| |  Windows aus Sicherheitsgründen gesperrt- Zahlungaufforderung 50€
 Hallo,
eben ist es passiert. Der Bildschirm wird dunkel und es erscheint ein Fenster welches darauf verweist das mein Bertiebssystem aus sicherheitsgründen gespert ist und ich 50 euro zum entsperren zahlen soll.
Da ich mich schon ein wenig auf diesem Forum informiert habe, habe ich beireits einen OTL scan gemach,die Daten sind hier:
OTL.Txt Zitat:
OTL logfile created on: 11.04.2012 20:11:55 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\Sven Bruns\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,99 Gb Total Physical Memory | 2,35 Gb Available Physical Memory | 78,62% Memory free
6,19 Gb Paging File | 5,77 Gb Available in Paging File | 93,24% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 286,09 Gb Total Space | 181,72 Gb Free Space | 63,52% Space Free | Partition Type: NTFS
Computer Name: SVENBRUNS-PC | User Name: Sven Bruns | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.04.11 20:10:48 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\Sven Bruns\Downloads\OTL.exe
PRC - [2012.03.27 10:52:58 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.01.21 04:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnscfg.exe
========== Modules (No Company Name) ==========
MOD - [2012.03.30 11:05:16 | 008,797,344 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_2_202_228.dll
MOD - [2012.03.27 10:52:58 | 001,969,080 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll
========== Win32 Services (SafeList) ==========
SRV - [2012.03.30 11:53:13 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.03.16 19:28:34 | 000,782,744 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Programme\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2012.03.02 17:04:44 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.10.15 10:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.10.11 14:59:49 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.10.11 14:59:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Disabled | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.02.24 16:51:23 | 000,040,960 | ---- | M] () [Auto | Stopped] -- C:\Users\Sven Bruns\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe -- (SearchAnonymizer)
SRV - [2010.01.04 21:55:00 | 003,404,560 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2009.12.17 18:04:18 | 000,185,640 | ---- | M] (TeamViewer GmbH) [Auto | Stopped] -- C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2009.04.03 19:54:40 | 000,723,488 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2009.02.11 17:38:40 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2009.02.05 08:14:56 | 000,237,568 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Programme\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2008.01.21 04:25:33 | 000,896,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008.01.16 09:51:44 | 000,030,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc)
SRV - [2007.08.24 03:19:12 | 000,443,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006.10.26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.04.14 10:07:20 | 028,933,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$MSSMLBIZ) SQL Server (MSSMLBIZ)
SRV - [2006.04.14 10:05:58 | 000,240,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2006.04.14 10:04:54 | 000,087,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2005.10.14 03:50:20 | 000,045,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva375.sys -- (XDva375)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleNT.sys -- (EagleNT)
DRV - [2012.02.15 19:06:18 | 000,137,416 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.12.23 01:50:54 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2011.12.08 06:22:36 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2011.12.08 06:22:36 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2011.12.08 06:22:36 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2011.12.08 06:22:26 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011.12.08 06:22:26 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2011.12.08 06:22:26 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
DRV - [2011.12.08 06:22:26 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2011.10.15 10:53:00 | 010,327,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011.10.11 15:00:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2010.06.17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.08.18 13:06:44 | 000,114,688 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2009.08.18 13:06:44 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zteusbvoice.sys -- (ZTEusbvoice)
DRV - [2009.08.18 13:06:44 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009.08.18 13:06:44 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009.08.18 13:06:44 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2009.08.18 13:06:44 | 000,009,216 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)
DRV - [2009.04.07 22:04:00 | 000,050,176 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C60x86.sys -- (L1C)
DRV - [2009.03.23 06:40:00 | 004,232,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)
DRV - [2009.03.18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.03.17 04:28:50 | 000,452,096 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2008.12.29 14:57:56 | 000,952,832 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2003.10.01 16:29:50 | 000,069,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\OEM\factory\int15.sys -- (int15.sys)
DRV - [2001.05.07 12:56:02 | 000,019,805 | ---- | M] (Thesycon GmbH, Germany) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbio.sys -- (USBIO) USBIO Driver (usbio.sys)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0909&m=extensa_5635zg
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://home.sweetim.com
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431245
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0909&m=extensa_5635zg
