Tommyfighter | 26.04.2012 16:48 | 1. defender ist abgeschaltet
nur bei
? Unter Dienste:
Start -> Ausführen -> "Services.msc" -> (reinschreiben ohne ""-> OK" - "Eigenschaften"-> "Stop" -> Starttyp "Deaktiviert" auswählen
da hab ich kein "eigenschaften" gefunden.
2. spybot ist deistalliert
3. hotspotshield ist deinstalliert
4. mach ich in zukunft
5. da war schon immer "kein proxy" angehakt und ich hab da auch meines wissens nie was geändert.
6. ZA ist deinstalliert
7. hab ich gemacht Code:
All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
C:\Programme\ICQ6Toolbar\ICQToolBar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{c95a4e8e-816d-4655-8c79-d736da1adb6d} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c95a4e8e-816d-4655-8c79-d736da1adb6d}\ not found.
File C:\Programme\Hotspot_Shield\tbHot0.dll not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{40c3cc16-7269-4b32-9531-17f2950fb06f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{40c3cc16-7269-4b32-9531-17f2950fb06f}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File C:\Programme\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{c95a4e8e-816d-4655-8c79-d736da1adb6d} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c95a4e8e-816d-4655-8c79-d736da1adb6d}\ not found.
File C:\Programme\Hotspot_Shield\tbHot0.dll not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}\ not found.
File C:\Programme\ZoneAlarm-Sicherheit\prxtbZone.dll not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "Winload Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}" removed from browser.search.defaulturl
Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q=" removed from keyword.URL
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found.
C:\Programme\Mozilla Firefox\searchplugins\bing.xml moved successfully.
C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml moved successfully.
C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml moved successfully.
C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01eac52e-966e-11df-962e-001fd026e792}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01eac52e-966e-11df-962e-001fd026e792}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01eac52e-966e-11df-962e-001fd026e792}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01eac52e-966e-11df-962e-001fd026e792}\ not found.
File F:\USBAutoRun.exe not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
ADS C:\ProgramData\TEMP:05EE1EEF deleted successfully.
========== FILES ==========
C:\Users\Tommy\AppData\Roaming\UAs folder moved successfully.
C:\Users\Tommy\AppData\Roaming\xmldm folder moved successfully.
C:\Users\Tommy\AppData\Roaming\kock folder moved successfully. < ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Tommy\Desktop\cmd.bat deleted successfully.
C:\Users\Tommy\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56468 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
User: Tommy
->Temp folder emptied: 388185242 bytes
->Temporary Internet Files folder emptied: 204847452 bytes
->Java cache emptied: 7587188 bytes
->FireFox cache emptied: 55219665 bytes
->Flash cache emptied: 81937553 bytes
User: UpdatusUser
->Temp folder emptied: 899096 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 757760 bytes
%systemroot%\System32 .tmp files removed: 1610800 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 30726397 bytes
RecycleBin emptied: 776 bytes
Total Files Cleaned = 736,00 mb
OTL by OldTimer - Version 3.2.42.0 log created on 04262012_161156
Files\Folders moved on Reboot...
Registry entries deleted on Reboot... 8. ich hab keine ahnung was des sein soll.
aber in jeder der dateien findet er ne AcroFF.txt datei. in machen ist auch eine chrome.manifest datei. ka ob des was weiterhilft.
9. ist aktualisiert
10. ist auch aktualisiert
11. hab ich zur kenntnis genommen
12. habe ich durchgeführt
ich hab aber nur in der registry die fehler behoben.
beim cleaner selbst hab ich noch nichts gecleant. soll ich da noch?
13.
