:04:17 | 001,105,602 | ---- | C] () -- C:\Users\Flammerth\Desktop\IMG_06072012_190411.png [2012.07.05 23:16:44 | 000,034,290 | ---- | C] () -- C:\Users\Flammerth\Desktop\Iphonestatistiken.jpg [2012.07.05 19:15:48 | 000,000,162 | -H-- | C] () -- C:\Users\Flammerth\Desktop\~$calhost.sql [2012.07.05 17:06:03 | 000,001,078 | ---- | C] () -- C:\Users\Flammerth\Desktop\FreeDNS Update.lnk [2012.07.04 21:04:09 | 000,169,576 | ---- | C] () -- C:\Users\Flammerth\Desktop\GEILESIECH.jpg [2012.07.04 20:37:13 | 000,002,135 | ---- | C] () -- C:\Users\Public\Desktop\VMware Workstation.lnk [2012.07.03 23:05:56 | 000,001,166 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk [2012.07.03 23:05:56 | 000,001,102 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk [2012.07.02 22:20:31 | 000,001,400 | ---- | C] () -- C:\Users\Flammerth\Desktop\Modulprüfung118.cpp [2012.07.02 21:50:55 | 133,481,837 | ---- | C] () -- C:\Users\Flammerth\Desktop\Allevorträge.zip [2012.07.01 18:29:57 | 000,002,420 | ---- | C] () -- C:\Users\Flammerth\Desktop\Google Chrome.lnk [2012.07.01 18:29:44 | 000,001,136 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1383788583-3412269104-3032018097-1000UA.job [2012.07.01 18:29:44 | 000,001,084 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1383788583-3412269104-3032018097-1000Core.job [2012.07.01 14:43:11 | 000,196,506 | ---- | C] () -- C:\Users\Flammerth\Desktop\not_to_brag2_but____by_night_ferocity-d53w30h.png [2012.06.28 23:27:15 | 000,000,097 | ---- | C] () -- C:\Users\Flammerth\AppData\Local\fusioncache.dat [2012.06.27 00:21:35 | 000,007,605 | ---- | C] () -- C:\Users\Flammerth\AppData\Local\Resmon.ResmonCfg [2012.06.27 00:07:15 | 000,000,484 | RHS- | C] () -- C:\Users\Flammerth\ntuser.pol [2012.06.17 02:22:29 | 000,000,066 | ---- | C] () -- C:\Users\Flammerth\Mercurial.ini [2012.06.15 23:06:12 | 001,672,648 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.06.15 22:00:52 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2012.04.06 03:29:34 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat [2012.04.06 03:29:34 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat [2012.03.09 14:06:14 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll [2012.01.18 06:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll [2012.01.18 06:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll [2012.01.18 06:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe [2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2011.03.16 00:13:46 | 000,057,344 | R--- | C] () -- C:\Windows\SysWow64\XSIChooser.exe ========== LOP Check ========== [2012.07.13 18:50:33 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\.minecraft [2012.07.06 13:38:17 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Acoustica [2012.07.06 13:58:29 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Antares [2012.06.28 00:38:14 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Autodesk [2012.06.18 21:46:26 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\DAEMON Tools Lite [2012.07.02 22:21:25 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Dev-Cpp [2012.06.15 21:21:11 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Easeware [2012.07.09 17:15:47 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Firestorm [2012.07.12 14:17:34 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\GitExtensions [2012.06.19 14:55:39 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\globalip [2012.07.12 13:56:30 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\HeidiSQL [2012.07.30 02:49:42 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\inkscape [2012.06.30 14:38:09 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Lansoftware [2012.06.15 22:37:40 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Leadertech [2012.06.17 02:55:33 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Notepad++ [2012.06.28 17:33:54 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Origin [2012.06.19 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\poclbm [2012.06.17 23:48:03 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\redsn0w [2012.06.15 22:49:20 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\ROCCAT [2012.06.16 22:46:52 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\SecondLife [2012.06.28 15:37:57 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\six-zsync [2012.06.21 21:27:49 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Spacejock Software [2012.06.30 14:33:11 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\Subversion [2012.07.06 13:38:22 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\SynthMaker [2012.07.04 01:14:19 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\TeamViewer [2012.07.09 20:19:49 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\TS3Client [2012.06.16 01:09:32 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\TuneUp Software [2012.07.30 02:34:49 | 000,000,000 | ---D | M] -- C:\Users\Flammerth\AppData\Roaming\uTorrent [2009.07.14 07:08:49 | 000,015,750 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report > Extras.txt OTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 30.07.2012 13:04:19 - Run 1
OTL by OldTimer - Version 3.2.55.0 Folder = C:\Users\Flammerth\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
16.00 Gb Total Physical Memory | 8.68 Gb Available Physical Memory | 54.26% Memory free
31.99 Gb Paging File | 23.95 Gb Available in Paging File | 74.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465.66 Gb Total Space | 247.72 Gb Free Space | 53.20% Space Free | Partition Type: NTFS