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\URLSearchHook: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Programme\IObit Toolbar\IE\5.2\iobitToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {2B5DF01E-94F3-4B82-9700-139A992F3241}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E6C6976652E636F6D2F726573756C74732E617370783F713D7B7365617263685465726D737D267372633D7B72656665727265723A736F7572 63653F7D&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&k=0
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = hxxp://websearch.ask.com.anonymize-me.de/?anonymto=687474703A2F2F7765627365617263682E61736B2E636F6D2F72656469726563743F636C69656E743D69652674623D4456535635266F3D3135303132267372633D63726D2671 3D7B7365617263685465726D737D266C6F63616C653D64655F4445&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&k=0
IE - HKCU\..\SearchScopes\{2B5DF01E-94F3-4B82-9700-139A992F3241}: "URL" = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
IE - HKCU\..\SearchScopes\{51E04947-AB45-42CE-858E-F6FD1C8D479B}: "URL" = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{5563AAF7-7046-4495-8335-DC629DF6396A}: "URL" = hxxp://www.winload.de.anonymize-me.de/?anonymto=687474703A2F2F7777772E77696E6C6F61642E64652F6F70656E7365617263682F676F6F676C652F6965382F7365617263682F3F7365617263685465726D733D7B7365617263 685465726D737D267374617274506167653D7B7374617274506167653F7D&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&k=0
IE - HKCU\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE360DE360
IE - HKCU\..\SearchScopes\{68DD83F7-F025-42FC-878B-74D33BF624D6}: "URL" = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rlz=1I7ACAW_deDE360DE360&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{7618F766-ED79-48CE-9260-513B449259D0}: "URL" = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{7950C6C4-5213-4420-B7F5-0F5A5F342F6B}: "URL" = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{8FE40754-0A3B-4F03-B024-444150929C91}: "URL" = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{9626998A-4368-4575-B283-513944583C6C}: "URL" = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&mode=bounce&k=0
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E636F6E647569742E636F6D2F526573756C74734578742E617370783F713D7B7365617263685465726D737D26536561726368536F75726365 3D3426637469643D435432343331323435&st={searchTerms}&clid=3310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&k=0
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E7377656574696D2E636F6D2F7365617263682E6173703F7372633D3626713D7B7365617263685465726D737D&st={searchTerms}&clid=3 310501a-10a9-4597-a6ec-8f57739bc454&pid=icqt&k=0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421;
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=382950&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..keyword.URL: "hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=382950&p="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.27 10:52:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.01.14 14:59:25 | 000,000,000 | ---D | M]
[2011.07.04 14:27:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sven Bruns\AppData\Roaming\mozilla\Extensions
[2012.04.09 14:49:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sven Bruns\AppData\Roaming\mozilla\Firefox\Profiles\0nx00ne6.default\extensions
[2012.03.01 23:32:53 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Sven Bruns\AppData\Roaming\mozilla\Firefox\Profiles\0nx00ne6.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012.02.02 21:26:41 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.04.09 14:49:29 | 000,000,000 | ---D | M] (IObit Toolbar) -- C:\PROGRAM FILES\IOBIT TOOLBAR\FF
[2010.01.01 14:53:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012.03.27 10:52:59 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.29 21:59:59 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.04.08 04:06:28 | 000,122,880 | ---- | M] (AB) -- C:\Program Files\mozilla firefox\plugins\NPOP7PlugIn.dll
[2012.03.27 10:52:55 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.03.27 10:52:55 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012.03.27 10:52:55 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012.03.27 10:52:55 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.03.27 10:52:55 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.03.27 10:52:55 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (IObit Toolbar) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Programme\IObit Toolbar\IE\5.2\iobitToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (IObit Toolbar) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Programme\IObit Toolbar\IE\5.2\iobitToolbarIE.dll (Spigot, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [cAudioFilterAgent] C:\Programme\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe (Conexant Systems, Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Programme\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Ocs_SM] C:\Users\Sven Bruns\AppData\Roaming\OCS\SM\SearchAnonymizer.exe (OCS)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Akamai NetSession Interface] "C:\Users\Sven Bruns\AppData\Local\Akamai\netsession_win.exe" File not found
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKCU..\Run: [KiesPDLR] C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKCU..\Run: [MediaGet2] C:\Users\Sven Bruns\AppData\Local\MediaGet2\mediaget.exe --minimized File not found
O4 - HKCU..\Run: [ProductReg] C:\Program Files\Acer\WR_PopUp\ProductReg.exe (Acer)
O4 - HKCU..\Run: [SkypePM] C:\Users\Sven Bruns\AppData\Local\Skype\SkypePM.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Sven Bruns\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Programme\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Programme\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {C212D449-8B3C-41F2-BD9A-047BD770550F} hxxp://operation7.fiaa.eu/OPLauncher.cab (Perparer Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0EB44992-72B9-4A4E-981C-7DC7054017FF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30ED7889-A2CF-4353-B564-5C4D19614B5D}: DhcpNameServer = 139.7.30.125 139.7.30.126
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{70E26DC6-E663-4194-9968-55AE29797971}: DhcpNameServer = 192.168.42.129
