grad kam schon wieder die meldung
ich zitiere: "Beim vorherigen start des Programms ist ein Fehler aufgetreten".....
ich mach grad mal´n otl run scan
OTL EXTRAS Logfile: Code:
OTL Extras logfile created on: 13.06.2013 22:03:44 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Wirthmann\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,68 Gb Available Physical Memory | 67,00% Memory free
7,99 Gb Paging File | 6,48 Gb Available in Paging File | 81,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 150,00 Gb Total Space | 75,33 Gb Free Space | 50,22% Space Free | Partition Type: NTFS
Drive D: | 222,51 Gb Total Space | 213,20 Gb Free Space | 95,82% Space Free | Partition Type: NTFS
Computer Name: WIRTHMANN-PC | User Name: Wirthmann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3538922542-1356974201-1285549118-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01ADA6A4-50D1-4F15-9ABB-7C198E097AB8}" = lport=139 | protocol=6 | dir=in | app=system |
"{04CFB03E-3B12-4FA5-B12A-70B89970CFAD}" = rport=10243 | protocol=6 | dir=out | app=system |
"{2017CDA0-B677-4045-A1E0-A8F9C9559CC2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{2BBD4758-D1FA-4DF7-848F-302F0E9A163A}" = rport=137 | protocol=17 | dir=out | app=system |
"{3A9EF2FF-10E1-4176-9007-1F09FDD2AFCB}" = lport=445 | protocol=6 | dir=in | app=system |
"{44391B27-3DD6-4F1E-A4FE-7A1CBCA14A1F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{46C1D18F-23C2-447A-B3E3-08CEB972A6FF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5431C3D8-EC43-4C7D-A5FE-0028645FFB03}" = lport=10243 | protocol=6 | dir=in | app=system |
"{60C4CDB7-E0EB-46E5-8F9A-AB52B0F983B1}" = rport=139 | protocol=6 | dir=out | app=system |
"{640FF161-3552-4397-A0FD-67002CAFFFA2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8A2094B5-DE85-4FEA-A6BF-099E79C6FA27}" = rport=445 | protocol=6 | dir=out | app=system |
"{8AFDA566-16FF-42C9-AAEE-DF44767CE494}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9710706A-3063-4D45-BCEE-6AFF71F85068}" = rport=138 | protocol=17 | dir=out | app=system |
"{998EE720-9445-493F-95C6-BCDD64A3B5B5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A4C4BEEE-279C-41C8-8C72-5AD8424D1642}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A5BE10E9-22C7-4503-A6FF-5E0861D2996B}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{AA836F50-ECBB-40EC-A972-18B9E64B15CD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CB7F8108-C203-4155-B8F8-68E7C701027A}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D1BD576B-8376-4392-8E8E-246455A9540E}" = lport=138 | protocol=17 | dir=in | app=system |
"{DCA17531-BD08-43BC-B1AA-FC472039FE1D}" = lport=137 | protocol=17 | dir=in | app=system |
"{E965760E-D420-44CC-9619-0CAF81A95AF0}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EF0FF229-94E3-42EE-A973-7B054D5F9192}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{FEAD1C03-DEA7-4017-AAC4-47B713154DD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04F7CD5B-1A2B-4D15-8D3C-104908511422}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{08FA6670-389B-4F68-9F62-ACEE6F68DE13}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0C721368-B146-42CA-8CE7-AE9F725E57A3}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{108F0E71-2DC6-4854-A342-C2D6B67362FC}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{127D071D-7DCF-4994-B8A7-4A4AB3657290}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{133725FA-0A2C-4BAA-9E77-0FC169532FC5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{13DEF62D-6572-448E-971C-EB0FABDB36BE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{23E1B7E2-62C9-49A4-AAC5-8777E7A175C4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe |
"{26DFA21A-4B04-42F2-9743-F812D3674AD3}" = protocol=6 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearxp2\fearxp2.exe |
"{2BADEAE0-52A5-4422-9900-32C84F3A4F40}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{367E9DE9-E278-49E5-8BD5-810F4A365CB1}" = protocol=6 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearxp\fearxp.exe |
"{39009E6A-9096-4970-83B4-721CF4A58BC1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3CBFDBCC-613A-4A0C-82A0-E7C1AED683C3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{45043F80-8C7E-4A9D-95C9-2B6D6DAA286F}" = dir=in | app=c:\users\wirthmann\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{4646254F-7E8B-4A71-810E-55CD8AB64845}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{51F4C228-BC95-4547-A961-41D0331059D6}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"{55A31196-1293-4A09-873C-39BB30AB41DE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{578EC21C-46EF-4193-B6AC-1E0F02AD25D6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5C56F67A-EBA4-4C4A-83C7-FAFFC6C42FF9}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5C5F56B5-4E69-470E-8786-D7DD7292FEF8}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{5C9CED30-DC15-485B-B582-941ABEF6AAE2}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{6569F306-0332-43AB-8EF6-2CCF9840CFB9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6ECF71C8-D914-471B-A99A-C87098C5B885}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{72034251-CB11-47AD-932D-9F10088B626E}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{73EE3690-A21E-49E6-9E13-3E7CC727454B}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{7B9B54E7-6A9B-419E-9DFC-437408909BC0}" = protocol=17 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearxp2\fearxp2.exe |