Drive I: | 931.51 Gb Total Space | 692.17 Gb Free Space | 74.31% Space Free | Partition Type: NTFS
Drive J: | 931.51 Gb Total Space | 213.72 Gb Free Space | 22.94% Space Free | Partition Type: NTFS
Computer Name: ABYSSAL | User Name: Flammerth | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00F729A6-1AB0-4A92-8F89-6F5EB452A337}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{03337562-049B-49DE-8006-D379B136D86A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{04282381-9891-46C1-ACC7-2A00521EE82D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0632F49E-FCF3-4D4C-A3CB-AF07FE8C8A9A}" = lport=3704 | protocol=6 | dir=in | name=adobe version cue cs4 server |
"{090CDACD-20CD-4883-AD47-0656CF61F619}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1013070F-C092-4F86-9A56-189931796DDF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1493F5FB-726E-4AE5-8476-43DC5F8AA147}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{19F68703-C72F-4ADE-98DF-96646262EC67}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{1D719015-2060-484B-B59F-E633622A70D7}" = lport=138 | protocol=17 | dir=in | app=system |
"{2A064C89-5AB0-4AAE-9BA5-6FFFD21BBA58}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{2B09EE73-2D91-417E-B8E1-345D81AB95BF}" = lport=58970 | protocol=6 | dir=in | name=pando media booster |
"{323CA402-426D-4E1E-B0E7-9B2163F271F3}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{341F3100-7CD5-4BC4-AC34-5E7FF973D26A}" = rport=445 | protocol=6 | dir=out | app=system |
"{3AF015BE-91AD-4E8C-806D-24F60248A4D2}" = lport=58970 | protocol=17 | dir=in | name=pando media booster |
"{3FFEB531-A9A1-4C53-B445-6702950CB4D9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{46F829B4-593A-4A9C-B574-C06FB8E89871}" = lport=51000 | protocol=6 | dir=in | name=adobe version cue cs4 server |
"{4CCE537C-1473-4F46-8A85-4198E1301C35}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8ABEED3B-5CF7-4D54-B332-EE4B243F341C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{8D6E3146-5D00-4C5A-83C2-0726FFC26741}" = rport=139 | protocol=6 | dir=out | app=system |
"{8DFC79C0-867A-4136-9256-39F2D2AC1C02}" = lport=3703 | protocol=6 | dir=in | name=adobe version cue cs4 server |
"{8E003CFA-467D-4467-8070-9A518512B383}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8EC58D60-9B0C-4BF3-B38A-CF7372E4EDBC}" = rport=138 | protocol=17 | dir=out | app=system |
"{916E2417-4ECD-44A0-AA05-D34AB3013FDF}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{9562F04F-C174-4BC0-A631-62F167334616}" = lport=51001 | protocol=6 | dir=in | name=adobe version cue cs4 server |
"{9789DDA4-EFFB-4AAB-BB96-3988EE37C086}" = lport=139 | protocol=6 | dir=in | app=system |
"{A5A0EDD0-29C4-4DB0-B257-279D8F46B352}" = rport=137 | protocol=17 | dir=out | app=system |
"{A818F611-60B4-4F6F-A9C0-3603A78E094D}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A87E15E8-8D33-49F2-A4BB-3A029BA2C5AE}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B231A480-DEBF-48F4-9B0B-D0F067751A39}" = rport=10243 | protocol=6 | dir=out | app=system |
"{B8B973D5-EF4A-4F44-86A5-6DE99809D750}" = lport=445 | protocol=6 | dir=in | app=system |
"{C981EB77-FC25-4020-89AA-71645F2B30FB}" = lport=137 | protocol=17 | dir=in | app=system |
"{CCD82782-5F04-4076-9533-CE4B612E3134}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DEEF1276-E41B-40AB-B3D5-22BF8C629A9A}" = lport=58970 | protocol=6 | dir=in | name=pando media booster |
"{E574A604-1590-4723-9437-3DB0BAC1E993}" = lport=58970 | protocol=17 | dir=in | name=pando media booster |
"{F0701AF3-E3A5-499C-AA36-1CE4238B3C89}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FC4769B6-877C-4825-BF29-E231842188C9}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07A16817-0700-4A50-9380-0A67EF92A1E4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{0DB6D53E-706B-400C-B31C-2302090CCECA}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{130B163A-D64B-4C55-A0B2-A257B0991C8D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{13AA6DB5-7109-453B-B04C-05D094E6C895}" = dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-hostd.exe |
"{13C7321D-D8F4-4D24-800B-AB4471FE63FC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1593112D-1141-42FF-B68B-C916B7498091}" = protocol=6 | dir=in | app=c:\program files\autodesk\3ds max 2012\mentalimages\satellite\raysat_3dsmax2012_64.exe |
"{170F8DD4-561B-4B8D-963B-B93A359D6636}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\adobe version cue cs4\server\bin\versioncuecs4.exe |
"{1A3119FB-BEB0-4C76-BEF3-FF23DAC62EA0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\synergy\hl2.exe |
"{1B8ADC0F-83E5-43D6-9107-3E99F2435F93}" = protocol=6 | dir=in | app=c:\program files (x86)\autodesk\backburner\monitor.exe |
"{1F261EE3-7C8A-4239-A60C-874FF946E0BA}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{20B4257B-4E1B-4FF4-9C9E-30E0C1AF4954}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{2329589A-F697-4490-9F49-BBAB4F34C0A8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{28577848-08F4-40F3-916D-10E989118C3E}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{294CAC99-1A83-46A4-9E4A-71037958AF70}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{2E997890-7CC7-4941-9ED4-EB007A9B2B12}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{31222B82-7027-40C5-96C1-53EDA4D64EA9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{31DC02F5-0419-4804-A9DC-E17B35AD7C57}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\adobe version cue cs4\server\bin\versioncuecs4.exe |