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - c:\Programme\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img36.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img36.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{7983a31e-85cb-11e0-acf2-00238bf6fcb1}\Shell - "" = AutoRun
O33 - MountPoints2\{7983a31e-85cb-11e0-acf2-00238bf6fcb1}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{9499fa37-936d-11e0-bf36-00238bf6fcb1}\Shell - "" = AutoRun
O33 - MountPoints2\{9499fa37-936d-11e0-bf36-00238bf6fcb1}\Shell\AutoRun\command - "" = E:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a9dc8afd-0dc7-11df-a6e7-00238bf6fcb1}\Shell\AutoRun\command - "" = E:\umenu.exe
O33 - MountPoints2\{e1ad2ebd-62b2-11df-920d-00238bf6fcb1}\Shell - "" = AutoRun
O33 - MountPoints2\{e1ad2ebd-62b2-11df-920d-00238bf6fcb1}\Shell\AutoRun\command - "" = E:\USBAutoRun.exe
O33 - MountPoints2\{ee8dc096-97fe-11de-94b5-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ee8dc096-97fe-11de-94b5-806e6f6e6963}\Shell\AutoRun\command - "" = D:\arun.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setup_vmc_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012.04.09 13:55:19 | 000,000,000 | ---D | C] -- C:\Program Files\Application Updater
[2012.04.09 13:55:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot
[2012.04.09 13:55:18 | 000,000,000 | ---D | C] -- C:\Program Files\IObit Toolbar
[2012.04.09 13:55:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012.03.30 11:05:17 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2010.11.03 12:33:35 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Sven Bruns\AppData\Roaming\MinecraftSP.exe
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.04.11 19:50:02 | 000,755,576 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012.04.11 19:50:02 | 000,701,812 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.04.11 19:50:02 | 000,179,826 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012.04.11 19:50:02 | 000,145,640 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.04.11 19:45:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.04.11 19:43:44 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.04.11 19:43:44 | 000,000,416 | ---- | M] () -- C:\Windows\tasks\PCConfidential.job
[2012.04.11 19:43:40 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.04.11 19:43:40 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.04.11 19:14:06 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.04.11 18:14:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.04.08 23:09:51 | 003,428,106 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_0005.JPG
[2012.04.08 23:06:30 | 001,827,981 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_6282.JPG
[2012.04.08 23:03:45 | 000,113,029 | ---- | M] () -- C:\Users\Sven Bruns\Documents\nocmalbestest.jpg
[2012.04.08 22:59:43 | 001,453,975 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_2477.JPG
[2012.04.08 22:59:32 | 001,654,842 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_2356.JPG
[2012.04.08 22:48:36 | 000,340,720 | ---- | M] () -- C:\Users\Sven Bruns\Documents\Bild 083.jpg
[2012.04.08 22:47:00 | 000,374,754 | ---- | M] () -- C:\Users\Sven Bruns\Documents\Bild 169.jpg
[2012.04.08 22:45:59 | 000,284,968 | ---- | M] () -- C:\Users\Sven Bruns\Documents\Bild 000.jpg
[2012.04.08 22:43:54 | 001,846,819 | ---- | M] () -- C:\Users\Sven Bruns\Documents\HPIM2254.JPG
[2012.04.08 22:41:09 | 001,303,838 | ---- | M] () -- C:\Users\Sven Bruns\Documents\DSC00177.JPG
[2012.04.08 22:37:02 | 000,513,318 | ---- | M] () -- C:\Users\Sven Bruns\Documents\CIMG0228.JPG
[2012.04.08 22:32:15 | 001,523,339 | ---- | M] () -- C:\Users\Sven Bruns\Documents\diverses sommer 2009 025.JPG
[2012.04.08 22:31:24 | 001,471,248 | ---- | M] () -- C:\Users\Sven Bruns\Documents\SDC11233.JPG
[2012.04.08 22:27:56 | 000,914,610 | ---- | M] () -- C:\Users\Sven Bruns\Documents\SDC18981.JPG
[2012.04.08 22:25:36 | 000,336,904 | ---- | M] () -- C:\Users\Sven Bruns\Documents\SDC19236.JPG
[2012.04.08 22:25:33 | 000,424,028 | ---- | M] () -- C:\Users\Sven Bruns\Documents\SDC19225.JPG
[2012.04.08 22:24:16 | 001,480,648 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_7225.JPG
[2012.04.06 01:01:17 | 002,127,153 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9538_Farbe1.jpg
[2012.04.06 00:22:08 | 002,095,974 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9538_1Farbe.jpg
[2012.04.05 23:45:38 | 000,877,259 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9538_1.jpg
[2012.04.05 00:32:54 | 000,920,432 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_0220.JPG
[2012.04.04 23:35:54 | 000,455,343 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9520_1.jpg
[2012.03.30 11:53:13 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012.03.30 11:53:13 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012.03.29 02:12:16 | 000,161,534 | ---- | M] () -- C:\Users\Sven Bruns\Documents\ultraschall22_3_12.jpg
[2012.03.18 22:28:38 | 001,831,556 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9678.JPG
[2012.03.18 22:26:19 | 002,215,457 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9679.JPG
[2012.03.18 21:13:25 | 000,128,903 | ---- | M] () -- C:\Users\Sven Bruns\Documents\2012-03-18 20-12-27.960.jpg
[2012.03.18 00:59:15 | 000,043,884 | ---- | M] () -- C:\Users\Sven Bruns\Documents\307148_230128800366385_100001078002048_622536_1426374_n.jpg
[2012.03.17 20:25:30 | 000,187,732 | ---- | M] () -- C:\Users\Sven Bruns\Documents\2012-03-17 19-21-36.904.jpg
[2012.03.16 22:37:27 | 000,765,600 | ---- | M] () -- C:\Users\Sven Bruns\Documents\IMG_9629.JPG
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.04.08 23:04:56 | 003,428,106 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_0005.JPG
[2012.04.08 23:03:24 | 001,827,981 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_6282.JPG
[2012.04.08 23:03:12 | 000,113,029 | ---- | C] () -- C:\Users\Sven Bruns\Documents\nocmalbestest.jpg
[2012.04.08 22:55:15 | 001,453,975 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_2477.JPG
[2012.04.08 22:54:24 | 001,654,842 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_2356.JPG