OTL Logfile: Code:
OTL logfile created on: 26.04.2012 17:33:50 - Run 3
OTL by OldTimer - Version 3.2.42.0 Folder = C:\Users\Tommy\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,25 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 60,67% Memory free
6,68 Gb Paging File | 5,24 Gb Available in Paging File | 78,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,82 Gb Total Space | 145,00 Gb Free Space | 31,13% Space Free | Partition Type: NTFS
Drive D: | 464,23 Gb Total Space | 53,00 Gb Free Space | 11,42% Space Free | Partition Type: NTFS
Computer Name: TOMMY-PC | User Name: Tommy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.04.26 00:44:37 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Tommy\Desktop\OTL.exe
PRC - [2012.04.16 20:51:46 | 000,066,992 | ---- | M] (Raptr, Inc) -- C:\Programme\Raptr\raptr.exe
PRC - [2012.04.16 20:51:46 | 000,043,952 | ---- | M] (Raptr, Inc) -- C:\Programme\Raptr\raptr_im.exe
PRC - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.04.04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.04.04 07:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.03.13 06:36:40 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2011.10.11 15:00:02 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011.10.11 14:59:49 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2011.10.11 14:59:37 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011.10.11 14:59:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.08.03 13:50:00 | 000,812,648 | ---- | M] (NVIDIA Corporation) -- C:\Programme\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011.08.03 13:50:00 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Programme\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) -- C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.04.12 13:44:57 | 000,119,608 | ---- | M] (ICQ, LLC.) -- C:\Programme\ICQ7.4\ICQ.exe
PRC - [2010.05.08 19:58:50 | 000,560,640 | ---- | M] (Andreas Sammann) -- C:\Programme\C2DtoG15\SystoG15Svc.exe
PRC - [2010.05.08 14:50:58 | 000,557,568 | ---- | M] (Andreas Sammann) -- C:\Programme\C2DtoG15\C2DtoG15.exe
PRC - [2010.04.16 22:12:28 | 003,872,080 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Messenger\msnmsgr.exe
PRC - [2010.04.16 18:36:42 | 000,026,480 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Contacts\wlcomm.exe
PRC - [2010.02.18 12:49:40 | 000,357,448 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\LGDevAgt.exe
PRC - [2010.02.18 12:47:34 | 003,203,144 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\G-series Software\LGDCore.exe
PRC - [2010.02.18 12:24:42 | 001,573,448 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
PRC - [2009.08.18 11:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2009.08.18 11:29:22 | 000,183,152 | ---- | M] (Microsoft Corporation) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2009.04.11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe
PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.10.23 17:45:14 | 000,307,200 | ---- | M] (T-Systems Enterprise Services GmbH) -- C:\Programme\DSL-Manager\DslMgrSvc.exe
PRC - [2008.05.13 18:07:24 | 000,080,392 | ---- | M] () -- C:\Programme\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2008.04.15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008.04.15 17:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\GUI.exe
PRC - [2008.01.21 04:35:20 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2008.01.21 04:35:20 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnscfg.exe
PRC - [2007.11.26 14:51:00 | 001,085,440 | ---- | M] (T-Systems Enterprise Services GmbH) -- C:\Programme\DSL-Manager\DslMgr.exe
========== Modules (No Company Name) ==========
MOD - [2012.04.25 12:51:04 | 000,238,912 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\11019\components\AcroFF019.dll
MOD - [2012.04.12 03:02:55 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\09b9cd1c630210237b5b46d9943e1946\System.Windows.Forms.ni.dll
MOD - [2012.04.12 03:02:48 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\61759b9905aed9a87347d04b5fad046b\System.Drawing.ni.dll
MOD - [2012.03.13 06:36:53 | 001,969,080 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll
MOD - [2012.02.17 19:53:28 | 000,494,592 | ---- | M] () -- C:\Programme\Raptr\PyQt4.QtNetwork.pyd
MOD - [2012.02.17 19:53:24 | 001,661,952 | ---- | M] () -- C:\Programme\Raptr\PyQt4.QtCore.pyd
MOD - [2012.02.17 19:53:20 | 000,313,856 | ---- | M] () -- C:\Programme\Raptr\PyQt4.QtWebKit.pyd
MOD - [2012.02.17 19:53:06 | 005,809,664 | ---- | M] () -- C:\Programme\Raptr\PyQt4.QtGui.pyd
MOD - [2012.02.17 19:52:26 | 000,067,584 | ---- | M] () -- C:\Programme\Raptr\sip.pyd
MOD - [2012.02.16 13:03:33 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7fd6c62196829d1e2dce5a253145d51a\System.Configuration.ni.dll