"{3CCED9BE-74F5-4535-AB25-DD21C936C2F3}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{3F4C4E81-EBE0-4A20-B2E7-36A6D63EC88A}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{45C25020-C0CA-410E-B023-FADBC89728DE}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{478F2740-5288-4B85-B2DD-3FE7AEC306D6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{4E7FEEA5-C071-4222-942F-2BA7D5659254}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{4F5EB786-A3B3-428C-A819-F7369277F110}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\garrysmod\hl2.exe |
"{52F0F71F-0BB8-4A72-B68C-31D371AE6576}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{54F1FBD9-8F68-4919-810D-9A99611D9AE0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5C51E0A4-D143-446A-94C1-46F0B06E575A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\synergy\hl2.exe |
"{62DDD416-D396-4D90-9A89-E36477E74F6F}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{65CE55B8-99FF-4549-BEEA-995A3ADE0F26}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6F60F706-89B4-4BD9-842C-3C3C1EA24B40}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\garrysmod\hl2.exe |
"{72494F5A-43D4-499D-8183-B6750E3B1276}" = protocol=6 | dir=out | app=system |
"{74464135-00FA-4B3F-BC12-C8C74035E25F}" = protocol=6 | dir=in | app=c:\program files\autodesk\3ds max 2012\3dsmax.exe |
"{789721AF-266D-41F6-9059-20B1870FBDE8}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{7DBD0D60-53E2-404E-B633-9D48DA0F2B1C}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{82D60BB8-1286-4188-9739-3610AA72F81A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{847DC2F2-F014-4A41-94F6-6EB724DAE908}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{84EB4ECA-865D-4E97-BCC1-3EA5B461AFD1}" = protocol=17 | dir=in | app=c:\program files\autodesk\3ds max 2012\3dsmax.exe |
"{927350AC-D2F3-468B-936C-D35943272ECC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\garrysmod\hl2.exe |
"{94BC694E-8193-4FE5-8EA4-1CD55E4C34F2}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{96492BB9-2361-4C25-BA54-0D005CE693E0}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{9A19BD12-8AEB-4516-B2F9-6436828F6B63}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{9C982B13-1604-4E16-856A-FDFB6C259C75}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{9DC5F676-6F06-4703-8538-E4097C662C10}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9E3779F7-C6D8-4D53-8B30-BBB92653576E}" = protocol=17 | dir=in | app=c:\program files (x86)\autodesk\backburner\manager.exe |
"{A2F6C4CC-0FBE-4DC6-8A8C-13A0C822CAE1}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{AA03CDDC-5BE3-4F67-8C4A-980E237CEB89}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{ACD1BAF5-5A88-46EB-9782-114B0D2E8AF2}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{ADFC62B1-D63E-4DD5-B0C8-2F48139AA025}" = protocol=58 | dir=in | app=system |
"{AE850E83-C657-48C3-8F1B-93F6EF7A8F58}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AEFFB8BD-FCDD-4EF1-997B-2BCE1F6DAA7B}" = protocol=6 | dir=in | app=c:\program files\autodesk\softimage 2012\application\bin\xsi.exe |
"{B38F7487-20F4-4F3C-A465-29008A5B8836}" = protocol=17 | dir=in | app=c:\program files (x86)\autodesk\backburner\server.exe |
"{B637435B-6E71-4E4C-8269-F9332A983971}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{BB7C35B3-D057-4BDF-B6E2-8CE3449D92A9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\snakem120\garrysmod\hl2.exe |
"{BC1653C5-18CA-4953-B500-57D0CE496411}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{BD43933F-4ABF-4639-97FE-588A5C29FBCA}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C2972AF1-46FB-46A3-BD5D-14254A5C0E4B}" = protocol=17 | dir=in | app=c:\program files (x86)\autodesk\backburner\monitor.exe |
"{C733C627-7348-45B3-AE96-FE251C08965C}" = protocol=6 | dir=in | app=c:\program files\autodesk\3ds max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe |
"{CA6011F8-A2CC-46F9-AA19-781D47FC9ED5}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{CCB1B312-EBA4-4854-99DD-11F07EFF0D5C}" = dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{D04020F6-BA0A-45D9-81FD-F6B7321F727F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{D54E77EB-FC4A-43C2-A037-E498B2162BB8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{D5D2FA57-1DD1-4BD8-BC4A-CC1704BE84B6}" = dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-hostd.exe |
"{D5E17BEE-38E8-4DA4-B12E-EACE6D93A596}" = dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{D79A29A5-96C9-4D9F-A888-0ADFDC33EF39}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D8BE9077-F9DE-4D52-8C76-94A8A54A2B05}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{D94AA610-BB54-4D69-8BD1-B66398816CC1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DAF020F5-32CD-48A7-9B4C-B077912550AB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DC0C9B9D-D433-43E4-B292-8D0F8A94DABE}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E32A1AB0-DA93-4A82-9D11-4D7900B21D97}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{E45689D6-8082-4B90-B66D-6F2DF22E88D2}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{E798B3DC-D96F-4704-917E-35957ADE4BCD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E8A10F05-8873-410D-B01B-A7AA523B133D}" = protocol=6 | dir=in | app=c:\program files (x86)\autodesk\backburner\server.exe |
"{E9B55CC7-97C5-4075-A20B-CA66B818B505}" = protocol=6 | dir=in | app=c:\program files (x86)\autodesk\backburner\manager.exe |