[2012.04.08 22:47:57 | 000,340,720 | ---- | C] () -- C:\Users\Sven Bruns\Documents\Bild 083.jpg
[2012.04.08 22:46:40 | 000,374,754 | ---- | C] () -- C:\Users\Sven Bruns\Documents\Bild 169.jpg
[2012.04.08 22:45:42 | 000,284,968 | ---- | C] () -- C:\Users\Sven Bruns\Documents\Bild 000.jpg
[2012.04.08 22:43:18 | 001,846,819 | ---- | C] () -- C:\Users\Sven Bruns\Documents\HPIM2254.JPG
[2012.04.08 22:40:35 | 001,303,838 | ---- | C] () -- C:\Users\Sven Bruns\Documents\DSC00177.JPG
[2012.04.08 22:36:43 | 000,513,318 | ---- | C] () -- C:\Users\Sven Bruns\Documents\CIMG0228.JPG
[2012.04.08 22:31:45 | 001,523,339 | ---- | C] () -- C:\Users\Sven Bruns\Documents\diverses sommer 2009 025.JPG
[2012.04.08 22:30:54 | 001,471,248 | ---- | C] () -- C:\Users\Sven Bruns\Documents\SDC11233.JPG
[2012.04.08 22:27:31 | 000,914,610 | ---- | C] () -- C:\Users\Sven Bruns\Documents\SDC18981.JPG
[2012.04.08 22:25:28 | 000,336,904 | ---- | C] () -- C:\Users\Sven Bruns\Documents\SDC19236.JPG
[2012.04.08 22:25:12 | 000,424,028 | ---- | C] () -- C:\Users\Sven Bruns\Documents\SDC19225.JPG
[2012.04.08 22:22:31 | 001,480,648 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_7225.JPG
[2012.04.06 01:00:43 | 002,127,153 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9538_Farbe1.jpg
[2012.04.06 00:20:47 | 002,095,974 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9538_1Farbe.jpg
[2012.04.05 23:44:27 | 000,877,259 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9538_1.jpg
[2012.04.05 00:32:00 | 000,920,432 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_0220.JPG
[2012.04.04 23:35:22 | 000,455,343 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9520_1.jpg
[2012.03.30 11:05:19 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.03.29 02:12:00 | 000,161,534 | ---- | C] () -- C:\Users\Sven Bruns\Documents\ultraschall22_3_12.jpg
[2012.03.18 22:28:08 | 001,831,556 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9678.JPG
[2012.03.18 22:25:43 | 002,215,457 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9679.JPG
[2012.03.18 21:13:18 | 000,128,903 | ---- | C] () -- C:\Users\Sven Bruns\Documents\2012-03-18 20-12-27.960.jpg
[2012.03.18 00:59:05 | 000,043,884 | ---- | C] () -- C:\Users\Sven Bruns\Documents\307148_230128800366385_100001078002048_622536_1426374_n.jpg
[2012.03.17 20:25:16 | 000,187,732 | ---- | C] () -- C:\Users\Sven Bruns\Documents\2012-03-17 19-21-36.904.jpg
[2012.03.16 22:37:04 | 000,765,600 | ---- | C] () -- C:\Users\Sven Bruns\Documents\IMG_9629.JPG
[2012.01.31 19:15:44 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012.01.31 19:15:42 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012.01.31 19:15:42 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012.01.31 19:15:42 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012.01.31 19:15:42 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2011.05.17 20:14:16 | 000,093,675 | ---- | C] () -- C:\Users\Sven Bruns\AppData\Roaming\Uninstal.exe
[2011.01.03 15:38:23 | 000,131,532 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010.12.27 21:55:01 | 000,021,504 | ---- | C] () -- C:\Windows\jestertb.dll
[2010.10.02 14:48:00 | 000,000,317 | ---- | C] () -- C:\Windows\WININIT.INI
[2010.07.30 19:28:16 | 000,000,099 | ---- | C] () -- C:\Users\Sven Bruns\AppData\Local\fusioncache.dat
[2010.07.11 22:32:39 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.06.07 18:05:19 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.06.01 18:25:35 | 000,000,010 | ---- | C] () -- C:\Windows\popcinfo.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:4D066AD2
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:E1982A23
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:814B9485
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:3B3A35EC
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:CDFF58FE
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:ABE89FFE
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:35759C73
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:6C5EC3CD
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:4A0829E0
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:BB24555F
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:F6C0CA66
< End of report >
| Und der Extras.Txt Zitat:
OTL Extras logfile created on: 11.04.2012 20:11:55 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\Sven Bruns\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,99 Gb Total Physical Memory | 2,35 Gb Available Physical Memory | 78,62% Memory free
6,19 Gb Paging File | 5,77 Gb Available in Paging File | 93,24% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 286,09 Gb Total Space | 181,72 Gb Free Space | 63,52% Space Free | Partition Type: NTFS
Computer Name: SVENBRUNS-PC | User Name: Sven Bruns | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- "C:\Program Files\Opera\Opera.exe" "%1"
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11FE855C-49F7-4321-9018-E99D2911BF74}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1A5EC315-BD8D-4DE7-834C-B81584352EA3}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{31587F4E-0104-44DE-9ACE-481F9B5F6876}" = lport=2869 | protocol=6 | dir=in | app=system |
"{37731CA7-924B-4C2F-BA83-C0AD103DC263}" = rport=138 | protocol=17 | dir=out | app=system |
"{397AD80C-58B7-45F7-A0E6-2561DA60847E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3F01B11E-EBB4-44AA-B86F-35032AE80884}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{4EEF9F08-E1AD-4210-B535-345D548166EC}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5887F2E8-EEBD-4B8B-ACD4-9FE3A58B878A}" = rport=445 | protocol=6 | dir=out | app=system |
"{68B6B7EB-111F-4F8A-9D85-3B966523DD15}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6FEE1401-3489-4DAA-9D6D-D058EE7B3534}" = lport=139 | protocol=6 | dir=in | app=system |
"{726543D5-FAB1-4B3C-BC24-4602B2FB8BC6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{76336373-76D3-4DDF-894D-4ABA685C6A64}" = rport=139 | protocol=6 | dir=out | app=system |
"{880AF3BE-D86B-402A-8ABE-1004061693AE}" = lport=138 | protocol=17 | dir=in | app=system |
"{90864EDA-C1FB-45CF-83D4-F8E3F8694C1A}" = lport=445 | protocol=6 | dir=in | app=system |