"{7F9BB4EF-7765-43F6-93D7-779214B968B4}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2serverlauncher.exe |
"{8010A8C9-914F-49FB-95A1-9C2016E7F142}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{873337E0-353E-4218-9AE3-447D9D6E43C7}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{8B64D45E-4992-40EB-9172-BEF089BC3893}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{8E17D9FB-8F60-47FC-990D-2233E8B6475D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{91753543-A6BD-4C9E-87BB-766FA8823BC0}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{993AF8B9-ECDB-4ADF-A98A-919B5E815DE0}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{9A5577DF-46EB-47A8-B519-359DAA6DF1FC}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{9B13A667-8292-4E2D-9FF3-45AACF0469C2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9EFE4AFC-8352-4D44-A436-00F3A8464BCC}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9F7D30AB-DA60-4159-AF43-3C85F126AA6B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A016A4F7-4615-43F8-8F4F-80586F853B2A}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{AC4CB6FE-0CA3-4F32-B345-7E197120EDDD}" = protocol=6 | dir=out | app=system |
"{B1F39C29-B89C-45D8-BF20-5EC9CA0AA92F}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2serverlauncher.exe |
"{B3983588-BA59-4C72-A13F-DCA8A47E3A47}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BAB7D5EF-E230-4B19-AFB7-21497C8DA676}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{BBCDF3F9-4B4A-44D6-A3B9-C04FFB992629}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BC9256E4-CCFC-4F6A-BAF4-52A8257EE45B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{C0373EE3-C2EC-42A4-988A-350145121ECA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe |
"{C68921F0-6057-4398-844E-590218811EF7}" = protocol=6 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fear.exe |
"{CB4E6272-BEC7-4465-86E7-8D159F549C5A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CE71FDA6-6A8C-4ADF-B22A-2750DC1756A9}" = protocol=17 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fear.exe |
"{D2752B15-0C3E-4C82-8608-839F34410113}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{D3B9513A-C164-43DB-BC4C-BD97A357A865}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{DB2F90FB-42E2-4059-B1E0-3EF67549F1E9}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{DC3D2F63-CDEE-499F-8BE4-6FB05C374852}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{DE91D14C-6889-4CD5-90C4-0F40A080E382}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{DFBC246E-FE0D-403F-8150-EB7FB84FBF8C}" = protocol=17 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearxp\fearxp.exe |
"{E570DD4F-4C1C-4F4F-84B1-D66393273B1F}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{F16A7375-0E1F-4570-B6D3-6CC65ED7CC4E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{F20D0CE0-77A8-4F1A-B84C-DD6E7C60B560}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{F426121B-D17A-4BD1-A946-E1CEDFDE8676}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{F4FC8E6B-88CF-44D6-A65E-F412C5A17FA1}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"TCP Query User{29D6D03F-1E06-4815-A3B9-BD78611B8DB5}C:\program files (x86)\wb games\fear ultimate shooter\fear\fearmp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearmp.exe |
"UDP Query User{83BE3028-5A36-441F-859F-0671C70EAF0E}C:\program files (x86)\wb games\fear ultimate shooter\fear\fearmp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\wb games\fear ultimate shooter\fear\fearmp.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{3690900F-85EA-447F-BAD1-5CA25AA9B627}" = HP Deskjet F2200 All-In-One Driver Software 13.0 Rel. 3
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Smart Web Printing" = HP Smart Web Printing 4.51
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{2BB0BDFF-E193-42A0-90BE-2D59441E51D2}" = F2200
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}" = OpenOffice.org 3.4
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5E1375CB-6792-4464-8715-CC3EC83D48FA}" = VirtualDJ Home FREE
"{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}" = GameSpy Comrade
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{8D797CA6-C708-4541-B731-779CC9863A07}" = FEAR_Installer_Fix
"{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed™ Most Wanted
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.03) - Deutsch