"{EA35EB4B-A4F5-4DCE-8065-88CB373988B1}" = protocol=17 | dir=in | app=c:\program files\autodesk\3ds max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe |
"{EE5B8EE5-5F3D-40B5-BB2A-AE6031878D43}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{F12274A7-0C43-40A5-9672-5585486ECFB3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{F4F86412-622B-49BC-B5E8-19CADDB0AA19}" = protocol=17 | dir=in | app=c:\program files\autodesk\3ds max 2012\mentalimages\satellite\raysat_3dsmax2012_64.exe |
"{F5132E74-F91B-424F-AA12-4457A386C7F6}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{FC1A577A-4E5F-4446-BFFA-DDD02C292920}" = protocol=17 | dir=in | app=c:\program files\autodesk\softimage 2012\application\bin\xsi.exe |
"{FCAE64F0-6463-4A47-85AD-5E11A85AC321}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{216014BC-070B-4049-881A-48E12A451925}C:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=6 | dir=in | app=c:\program files (x86)\six projects\six updater\tools\bin\rsync.exe |
"TCP Query User{24689502-6306-41D7-B1E6-A9076E4729DB}C:\program files (x86)\steam\steamapps\common\dungeons and dragons online\dndclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeons and dragons online\dndclient.exe |
"TCP Query User{290180DD-9852-4780-B570-B4152B1C4603}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"TCP Query User{2CA04867-06D9-461F-A4B0-BDEA3B9CC39C}I:\backup\incognito\slvoice.exe" = protocol=6 | dir=in | app=i:\backup\incognito\slvoice.exe |
"TCP Query User{3829F218-AF18-477E-9A30-85AD8E0997F6}C:\udk\udk-2012-03\binaries\win64\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2012-03\binaries\win64\udk.exe |
"TCP Query User{3A10F843-803E-4060-8AF2-0EBF889343DD}C:\udk\udk-2012-03\binaries\win32\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2012-03\binaries\win32\udk.exe |
"TCP Query User{40528E7A-7AE9-480F-8728-BD299A588BE5}C:\program files (x86)\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"TCP Query User{45E05784-FE32-4151-B878-D10377A99FC2}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{4F92022D-FE49-4ABA-99C3-FEFD93D10815}C:\program files (x86)\bohemia interactive\arma 2\arma2oa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2oa.exe |
"TCP Query User{556D66FA-1A99-4D40-9275-F514B3C688E0}C:\program files (x86)\bohemia interactive\arma 2\arma2oaserver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2oaserver.exe |
"TCP Query User{6739AC2A-A619-476A-B22C-3E8B16B5B1D6}C:\program files (x86)\arma 2\arma2oa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arma 2\arma2oa.exe |
"TCP Query User{77F87E39-25E6-4254-A813-AEC1F7DCEBF0}C:\downloads\cryengine_pc_v3_4_0_3696_freesdk\bin64\launcher.exe" = protocol=6 | dir=in | app=c:\downloads\cryengine_pc_v3_4_0_3696_freesdk\bin64\launcher.exe |
"TCP Query User{7CC62413-4370-4D00-BD99-819D8698B8D8}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=6 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"TCP Query User{8CE59FA2-2DA2-4056-B91C-BB7E8AF5D44D}C:\program files (x86)\arma 2\arma2oa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arma 2\arma2oa.exe |
"TCP Query User{8D34FF1F-2ED7-4C3C-9A7B-66BC5F592F1F}C:\program files (x86)\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"TCP Query User{9A48D8C7-3068-4CC8-AD6F-DB21D9709578}C:\program files (x86)\arma 2\expansion\beta\arma2oa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arma 2\expansion\beta\arma2oa.exe |
"TCP Query User{E935F96C-4F21-4F95-97D6-97316ABD3907}C:\program files (x86)\bohemia interactive\arma 2\arma2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2.exe |
"TCP Query User{F2260025-D61B-4A5B-BB03-76B15BB54B3A}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=6 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"TCP Query User{FC8F6410-6160-445E-AA96-0A90E6A1B27A}C:\program files (x86)\arma 2\arma2oaserver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arma 2\arma2oaserver.exe |
"UDP Query User{2F044040-2E74-4956-B3B9-6102B2CE3847}C:\program files (x86)\arma 2\arma2oa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arma 2\arma2oa.exe |
"UDP Query User{320EB177-DE2D-4586-862F-ECCDE29419D2}C:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=17 | dir=in | app=c:\program files (x86)\six projects\six updater\tools\bin\rsync.exe |
"UDP Query User{3DFB9292-D9D4-43B2-BCCD-A83B286FA77A}C:\program files (x86)\arma 2\expansion\beta\arma2oa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arma 2\expansion\beta\arma2oa.exe |
"UDP Query User{4BB7E4A6-A460-4561-A673-088A2628A9EB}C:\program files (x86)\arma 2\arma2oaserver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arma 2\arma2oaserver.exe |
"UDP Query User{561C7117-EDB8-44B1-9268-D02BDAC1C670}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{5862C118-3300-436A-92B6-E075A6AAE058}C:\program files (x86)\steam\steamapps\common\dungeons and dragons online\dndclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeons and dragons online\dndclient.exe |
"UDP Query User{638CB006-90C9-4DE1-B187-65762B0A3765}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"UDP Query User{67D90F61-04E1-4680-92CA-0B0585527117}C:\program files (x86)\arma 2\arma2oa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arma 2\arma2oa.exe |
"UDP Query User{7B8F78C2-88E1-486A-B66F-3E3D3DC2D255}C:\program files (x86)\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"UDP Query User{81C163CF-09C6-46FB-BFFF-9D7A1EC20845}C:\program files (x86)\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"UDP Query User{99ADAAC9-8654-4786-9B15-CD6BDBEEB098}C:\udk\udk-2012-03\binaries\win64\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2012-03\binaries\win64\udk.exe |