"{975A30BD-730A-4DB6-9449-24DFDB342A8D}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9A07A428-AFC1-41C3-9D3A-95C51752417A}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{9B62E070-05E8-4BE1-AEE8-6F0EB05A0CEE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C8BAC809-D972-4348-A0E3-7FBA92C3E1EE}" = rport=137 | protocol=17 | dir=out | app=system |
"{E673FD2A-666F-4FDC-AA7F-3637F1C0A0B6}" = lport=137 | protocol=17 | dir=in | app=system |
"{E813D9B0-36E4-4BAA-9081-6A8DF6D9D6D3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{F43885FE-9E67-4C99-AE9E-7DEA8F7B3621}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010E2786-D70F-42C2-BC1F-7BEC6532F82E}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{040AC6FD-3F6F-4FE8-9C2C-80CF5C673344}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{052F5F46-C69D-41E9-B495-1A66671257EA}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{07951826-83F7-4F4F-8C0C-EF9307F4BA14}" = protocol=6 | dir=in | app=c:\program files\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{090EEF73-8C10-4983-88BC-747B14CC08D2}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{0A43F416-7341-492E-A864-6ADF67CB0407}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{13252E86-40BE-4561-A447-931FDA2584B8}" = protocol=17 | dir=in | app=c:\program files\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{17230C58-6E76-4F9E-89D2-F43C4DB9FFC8}" = protocol=17 | dir=in | app=c:\program files\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{1B2D38EF-98C3-41FC-826A-5269ACED6DAC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{1D9455D0-E7B2-49CA-A4E8-80B7607F0F52}" = protocol=17 | dir=in | app=c:\program files\firefly studios\stronghold legends\strongholdlegends.exe |
"{1E1E92B4-1205-4A01-A3B6-EFEDE8656CA3}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{1F20EAEA-C475-40F9-B9AD-3582DFAC0292}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{2364F9BC-6D3E-4614-BEC8-0AACCEBD6670}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2419BFE0-D490-4A1D-8251-F6A6E8D788FF}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{263E06CB-7C1D-47E8-BF54-CD01F986946D}" = protocol=17 | dir=in | app=c:\program files\lucasarts\star wars empire at war forces of corruption\swfoc.exe |
"{2FEB73DF-B192-4219-9D3A-EF7F00D70851}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{31BD00FD-E22B-468D-8ED8-00FEA44FB403}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{349923A8-3E77-454A-98A3-E3009ED37409}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{34D95A5D-786A-46E8-ADDC-C9E9D3EEE051}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{3B7DCAF3-2D8D-48CB-B7D7-98295FA6FA11}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{4063F404-F4AC-4A41-9A50-CE7A9384AE79}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{42ECDD52-6A2F-4F42-9BDE-68CAEA3F9787}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{4E953062-C043-42B0-8D9A-D3392CB58126}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{50C88C0B-E181-4AB9-95ED-0096EE7C711C}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{51C99631-8034-4DA3-B36A-BDFD7CCF5BDA}" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{55E76D07-3AD3-41D7-8887-2419749DE8F5}" = protocol=6 | dir=in | app=c:\program files\icq7.7\icq.exe |
"{5C2A7B3E-D5B2-42CC-BC26-3D18958E61D4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5E0D774A-88BD-4505-AE95-50C89E6D00E9}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{63343252-0E01-4E90-AF71-F62AD7A5FB76}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{6816091F-1B0C-48FA-BD42-F4E090CD2522}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{697FE200-23BD-4834-B23D-49F57A48633A}" = protocol=17 | dir=in | app=c:\program files\icq7.7\icq.exe |
"{6A6F3CC2-C12B-4E0A-A35F-44BACF90BA67}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{6CE7BB9B-02D8-4207-B251-7822DBB469E5}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{728986F6-E75E-4F08-AA72-C2AFAF2E7C55}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{7B790699-A844-4434-8562-9BFB0CEDFA1C}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{86D4181E-E957-42A4-957F-DD88F9D9CA92}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{8BD773B1-8CE9-42F6-AACB-48646E22D0C7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{92BD4ADA-C001-4727-B148-834050D99BEB}" = protocol=6 | dir=in | app=c:\program files\icq7.7\icq.exe |
"{94A48538-A729-46C9-8E9B-B7DED674B721}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{9565A9AC-D7C7-4B3B-BECD-2276B4E37696}" = dir=in | app=c:\program files\acer\acer vcm\rs_service.exe |
"{968001CE-8AAE-44B4-98CD-E0FC546E5EFA}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{968F929F-3B4A-4EBE-9DEF-9AB304AD2968}" = protocol=6 | dir=in | app=c:\program files\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{9AC5B61E-E937-4376-8F5A-4510E8184AA4}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{9BBCCB8F-7758-4B60-9068-CBB6B744240F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9C83B037-057B-4680-9B63-09DFBD531D78}" = protocol=6 | dir=in | app=c:\program files\lucasarts\star wars empire at war forces of corruption\swfoc.exe |
"{9D2AD973-D2AE-4C22-8716-C96F995DD8B8}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{A016B58D-602C-44E4-B027-9ADBD1D437D7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A06D9415-C45D-4E73-A393-8F49194588F7}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{A2A48BA5-D9F4-4F1B-9E78-BF74B920C429}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{A467D61E-8325-40B6-9E8B-FD81E2D7A087}" = protocol=6 | dir=in | app=c:\users\sven bruns\appdata\local\akamai\netsession_win.exe |
"{B21CCDFA-579D-4A01-A5F7-1A5637F4F593}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{B6F89355-668C-42A8-A210-CE549DC0628B}" = protocol=6 | dir=in | app=c:\program files\firefly studios\stronghold legends\strongholdlegends.exe |