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C03D7CF4-E172-421F-8209-667BAF0BEA1C}" = F.E.A.R. Ultimate Shooter Edition
"{C222566F-1C50-4ECD-A01E-77F9C4B95458}" = DJ_AIO_03_F2200_Software_Min
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{DC635845-46D3-404B-BCB1-FC4A91091AFA}" = SmartWebPrinting
"{F2835483-37F2-4123-B4FE-0E77D58447F2}" = Far Cry 2
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.17
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.83
"Free YouTube Download_is1" = Free YouTube Download version 3.1.35.903
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.35.1031
"Google Chrome" = Google Chrome
"HDD Health_is1" = HDD Health v3.3 Beta
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013
"PunkBusterSvc" = PunkBuster Services
"Steam App 55150" = Warhammer 40,000 Space Marine
"VLC media player" = VLC media player 2.0.6
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 11.06.2013 19:29:13 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel:
0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x031e8520 ID des fehlerhaften Prozesses:
0x700 Startzeit der fehlerhaften Anwendung: 0x01ce66f8e9274b85 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: unknown Berichtskennung: b8edbd3e-d2ee-11e2-ab55-00238b5f38c4
Error - 11.06.2013 19:52:50 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel:
0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0bfad708 ID des fehlerhaften Prozesses:
0x9e0 Startzeit der fehlerhaften Anwendung: 0x01ce66fb9271a83e Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: unknown Berichtskennung: 0602f9e6-d2f2-11e2-ab55-00238b5f38c4
Error - 13.06.2013 10:56:14 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0004866a ID des fehlerhaften Prozesses:
0x704 Startzeit der fehlerhaften Anwendung: 0x01ce684521552bc7 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: 643a909d-d439-11e2-a02c-00238b5f38c4
Error - 13.06.2013 10:56:21 | Computer Name = Wirthmann-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error - 13.06.2013 10:56:21 | Computer Name = Wirthmann-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error - 13.06.2013 10:56:21 | Computer Name = Wirthmann-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error - 13.06.2013 11:15:45 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0004866a ID des fehlerhaften Prozesses:
0x118c Startzeit der fehlerhaften Anwendung: 0x01ce68462cf3b84a Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: 1e0c8a9a-d43c-11e2-a02c-00238b5f38c4
Error - 13.06.2013 11:44:51 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0004866a ID des fehlerhaften Prozesses:
0xa4c Startzeit der fehlerhaften Anwendung: 0x01ce6848e6b0efdc Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: 2ef86898-d440-11e2-a02c-00238b5f38c4
Error - 13.06.2013 12:32:05 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0004866a ID des fehlerhaften Prozesses:
0xfb0 Startzeit der fehlerhaften Anwendung: 0x01ce684eec7586a5 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: c83163a0-d446-11e2-a02c-00238b5f38c4
Error - 13.06.2013 13:44:24 | Computer Name = Wirthmann-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: avp.exe, Version: 13.0.1.4210, Zeitstempel:
0x509157b4 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0004866a ID des fehlerhaften Prozesses:
0x688 Startzeit der fehlerhaften Anwendung: 0x01ce6854d174658c Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: e28827d2-d450-11e2-a02c-00238b5f38c4
[ System Events ]
Error - 02.06.2013 06:12:13 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 02.06.2013 07:18:10 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet.
Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 02.06.2013 08:15:26 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7034
Description = Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet. Dies
ist bereits 3 Mal passiert.
Error - 03.06.2013 10:44:10 | Computer Name = Wirthmann-PC | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 03.06.2013 10:44:10 | Computer Name = Wirthmann-PC | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 03.06.2013 11:08:43 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 03.06.2013 11:31:42 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet.
Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 03.06.2013 11:56:46 | Computer Name = Wirthmann-PC | Source = Service Control Manager | ID = 7034
Description = Dienst "Kaspersky Anti-Virus Service" wurde unerwartet beendet. Dies
ist bereits 3 Mal passiert.
Error - 04.06.2013 11:22:44 | Computer Name = Wirthmann-PC | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 04.06.2013 11:22:44 | Computer Name = Wirthmann-PC | Source = atikmdag | ID = 43029
Description = Display is not active
< End of report >
--- --- --- |
Kaspersky Internet Security startet und beendet in regelmäßigen Abständen
(https://www.trojaner-board.de/136536-kaspersky-internet-security-startet-beendet-regelmaessigen-abstaenden.html)