"UDP Query User{B0A9FB71-2C1B-4014-B172-31473DE4D983}C:\udk\udk-2012-03\binaries\win32\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2012-03\binaries\win32\udk.exe |
"UDP Query User{B951F79F-138A-4D9B-94C2-2F65562499C8}C:\program files (x86)\bohemia interactive\arma 2\arma2oa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2oa.exe |
"UDP Query User{BF1F88E6-4859-4991-AF04-9410F0C17812}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=17 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"UDP Query User{D52CA401-3A77-43D4-8AE8-7B1F4101FE17}C:\program files (x86)\bohemia interactive\arma 2\arma2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2.exe |
"UDP Query User{F1D97FB0-E2D0-46A5-A2BD-D44BAC350224}I:\backup\incognito\slvoice.exe" = protocol=17 | dir=in | app=i:\backup\incognito\slvoice.exe |
"UDP Query User{F3B3127F-3CCE-4F0A-9BF5-621737B271A6}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=17 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"UDP Query User{F79F7B0B-CF87-4362-9E8A-B2F2FEE67F1D}C:\program files (x86)\bohemia interactive\arma 2\arma2oaserver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bohemia interactive\arma 2\arma2oaserver.exe |
"UDP Query User{FB7F1828-A400-487E-A1C8-83FC7439529A}C:\downloads\cryengine_pc_v3_4_0_3696_freesdk\bin64\launcher.exe" = protocol=17 | dir=in | app=c:\downloads\cryengine_pc_v3_4_0_3696_freesdk\bin64\launcher.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1111706F-666A-4037-7777-211648764D10}" = JavaFX 2.1.1 (64-bit)
"{119B2F5A-2A06-DB96-FF28-992EC2A10BDF}" = AMD Accelerated Video Transcoding
"{183C740A-0406-380F-A235-2EC2F8A28D13}" = Microsoft Windows SDK MSHelp (30514)
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219
"{2222706F-666A-4037-7777-211648764D10}" = JavaFX 2.1.1 SDK (64-bit)
"{25613C10-27D2-410B-942B-D922D5C3A7BE}" = Interlok driver setup x64
"{26A24AE4-039D-4CA4-87B4-2F86417005FF}" = Java(TM) 7 Update 5 (64-bit)
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{2E8D6204-D656-8355-1ED3-2988AC52EB0F}" = ccc-utility64
"{3156336D-8E44-3671-A6FE-AE51D3D6564E}" = Microsoft Windows SDK for Windows 7 (7.1)
"{3ABFAF33-D6EE-9348-CE96-AF51E9D6D2FF}" = AMD Drag and Drop Transcoding
"{4371D69B-FB6A-4A61-8477-C1B919FB2311}" = TortoiseSVN 1.7.7.22907 (64 bit)
"{4529F749-C362-4119-AFA0-0A3F1CA924AB}" = Autodesk MatchMover 2012 64-bit
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4CE23671-5B64-40A4-9C1E-C9217D845F32}" = Autodesk MotionBuilder 2012 64-bit
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}" = AMD Catalyst Install Manager
"{58443355-8640-49E5-BDC7-479E7039F780}" = Turtle for Maya Premium 2012 64-bit
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}" = AMD Media Foundation Decoders
"{64A3A4F4-B792-11D6-A78A-00B0D0170050}" = Java SE Development Kit 7 Update 5 (64-bit)
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{68570626-1BF6-310B-AF69-6CD686C04AEA}" = Microsoft Windows SDK Net Fx Interop Headers And Libraries (30514)
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support
"{6C8D7973-31F9-32E1-A820-8DD857910323}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{723C8298-C7B0-0409-A1B6-C3BA6F3FFAB1}" = Autodesk 3ds Max 2012 64-bit - English
"{7E8B0B79-FE18-446D-A0C7-F4CD3F4964BB}" = Autodesk Softimage 2012 64-bit
"{81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}" = Microsoft Visual C++ Compilers 2010 Standard - enu - x64
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes
"{84452C2C-BDCC-36F3-A189-CE15F02A47FB}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (30514)
"{84E30D73-E30F-3A02-BAA0-5353C04DD18A}" = Microsoft Windows SDK Intellisense and Reference Assemblies (30514)
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{89026002-A893-42D9-9E20-6829B844735E}" = Application Verifier (x64)
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{8E16BB50-E49A-3647-BD4D-4D150DCCBFAE}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951E6223-AC28-345E-BCF4-B55C1267E321}" = Microsoft Windows SDK for Windows 7 Samples (30514)
"{98DE7960-458C-4104-90E9-910389C81AC9}" = VmciSockets
"{9E6BB4E4-0B20-4922-AA37-260FA5ACFBA5}" = Autodesk Maya 2012 64-bit
"{A0B0F02C-410B-3DE3-9740-EC4C3D902532}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514)
"{A2C55034-8DAF-3755-BA85-CC321707FE99}" = Microsoft Windows SDK for Visual Studio .NET 4.0 Framework Tools
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{AC3E3746-8F18-4F8A-9521-1493022C6E0A}" = Autodesk DirectConnect 2012 64-bit
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B37A99DD-88E2-4ED0-80B4-1E054AB354BF}" = Adobe InDesign CS4 Icon Handler x64
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{C214301F-F5D7-36D9-B3A2-1467C5586495}" = Microsoft Help Viewer 1.1 Language Pack - DEU
"{C3600AE6-93A0-3DB7-B7AA-45BD58F133B5}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{C3EAE456-7E7A-451F-80EF-F34C7A13C558}" = Microsoft SQL Server Compact 3.5 SP2 x64 DEU
"{CB0FD760-C6C6-3AF6-AD18-FE3B3B78727D}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{CC7C5BA5-0010-1033-B966-42899C00BD23}" = Autodesk Mudbox 2012 64-bit - English
"{CC7C5BA5-09B5-428E-B966-42899C00BD23}" = Autodesk Mudbox 2012 64-bit - English
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}" = Debugging Tools for Windows (x64)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{E5748D30-7E6D-3A8E-BFE6-C1D02C6DDABB}" = Microsoft Help Viewer 1.1