"{C2564A1D-5607-4933-8260-D2D173EDA93D}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{C53A8478-74AF-4447-A58C-222A2061B18D}" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"{CBF6AF06-B065-4AC8-9A70-438D440FA897}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{CD71B661-0A6B-4893-8538-5A8FC07E5ED4}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{D414B8D9-9FB4-45C2-AA96-163DBEC62FF1}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{D8BD469B-9C8A-4475-9D04-2466B8945A8B}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{DDA30025-88BA-4907-9488-221BB551BC7F}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{E3F31649-0629-43FA-9F5D-D1B2EB12BD67}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{E7DBDE06-81EA-42A0-8275-BB3841861E6B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{EA842413-33E1-4292-B790-48052C5D1CE4}" = protocol=17 | dir=in | app=c:\users\sven bruns\appdata\local\akamai\netsession_win.exe |
"{EFD652FB-74C1-4AED-ADDB-AF3D42547B19}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{FFBD26DB-2736-42B4-9DCF-DC6B9B8EA31A}" = protocol=17 | dir=in | app=c:\program files\icq7.7\icq.exe |
"TCP Query User{033563FE-AAFF-4A89-828F-4432081EB919}C:\program files\microsoft games\age of empires iii\age3.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"TCP Query User{0F99EC1F-8947-445A-9B1C-3839C9916A1D}C:\users\sven bruns\downloads\fogdownloader-rom_3_0_1_2153.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\downloads\fogdownloader-rom_3_0_1_2153.exe |
"TCP Query User{109E00C9-A268-44CC-AF09-0BA5F80639AD}C:\counter-strike 2d\counterstrike2d.exe" = protocol=6 | dir=in | app=c:\counter-strike 2d\counterstrike2d.exe |
"TCP Query User{17B07D08-3867-49A0-9DE2-61C88AD38179}C:\program files\metin2\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2\metin2.bin |
"TCP Query User{1AF8B40A-862A-4000-A4A3-211F0EC548FA}C:\users\sven bruns\desktop\battlefield 2\bf2_w32ded.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\desktop\battlefield 2\bf2_w32ded.exe |
"TCP Query User{1B0E52DF-EC91-4578-851B-FFE8E4984445}C:\program files\icq7.013_58_25\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.013_58_25\icq.exe |
"TCP Query User{369679C6-1D84-4D95-BD8F-E402C801C755}C:\users\sven bruns\appdata\local\mediaget2\mediaget.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\appdata\local\mediaget2\mediaget.exe |
"TCP Query User{3A0D9053-4D9B-44B9-9AB2-7E386685312D}C:\users\sven bruns\downloads\maestia-downloader(2).exe" = protocol=6 | dir=in | app=c:\users\sven bruns\downloads\maestia-downloader(2).exe |
"TCP Query User{4B3E27CC-8C22-4EA2-B38D-B1E0DC52A346}C:\program files\icq7.4\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"TCP Query User{4C13F984-8591-4CE6-AAD0-664492B85C6E}C:\program files\gamespy\comrade\comrade.exe" = protocol=6 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"TCP Query User{632D1759-28C8-4028-BF98-59DBD2153196}C:\program files\runes of magic\client.exe" = protocol=6 | dir=in | app=c:\program files\runes of magic\client.exe |
"TCP Query User{6988E270-9E70-4C56-89A3-28B448D15847}C:\program files\icq7.4\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"TCP Query User{6F015FD0-5D3E-472D-9ECC-3AEAB36639B4}C:\metin2\metin2.bin" = protocol=6 | dir=in | app=c:\metin2\metin2.bin |
"TCP Query User{7BB45777-7D7E-4DC9-A4D6-F6B1BFDCA2A2}C:\program files\icq7.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"TCP Query User{8391AECD-BBEA-491C-A9A1-5A3D17BE7DF9}C:\program files\icq7.6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.6\icq.exe |
"TCP Query User{8CF84167-562F-488A-B08F-F05928C7A960}C:\program files\microsoft games\age of empires iii\age3.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"TCP Query User{93B66497-BCAA-4386-889B-16F06ACE399F}C:\program files\metin2\metin2client.bin" = protocol=6 | dir=in | app=c:\program files\metin2\metin2client.bin |
"TCP Query User{ADABDB29-5822-4B9B-90A3-D21536905A03}C:\program files\runes of magic\client.exe" = protocol=6 | dir=in | app=c:\program files\runes of magic\client.exe |
"TCP Query User{BACD5A20-7BAF-40B7-B5D3-DC1D62382D8C}C:\users\sven bruns\appdata\local\temp\2e0d641d1b3d42cba6b9c9503db41ef0\relicdownloader.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\appdata\local\temp\2e0d641d1b3d42cba6b9c9503db41ef0\relicdownloader.exe |
"TCP Query User{BBA0FF9A-DB54-45C0-86EE-D6D87D2E887F}C:\program files\icq7.7\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.7\icq.exe |
"TCP Query User{C69ABFD5-1C1E-4139-A212-C95E1D95D628}C:\program files\metin2\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2\metin2.bin |
"TCP Query User{CB66F115-ADD0-4764-938F-EB503DA7F36F}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{E3568211-70A9-40A6-A872-117E8C0E6CC0}C:\users\sven bruns\downloads\maestia-downloader.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\downloads\maestia-downloader.exe |
"TCP Query User{F13F40AF-1555-4E56-AE7B-946EBF7756CD}C:\users\sven bruns\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\sven bruns\appdata\local\akamai\netsession_win.exe |
"TCP Query User{F2F63EEC-EC62-41ED-B6E8-2EE3DA6C22DC}C:\program files\icq7.013_58_25\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.013_58_25\icq.exe |
"TCP Query User{FEC41743-1039-4049-A5AB-11B5EF5C0E2B}C:\program files\the games company\empire earth ultimate edition\empire earth i zde\ee-aoc.exe" = protocol=6 | dir=in | app=c:\program files\the games company\empire earth ultimate edition\empire earth i zde\ee-aoc.exe |
"UDP Query User{09020D36-228C-4838-8A53-0F521B5904BA}C:\program files\microsoft games\age of empires iii\age3.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"UDP Query User{0E8FD9F3-7674-46F0-8422-9861E3ECD66C}C:\users\sven bruns\downloads\maestia-downloader(2).exe" = protocol=17 | dir=in | app=c:\users\sven bruns\downloads\maestia-downloader(2).exe |
"UDP Query User{13BB40F1-5CD7-44EA-96ED-3F71653EA281}C:\program files\runes of magic\client.exe" = protocol=17 | dir=in | app=c:\program files\runes of magic\client.exe |
"UDP Query User{141CE644-2C54-4BF6-A264-6DEAEFACCC99}C:\program files\microsoft games\age of empires iii\age3.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"UDP Query User{14BA1B52-059C-41D0-9D0B-84AB5A1F2495}C:\program files\icq7.013_58_25\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.013_58_25\icq.exe |
"UDP Query User{1F217F20-B746-42B0-ACE8-EC8106D4254B}C:\metin2\metin2.bin" = protocol=17 | dir=in | app=c:\metin2\metin2.bin |