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{EA234BC3-39FE-4734-B72F-076086889F6D}" = Composite 2012 64-bit
"{EE15262C-2F54-40BB-8C78-EBD72CF402D0}" = TortoiseHg 2.4.1 (x64)
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F1C4B89A-8BF0-3D7C-8095-BAE412FBEA3F}" = Microsoft Windows SDK .NET Framework Tools (30514)
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FC4AD39F-9DCE-4BD0-B7D0-7C81CEB9F04B}" = NVIDIA PhysX Plug-in for Autodesk Maya 2012 64 bit
"Autodesk 3ds Max 2012 64-bit - English" = Autodesk 3ds Max 2012 64-bit - English
"Autodesk DirectConnect 2012 64-bit" = Autodesk DirectConnect 2012 64-bit
"Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit" = Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit
"Autodesk Maya 2012 64-bit" = Autodesk Maya 2012 64-bit
"Autodesk Mudbox 2012 64-bit - English" = Autodesk Mudbox 2012 64-bit - English
"DriverEasy_is1" = DriverEasy 3.11.3
"Logitech Gaming Software" = Logitech Gaming Software 8.30
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Help Viewer 1.1" = Microsoft Help Viewer 1.1
"Microsoft Help Viewer 1.1 Language Pack - DEU" = Microsoft Help Viewer 1.1 Language Pack - DEU
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU" = Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"UDK-035fa873-291c-4fb2-9978-11851656a20d" = Unreal Development Kit: 2012-03
"Virtual Audio Cable 4.12" = Virtual Audio Cable 4.12
"WinRAR archiver" = WinRAR 4.11 (64-Bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}" = tools-freebsd
"{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU
"{03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}" = Catalyst Control Center - Branding
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}" = VMware Workstation
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{14F70205-1940-4000-88C7-BE799A6B2CAD}" = Adobe Soundbooth CS4
"{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}" = Adobe SGM CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{197597A7-AD33-4898-9D8E-73066818B464}" = tools-netware
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{19D614EB-D62A-AEE7-2391-E74126601D59}" = CCC Help Italian
"{1A7D6310-9D98-4813-BF51-A574B0422DED}" = Git Extensions 2.33
"{1B7C06E1-4888-47A6-992A-0990B9683486}" = Adobe Version Cue CS4 Server
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1C373820-B9C8-0F7F-8F84-FC1B76A85F27}" = CCC Help Portuguese
"{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}" = Adobe InDesign CS4
"{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}" = Adobe InDesign CS4 Icon Handler
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20B6BE33-525B-4EF9-9628-E1BA58093A4C}" = ZBrush 4R2
"{2168245A-B5AD-40D8-A641-48E3E070B5B6}" = Adobe Flash CS4 STI-en
"{24B4F701-1021-45D3-87F8-3F8FB9B4AEA8}" = Multiverse Client
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{26DB09BC-6EB5-4CE0-A05D-D4DECE60E189}_is1" = Phoenix Viewer 1.6.0.1691
"{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}" = Adobe CS4 American English Speech Analysis Models
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2A42414B-1E07-454B-97C4-4789D8DBD338}" = Multiverse Tools
"{2BAF2B96-7560-48B4-87D4-10178DDBE217}" = Adobe InDesign CS4 Application Feature Set Files (Roman)
"{2D35BC33-7D08-D529-DF91-8A15FBF2600E}" = CCC Help Polish
"{2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}" = Microsoft Visual C++ Compilers 2010 Standard - enu - x86
"{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4
"{32364CEA-7855-4A3C-B674-53D8E9B97936}" = TuneUp Utilities 2012
"{337788D1-43D1-9A0F-9787-DD00DB512D41}" = Catalyst Control Center Localization All
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Autodesk Backburner 2012.0.0
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}" = Adobe Fireworks CS4
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU
"{4725833D-4325-5C34-57D4-1FE23E5AE578}" = CCC Help Chinese Standard
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A52555C-032A-4083-BDD9-6A85ABFB39A8}" = Adobe SING CS4
"{4B271648-43CB-DD31-FF24-E7B06D3EE72A}" = Catalyst Control Center InstallProxy
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4DC37F33-7AEC-A4CB-56B1-69A402828763}" = CCC Help Japanese
"{4F0C7CCF-5666-474B-B02E-AC514A95EC93}" = NVIDIA GAME System Software 2.8.1
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{5710DAC2-8F2A-503C-CFC2-A973ADE0EA4C}" = CCC Help Czech
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5AB7D739-1735-3A9E-BE73-C43507CB4E6F}" = Microsoft Visual Studio 2010 Service Pack 1
"{5C763682-4C40-86DA-9C46-31924D7D2C34}" = CCC Help Thai
"{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
"{5EAD5443-7194-46CC-A055-428E6ABB1BAF}" = Adobe Encore CS4
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{60E5022D-FA4B-C6A2-1E80-B46EC39096F3}" = CCC Help Chinese Traditional
"{60F34FDF-267C-408F-290E-EC90D841C8CB}" = CCC Help German
"{616C6F39-4CE1-3434-A665-2F6A04C09A7F}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{65420DC9-306E-4371-905F-F4DC3B418E52}" = Autodesk Material Library Base Resolution Image Library 2012
"{66B79AE1-C6E2-B958-689C-D0812DE86BAB}" = CCC Help Greek
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6B39BE0F-0F5E-A8FA-33E4-8481AE39D96C}" = CCC Help Russian
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7406DF60-016D-476B-A2C7-55D997592047}" = Adobe OnLocation CS4
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{793D1D88-6141-43DE-BE58-59BCE31B4090}" = Adobe Flash CS4 Extension - Flash Lite STI en
"{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}" = Adobe InDesign CS4 Common Base Files
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E19F2AF-7145-51DE-E395-7729A9374973}" = Catalyst Control Center Graphics Previews Common
"{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}" = Autodesk Material Library 2012
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91CB5B8B-4EC8-DBA1-A88D-99FD480567B0}" = CCC Help English
"{924FBAC4-60D2-7981-3C3E-979DF9CBB346}" = CCC Help Finnish
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9733747E-E53D-4C17-977E-3A872AFB93E1}" = ROCCAT Kone Mouse Driver
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DC939DC-B7A4-D0E2-C582-A442DF1B3EBE}" = CCC Help Spanish
"{A1BD938B-F006-6E6D-70B2-47E1DD56F7DE}" = CCC Help Swedish
"{A6EC82A0-1414-475D-8AFD-469089F3080D}" = Adobe Contribute CS4
"{A95A76C9-6F65-477E-83A0-9F884B6DC21B}" = TuneUp Utilities Language Pack (en-US)
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}" = tools-solaris
"{AC76BA86-1033-F400-7760-000000000004}" = Adobe Acrobat 9 Pro - English, Français, Deutsch
"{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}" = tools-winPre2k
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}" = Adobe Premiere Pro CS4 Functional Content
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5751715-EC10-43D9-8C95-62E1368433EF}" = Autodesk Material Library Medium Resolution Image Library 2012
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B9F4561A-924D-4510-A85A-BB0960C338CB}" = Adobe Asset Services CS4
"{BABF7852-C2DD-6A8A-9956-101720C715C7}" = CCC Help Turkish
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BB7C2A56-9706-43B8-5A8C-210AF5816106}" = CCC Help French
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{C0C31BCC-56FB-42a7-8766-D29E1BD74C7C}" = Python 2.7.3
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C668416A-9213-4058-B7F2-01A42D85559D}" = Microsoft SQL Server System CLR Types
"{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}" = Acrobat.com
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFC2CB60-5654-05A7-4D30-C661800A3A92}" = CCC Help Korean
"{CFCB8616-A5D1-4281-80E8-389F685BFAE2}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D04CE005-D1D2-80F3-84C8-B3524FCD39C3}" = CCC Help Norwegian
"{D08EEB75-E3D5-4E93-9E1D-441A261E6B9A}" = Antares Auto-Tune 7 VST
"{D0D7FF19-F218-4783-B79F-01CD1EF19900}" = VPNAutoconnect
"{D102611A-6466-4101-A51D-51069303AC65}" = tools-linux
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4
"{D544AE4C-4152-225B-A897-6756C8986B14}" = Catalyst Control Center
"{D81641E8-ABF1-3D07-803B-60E8FC619368}" = Microsoft Visual C# 2010 Express - DEU
"{D81E9069-3CCC-4405-3751-71E4AFEACC52}" = CCC Help Hungarian
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4197D6B-F046-33E7-ABDE-51FF373FDC76}" = Windows SDK IntellisenseNFX
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{E9089B6A-1FDE-47F3-8D29-175F5B7A0722}" = Microsoft SQL Server 2008 R2 Management Objects
"{E93FF166-DF14-2537-8FB4-96BB5810A96C}" = CCC Help Danish
"{ED780CA9-0687-3C12-B439-3369F224941F}" = Microsoft Visual Studio 2010 Service Pack 1
"{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA9827E1-8A8E-C176-4923-0840A67ED4DE}" = CCC Help Dutch
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FFD9383C-01D5-4897-A954-43AF599AED30}" = tools-windows
"Acoustica Mixcraft 6" = Acoustica Mixcraft 6
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Avira AntiVir Desktop" = Avira Free Antivirus
"CMake 2.8.8" = CMake 2.8, a cross-platform, open-source build system
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"DAEMON Tools Lite" = DAEMON Tools Lite
"Desura" = Desura
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Firestorm-Release" = Firestorm-Release (remove only)
"FreeDNS Update" = FreeDNS Update 1.8.4
"HeidiSQL_is1" = HeidiSQL 7.0.0.4053
"iFunbox_is1" = iFunbox (v1.98.948.666), iFunbox DevTeam
"Inkscape" = Inkscape 0.48.2
"InstallShield_{20B6BE33-525B-4EF9-9628-E1BA58093A4C}" = ZBrush 4R2
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"Microsoft DirectX SDK (February 2010)" = Microsoft DirectX SDK (February 2010)
"Microsoft Visual C# 2010 Express - DEU" = Microsoft Visual C# 2010 Express - DEU
"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU
"Microsoft Visual Studio 2010 Service Pack 1" = Microsoft Visual Studio 2010 Service Pack 1
"mIRC" = mIRC
"Mozilla Firefox 14.0.1 (x86 de)" = Mozilla Firefox 14.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"NSIS ANSI" = Nullsoft Install System (ANSI)
"NSIS Unicode" = Nullsoft Install System (Unicode)
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"PremiumSoft Navicat Lite_is1" = PremiumSoft Navicat Lite 10.0
"Steam App 4000" = Garry's Mod
"Steam App 42690" = Call of Duty: Modern Warfare 3 - Multiplayer
"Steam App 550" = Left 4 Dead 2
"TeamViewer 7" = TeamViewer 7
"TuneUp Utilities 2012" = TuneUp Utilities 2012
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.1
"VMware_Workstation" = VMware Workstation
"WinLiveSuite" = Windows Live Essentials
"World of Warcraft" = World of Warcraft
"yWriter5_is1" = yWriter5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Garrys Mod Update #1" = Garrys Mod Update #1
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 29.07.2012 19:09:52 | Computer Name = Abyssal | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Die Anwendung oder der Dienst "Windows-Explorer" konnte nicht heruntergefahren
werden.