"UDP Query User{1FC71B10-5AC5-449A-B5F6-91F4B59D80DA}C:\program files\icq7.013_58_25\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.013_58_25\icq.exe |
"UDP Query User{2CED225B-6DF6-4022-BA58-E0339FDA0DBF}C:\program files\gamespy\comrade\comrade.exe" = protocol=17 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"UDP Query User{3EE5CA3A-8C11-4F36-878A-5F535FAFB732}C:\program files\metin2\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2\metin2.bin |
"UDP Query User{42D1B247-BAC0-496A-B2CF-6A87FB434F7B}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{440263AB-1C5C-47DD-920E-CF425DA7C523}C:\program files\metin2\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2\metin2.bin |
"UDP Query User{47C99A0E-7E88-4B38-8220-94FB6ACC2929}C:\program files\the games company\empire earth ultimate edition\empire earth i zde\ee-aoc.exe" = protocol=17 | dir=in | app=c:\program files\the games company\empire earth ultimate edition\empire earth i zde\ee-aoc.exe |
"UDP Query User{7A5D1BD6-C043-4175-AA31-C4F69954E0BB}C:\program files\icq7.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"UDP Query User{82229CC6-E4A4-483A-A60A-2AA7E65B6ED9}C:\program files\icq7.4\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"UDP Query User{8E768C10-14A0-4FFB-AA35-EFC042C54814}C:\program files\metin2\metin2client.bin" = protocol=17 | dir=in | app=c:\program files\metin2\metin2client.bin |
"UDP Query User{9FD5420B-4F32-4921-B265-6BD346FDB126}C:\users\sven bruns\desktop\battlefield 2\bf2_w32ded.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\desktop\battlefield 2\bf2_w32ded.exe |
"UDP Query User{A3AA958B-0C1D-45B2-BE03-A0F203E390D1}C:\program files\icq7.6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.6\icq.exe |
"UDP Query User{AAA24C0D-70DE-4769-959C-59DC48251E31}C:\users\sven bruns\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\appdata\local\akamai\netsession_win.exe |
"UDP Query User{B09F60C8-85AD-4214-BD40-404A816D22E2}C:\users\sven bruns\downloads\maestia-downloader.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\downloads\maestia-downloader.exe |
"UDP Query User{B564AD2B-0112-496C-95B8-9108E82BAB05}C:\program files\icq7.7\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.7\icq.exe |
"UDP Query User{C4F6FA83-5C69-4DB7-B97A-1400476C17AC}C:\program files\runes of magic\client.exe" = protocol=17 | dir=in | app=c:\program files\runes of magic\client.exe |
"UDP Query User{C9B91EF9-168A-4FD4-A056-5EF9E071CD46}C:\program files\icq7.4\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"UDP Query User{CF3B8A68-5756-48FD-A5DD-3ADD8F673C58}C:\users\sven bruns\downloads\fogdownloader-rom_3_0_1_2153.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\downloads\fogdownloader-rom_3_0_1_2153.exe |
"UDP Query User{D2E74216-4CA4-444F-A87C-BC9C9D5A834A}C:\users\sven bruns\appdata\local\temp\2e0d641d1b3d42cba6b9c9503db41ef0\relicdownloader.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\appdata\local\temp\2e0d641d1b3d42cba6b9c9503db41ef0\relicdownloader.exe |
"UDP Query User{D32BDB7B-3479-4498-AE1D-818727DF448D}C:\users\sven bruns\appdata\local\mediaget2\mediaget.exe" = protocol=17 | dir=in | app=c:\users\sven bruns\appdata\local\mediaget2\mediaget.exe |
"UDP Query User{EA1434F3-8173-4C9C-A5C8-B262A64D4A1F}C:\counter-strike 2d\counterstrike2d.exe" = protocol=17 | dir=in | app=c:\counter-strike 2d\counterstrike2d.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{028ED9C4-25EE-4DEE-9CF4-91034BC89B18}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{1E869B1A-FE19-4519-B9AE-EF383A7C00E4}" = FOCMapEditor
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2DFB5485-A3EF-4298-9280-4AF80C9F4BE9}" = Microsoft SQL Server VSS Writer
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3F4BA3A2-7BE0-48EA-B4BC-CA4D842A409A}" = Cisco EAP-FAST Module
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{4cb9f93c-9edc-4be9-ae61-af128ddbecfa}" = Business Contact Manager für Outlook 2007 SP1
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{547DCEC7-DD2A-47E9-82C7-5CF1EAB526DA}" = Microsoft SQL Server Native Client
"{5A166C0B-9557-4364-A057-F946D674E6AC}" = Windows Live Mail
"{6B96DADA-1A27-4A04-8CB2-CC45168D05FA}" = Windows Live Fotogalerie
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{81821BF8-DA20-4F8C-AA87-F70A274828D4}" = Windows Live Writer
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{835686C5-8650-49EB-8CA0-4528B4035495}" = Windows Live Call
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{837B6259-6FF5-4E66-87C1-A5A15ED36FF4}" = Windows Live Messenger
"{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid
"{8D1E61D1-1395-4E97-997F-D002DB3A5074}" = OpenOffice.org 3.2
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_PROHYBRIDR_{DCBECE36-8F23-4B33-925E-A1C6183C0DBD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROHYBRIDR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROHYBRIDR_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_PROHYBRIDR_{58FC5E37-DD28-4D4A-A549-125744C6763C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_PROHYBRIDR_{888B9AC7-8F5C-456B-A27A-157A6C310E52}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90850407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{90A40407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{934B3B19-8193-467A-B356-E73F82647D38}" = Cisco LEAP Module
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99AE7207-8612-4DBA-A8F8-BAE5C633390D}" = Star Wars Empire at War
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DF163C0-7019-4d01-ADCF-0E1D386C7141}" = IObit Toolbar v5.2
"{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}" = Age of Empires III
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1031-7B44-A95000000001}" = Adobe Reader 9.5.0 - Deutsch
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B5BCBD49-202F-4238-8398-D83D423A48B4}" = Windows Live Anmelde-Assistent
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BAD1449B-DF0C-4118-B76D-68C54009576C}" = Cisco PEAP Module
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE39C8A5-C98D-4702-807F-265FCF9F54FD}" = TubeBox!