Error - 29.07.2012 19:12:15 | Computer Name = Abyssal | Source = Apache Service | ID = 3299
Description = The Apache service named reported the following error: >>> httpd.exe:
Could not open configuration file C:/xampp/apache/conf/httpd.conf: Das System kann
den angegebenen Pfad nicht finden. .
Error - 29.07.2012 19:19:54 | Computer Name = Abyssal | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Name des fehlerhaften Moduls: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003ce0c ID des fehlerhaften
Prozesses: 0x1480 Startzeit der fehlerhaften Anwendung: 0x01cd6de08e1bc025 Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Berichtskennung:
e6d3d0be-d9d3-11e1-a860-bcaec575ba3d
Error - 29.07.2012 19:20:19 | Computer Name = Abyssal | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Name des fehlerhaften Moduls: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003ce0c ID des fehlerhaften
Prozesses: 0x19c4 Startzeit der fehlerhaften Anwendung: 0x01cd6de0b271bc39 Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Berichtskennung:
f5bbf39f-d9d3-11e1-a860-bcaec575ba3d
Error - 29.07.2012 19:21:56 | Computer Name = Abyssal | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: FlashPlayerPlugin_11_3_300_268.exe,
Version: 11.3.300.268, Zeitstempel: 0x500adb58 Name des fehlerhaften Moduls: FlashPlayerPlugin_11_3_300_268.exe,
Version: 11.3.300.268, Zeitstempel: 0x500adb58 Ausnahmecode: 0xc0000005 Fehleroffset:
0x00029457 ID des fehlerhaften Prozesses: 0x14b8 Startzeit der fehlerhaften Anwendung:
0x01cd6de0393012c3 Pfad der fehlerhaften Anwendung: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_268.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_268.exe
Berichtskennung:
2f9434ef-d9d4-11e1-a860-bcaec575ba3d
Error - 29.07.2012 20:08:17 | Computer Name = Abyssal | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Name des fehlerhaften Moduls: Integrator.exe, Version: 12.0.2030.10,
Zeitstempel: 0x4ea01c11 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003ce0c ID des fehlerhaften
Prozesses: 0x1bf4 Startzeit der fehlerhaften Anwendung: 0x01cd6de0bb841a6a Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe
Berichtskennung:
a96046c8-d9da-11e1-a860-bcaec575ba3d
Error - 29.07.2012 21:48:05 | Computer Name = Abyssal | Source = Application Hang | ID = 1002
Description = Programm mexe.com, Version 11.0.86.0 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 398 Startzeit:
01cd6de93276d676 Endzeit: 6 Anwendungspfad: C:\Users\FLAMME~1\AppData\Local\Temp\mexe.com
Berichts-ID:
Error - 30.07.2012 05:37:46 | Computer Name = Abyssal | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Autodesk\Composite
2012\python\lib\distutils\command\wininst-8_d.exe". Die abhängige Assemblierung
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 30.07.2012 06:28:09 | Computer Name = Abyssal | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Autodesk\Composite
2012\python\lib\distutils\command\wininst-8_d.exe". Die abhängige Assemblierung
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 30.07.2012 06:29:30 | Computer Name = Abyssal | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Autodesk\Softimage
2012\Application\python\Lib\distutils\command\wininst-8_d.exe". Die abhängige Assemblierung
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
[ System Events ]
Error - 29.07.2012 21:28:04 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 29.07.2012 21:28:04 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 29.07.2012 22:07:59 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 29.07.2012 22:17:31 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 29.07.2012 22:36:51 | Computer Name = Abyssal | Source = volsnap | ID = 393241
Description = Die Schattenkopien von Volume "C:" wurden gelöscht, weil der Schattenkopiespeicher
nicht rechtzeitig vergrößert wurde. Sie sollten die E/A-Last auf dem System verringern
oder ein Schattenkopie-Speichervolume, von dem keine Schattenkopie erstellt wird,
auswählen.
Error - 30.07.2012 06:42:17 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 30.07.2012 06:42:17 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 30.07.2012 06:42:17 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 30.07.2012 06:42:17 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
Error - 30.07.2012 06:42:19 | Computer Name = Abyssal | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Fehler beim Lesen der Datei für lokale Hosts.
< End of report >
Geändert von Enigma120 (30.07.2012 um 12:10 Uhr) |
|
30.07.2012, 15:28
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | w3i.IQ5.fraud erkennt und es spielt mit meiner Netzwerkkarte und friert Fenster ein.Code:
ATTFilter O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
  Siehe auch => http://www.trojaner-board.de/95393-c...-software.html Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support ohne jegliche Diskussion beenden. Cracks/Keygens sind zu 99,9% gefährliche Schädlinge, mit denen man nicht spaßen sollte. Ausserdem sind diese illegal und wir unterstützen die Verwendung von geklauter Software nicht. Somit beschränkt sich der Support auf Anleitung zur kompletten Neuinstallation!! Dass illegale Cracks und Keygens im Wesentlichen dazu dienen, Malware zu verbreiten ist kein Geheimnis und muss jedem klar sein! In Zukunft Finger weg von: Softonic, Registry-Bereinigern und illegalem Zeugs Cracks/Keygens/Serials
__________________ |
|
| Themen zu w3i.IQ5.fraud erkennt und es spielt mit meiner Netzwerkkarte und friert Fenster ein. |
| adobe after effects, ahnung, battle.net, cs4/contributeieplugin.dll, document, erkenn, erkennt, escan, fenster, forum, free download, friert, hoffe, install.exe, keine ahnung, langs, launch, logdatei, monitor.exe, netzwerkkarte, neu, pando media booster, plug-in, safer networking, schöne, schönen, spiel, third party, usb 3.0, visual studio, w3i.iq5.fraud, win64, windows-explorer, wünsche |
Linear-Darstellung