"{CE7CB214-DB11-4B5D-A6AF-3B4ED47C68B7}" = Microsoft Game Studios Common Redistributables Pack 1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D53073B2-2504-4D58-BC66-4DE4E19F54B3}_is1" = Yaric version 3.4.2.0
"{D9E52CD1-9DF1-4A8A-9BDC-1E5E53982F2B}" = Black & White® 2
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader
"{DF5F687F-8018-4542-9F98-7084E9022917}" = Windows Live Essentials
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"ABM" = ABM 1.1
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.11 (Unicode)
"Avira AntiVir Desktop" = Avira Free Antivirus
"Business Contact Manager" = Business Contact Manager für Outlook 2007 SP1
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Free Audio Dub_is1" = Free Audio Dub version 1.7.9.602
"Game Booster_is1" = Game Booster 3
"GridVista" = Acer GridVista
"iLivid" = iLivid
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}" = Age of Empires III
"LManager" = Launch Manager
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Minecraft 1.2.0_02" = Minecraft 1.2.0_02
"MinecraftAlpha" = MinecraftAlpha
"Mozilla Firefox 11.0 (x86 de)" = Mozilla Firefox 11.0 (x86 de)
"MPE" = MyPhoneExplorer
"Neffy" = Neffy 1,3,29,0
"PhotoScape" = PhotoScape
"Picasa 3" = Picasa 3
"PROHYBRIDR" = 2007 Microsoft Office system
"SearchAnonymizer" = SearchAnonymizer
"Steam App 105600" = Terraria
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"TeamViewer 5" = TeamViewer 5
"Two Worlds Pinball" = Two Worlds Pinball
"Uninstall_is1" = Uninstall 1.0.0.1
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.01 (32-Bit)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 14.01.2011 17:39:40 | Computer Name = SvenBruns-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 14.01.2011 17:39:40 | Computer Name = SvenBruns-PC | Source = Windows Search Service | ID = 3013
Description =
Error - 15.01.2011 10:51:36 | Computer Name = SvenBruns-PC | Source = WinMgmt | ID = 10
Description =
Error - 15.01.2011 12:20:00 | Computer Name = SvenBruns-PC | Source = WinMgmt | ID = 10
Description =
Error - 15.01.2011 12:34:46 | Computer Name = SvenBruns-PC | Source = VSS | ID = 8194
Description =
Error - 15.01.2011 12:43:20 | Computer Name = SvenBruns-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung 1602.exe, Version 0.2.5.2, Zeitstempel 0x37c2b625,
fehlerhaftes Modul Maxsound.dll, Version 2.3.0.0, Zeitstempel 0x3700dc85, Ausnahmecode
0xc0000006, Fehleroffset 0x00003596, Prozess-ID 0x1780, Anwendungsstartzeit 01cbb4d2b45d3410.
Error - 15.01.2011 12:43:31 | Computer Name = SvenBruns-PC | Source = Application Error | ID = 1005
Description = Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen
werden: Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit
der gespeicherten Datei bzw. den auf dem Computer installierten Speichertreibern;
oder der Datenträger fehlt. Das Programm 1602 wurde wegen dieses Fehlers geschlossen.
Programm:
1602 Datei: Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet. Benutzeraktion
1.
Öffnen Sie die Datei erneut. Diese Situation ist eventuell ein temporäres Problem,
das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird. 2. Wenn
Sie weiterhin nicht auf die Datei zugreifen können und - diese sich im Netzwerk
befindet, dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem
besteht und dass eine Verbindung mit dem Server hergestellt werden kann. - diese
sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet,
überprüfen Sie, ob der Datenträger richtig in der Computer eingelegt ist. 3. Überprüfen
und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu
im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben
Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4.
Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin
besteht. 5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet
werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware,
um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt. Zusätzliche
Daten Fehlerwert: C0000013 Datenträgertyp: 0
Error - 15.01.2011 17:15:27 | Computer Name = SvenBruns-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung 1602.exe, Version 0.2.5.2, Zeitstempel 0x37c2b625,
fehlerhaftes Modul Maxsound.dll, Version 2.3.0.0, Zeitstempel 0x3700dc85, Ausnahmecode
0xc0000005, Fehleroffset 0x00003596, Prozess-ID 0x290, Anwendungsstartzeit 01cbb4d651cc9c60.
Error - 15.01.2011 21:25:28 | Computer Name = SvenBruns-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung 1602.exe, Version 0.2.5.2, Zeitstempel 0x37c2b625,
fehlerhaftes Modul Maxsound.dll, Version 2.3.0.0, Zeitstempel 0x3700dc85, Ausnahmecode
0xc0000005, Fehleroffset 0x00003596, Prozess-ID 0xf4c, Anwendungsstartzeit 01cbb4f95ea04810.
Error - 16.01.2011 05:14:33 | Computer Name = SvenBruns-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 11.04.2012 13:41:15 | Computer Name = SvenBruns-PC | Source = Service Control Manager | ID = 7022
Description =
Error - 11.04.2012 13:44:50 | Computer Name = SvenBruns-PC | Source = sptd | ID = 262148
Description = Der Treiber hat einen internen Fehler in seinen Datenstrukturen für
festgestellt.
Error - 11.04.2012 13:45:40 | Computer Name = SvenBruns-PC | Source = DCOM | ID = 10005
Description =
Error - 11.04.2012 13:45:50 | Computer Name = SvenBruns-PC | Source = DCOM | ID = 10005
Description =
Error - 11.04.2012 13:45:51 | Computer Name = SvenBruns-PC | Source = DCOM | ID = 10005
Description =
Error - 11.04.2012 13:45:54 | Computer Name = SvenBruns-PC | Source = DCOM | ID = 10005
Description =
Error - 11.04.2012 13:45:55 | Computer Name = SvenBruns-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description =
Error - 11.04.2012 13:46:44 | Computer Name = SvenBruns-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 11.04.2012 13:46:44 | Computer Name = SvenBruns-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 11.04.2012 14:17:50 | Computer Name = SvenBruns-PC | Source = iaStor | ID = 262153
Description = Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht
geantwortet.
< End of report >
|
|
11.04.2012, 19:24
Baum-Darstellung