MOD - [2012.02.16 12:38:06 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d9f0f1dc8cbdb81f1ba122d77a6ab710\System.Xml.ni.dll
MOD - [2012.02.16 12:35:59 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c50133cb67d7c013fa31e1ffb942060b\System.ni.dll
MOD - [2011.11.21 04:20:46 | 001,949,696 | ---- | M] () -- C:\Programme\Raptr\libtorrent.pyd
MOD - [2011.10.24 20:49:56 | 002,717,595 | ---- | M] () -- C:\Programme\Raptr\heliotrope._purple.pyd
MOD - [2011.10.13 12:25:48 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\bcb66dbad2b45d05235b37a02f737eb5\Accessibility.ni.dll
MOD - [2011.10.13 12:03:16 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll
MOD - [2011.09.09 01:47:40 | 001,183,699 | ---- | M] () -- C:\Programme\Raptr\liboscar.dll
MOD - [2011.09.09 01:47:36 | 001,640,221 | ---- | M] () -- C:\Programme\Raptr\libjabber.dll
MOD - [2011.09.09 01:47:32 | 001,052,194 | ---- | M] () -- C:\Programme\Raptr\libymsg.dll
MOD - [2011.09.09 01:47:22 | 000,495,680 | ---- | M] () -- C:\Programme\Raptr\plugins\libaim.dll
MOD - [2011.09.09 01:47:22 | 000,483,306 | ---- | M] () -- C:\Programme\Raptr\plugins\libicq.dll
MOD - [2011.09.09 01:47:16 | 000,655,356 | ---- | M] () -- C:\Programme\Raptr\plugins\libirc.dll
MOD - [2011.09.09 01:47:16 | 000,603,326 | ---- | M] () -- C:\Programme\Raptr\plugins\ssl-nss.dll
MOD - [2011.09.09 01:47:14 | 000,497,782 | ---- | M] () -- C:\Programme\Raptr\plugins\libyahoojp.dll
MOD - [2011.09.09 01:47:14 | 000,474,199 | ---- | M] () -- C:\Programme\Raptr\plugins\ssl.dll
MOD - [2011.09.09 01:47:10 | 001,306,387 | ---- | M] () -- C:\Programme\Raptr\plugins\libmsn.dll
MOD - [2011.09.09 01:47:04 | 000,565,461 | ---- | M] () -- C:\Programme\Raptr\plugins\libxmpp.dll
MOD - [2011.09.09 01:46:56 | 000,506,276 | ---- | M] () -- C:\Programme\Raptr\plugins\libyahoo.dll
MOD - [2011.08.03 03:31:28 | 000,255,592 | ---- | M] () -- C:\Programme\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.02.15 20:17:28 | 001,213,633 | ---- | M] () -- C:\Programme\Raptr\libxml2-2.dll
MOD - [2011.02.15 20:17:28 | 000,417,501 | ---- | M] () -- C:\Programme\Raptr\sqlite3.dll
MOD - [2011.01.06 16:35:33 | 000,007,168 | ---- | M] () -- C:\Users\Tommy\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GermanyRain.gadget\GermanyRainRadar.dll
MOD - [2010.11.23 01:06:22 | 000,055,808 | ---- | M] () -- C:\Programme\Raptr\zlib1.dll
MOD - [2010.11.23 00:57:34 | 000,167,936 | ---- | M] () -- C:\Programme\Raptr\win32gui.pyd
MOD - [2010.11.23 00:57:34 | 000,111,104 | ---- | M] () -- C:\Programme\Raptr\win32file.pyd
MOD - [2010.11.23 00:57:34 | 000,096,256 | ---- | M] () -- C:\Programme\Raptr\win32api.pyd
MOD - [2010.11.23 00:57:34 | 000,036,352 | ---- | M] () -- C:\Programme\Raptr\win32process.pyd
MOD - [2010.11.23 00:57:18 | 000,141,312 | ---- | M] () -- C:\Programme\Raptr\gobject._gobject.pyd
MOD - [2010.11.23 00:57:06 | 000,263,168 | ---- | M] () -- C:\Programme\Raptr\win32com.shell.shell.pyd
MOD - [2010.11.23 00:56:56 | 000,354,304 | ---- | M] () -- C:\Programme\Raptr\pythoncom26.dll
MOD - [2010.11.23 00:56:56 | 000,110,592 | ---- | M] () -- C:\Programme\Raptr\pywintypes26.dll
MOD - [2010.11.23 00:56:26 | 000,324,608 | ---- | M] () -- C:\Programme\Raptr\PIL._imaging.pyd
MOD - [2010.11.23 00:56:02 | 000,805,376 | ---- | M] () -- C:\Programme\Raptr\_ssl.pyd
MOD - [2010.11.23 00:56:02 | 000,583,680 | ---- | M] () -- C:\Programme\Raptr\unicodedata.pyd
MOD - [2010.11.23 00:56:02 | 000,356,864 | ---- | M] () -- C:\Programme\Raptr\_hashlib.pyd
MOD - [2010.11.23 00:56:02 | 000,127,488 | ---- | M] () -- C:\Programme\Raptr\pyexpat.pyd
MOD - [2010.11.23 00:56:02 | 000,087,040 | ---- | M] () -- C:\Programme\Raptr\_ctypes.pyd
MOD - [2010.11.23 00:56:02 | 000,044,544 | ---- | M] () -- C:\Programme\Raptr\_sqlite3.pyd
MOD - [2010.11.23 00:56:02 | 000,043,008 | ---- | M] () -- C:\Programme\Raptr\_socket.pyd
MOD - [2010.11.23 00:56:02 | 000,009,216 | ---- | M] () -- C:\Programme\Raptr\winsound.pyd
MOD - [2010.09.09 00:51:38 | 001,377,448 | ---- | M] () -- C:\Programme\Raptr\plugins\libqq.dll
MOD - [2010.05.28 16:05:58 | 002,342,983 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\Normal.dll
MOD - [2010.05.28 16:04:04 | 000,110,592 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\AMD8.dll
MOD - [2010.05.28 14:15:02 | 000,344,131 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\work.dll
MOD - [2010.05.27 10:08:58 | 000,139,264 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\OCK.dll
MOD - [2010.05.25 14:00:34 | 000,290,816 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\MFCCPU.dll
MOD - [2010.05.21 13:29:08 | 000,196,608 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\GVTunner.dll
MOD - [2010.03.15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll
MOD - [2010.03.12 05:40:58 | 004,449,632 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\platform.dll
MOD - [2010.03.12 05:40:56 | 000,423,256 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\device.dll
MOD - [2010.01.12 17:09:20 | 000,102,400 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\SF.dll
MOD - [2009.12.22 16:52:04 | 000,102,400 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\ycc.dll
MOD - [2009.10.21 14:07:06 | 000,106,496 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\HM.dll
MOD - [2009.03.30 06:42:12 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll
MOD - [2008.05.07 15:22:58 | 000,102,400 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\CIAMIB.dll
MOD - [2008.03.25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\GUI.exe
MOD - [2006.12.10 22:51:08 | 000,077,824 | R--- | M] () -- C:\Programme\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2006.12.10 22:51:08 | 000,065,536 | R--- | M] () -- C:\Programme\HP\Digital Imaging\bin\crm\xmlparse.dll
MOD - [2003.02.14 14:11:46 | 000,102,400 | ---- | M] () -- C:\Programme\GIGABYTE\ET6\Sound.dll
========== Win32 Services (SafeList) ==========
SRV - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.04.04 07:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.12.15 02:16:55 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.10.11 14:59:49 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.10.11 14:59:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.04.22 14:21:10 | 000,092,592 | ---- | M] (TomTom) [Disabled | Stopped] -- C:\Programme\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2010.11.21 12:49:24 | 000,247,608 | ---- | M] () [Disabled | Stopped] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010.05.08 19:58:50 | 000,560,640 | ---- | M] (Andreas Sammann) [Auto | Running] -- C:\Programme\C2DtoG15\SystoG15Svc.exe -- (SystoG15Service)
SRV - [2010.03.29 08:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Programme\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2009.08.18 11:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009.08.10 10:24:08 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2011.SP2\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV - [2008.10.23 17:45:14 | 000,307,200 | ---- | M] (T-Systems Enterprise Services GmbH) [On_Demand | Running] -- C:\Programme\DSL-Manager\DslMgrSvc.exe -- (TDslMgrService)
SRV - [2008.05.13 18:07:24 | 000,080,392 | ---- | M] () [Auto | Running] -- C:\Programme\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2008.04.15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008.01.21 04:35:20 | 000,896,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2008.01.21 04:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2002.01.20 19:02:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\papyjoy.sys -- (papyjoy)
SRV - [2002.01.20 19:02:54 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\papycpu2.sys -- (papycpu2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva391.sys -- (XDva391)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva390.sys -- (XDva390)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva360.sys -- (XDva360)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\WPRO_40_1340.sys -- (WPRO_40_1340) WinPcap Packet Driver (WPRO_40_1340)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2012.04.26 17:24:50 | 000,024,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\GVTDrv.sys -- (GVTDrv)
DRV - [2012.04.26 17:24:34 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.02.15 11:27:18 | 000,137,416 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.10.11 15:00:01 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.10.11 15:00:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011.08.03 13:50:00 | 010,304,104 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011.03.26 14:28:19 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2011.03.26 14:28:19 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2011.01.02 15:37:24 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\etdrv.sys -- (etdrv)
DRV - [2010.09.22 21:19:02 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\taphss.sys -- (taphss)
DRV - [2010.06.17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.11.23 17:37:18 | 000,014,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LGVirHid.sys -- (LGVirHid)
DRV - [2009.11.23 17:37:08 | 000,019,720 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV - [2009.08.07 23:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2011.SP2\WNt500x86\sandra.sys -- (SANDRA)
DRV - [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2008.11.19 17:00:00 | 000,009,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programme\RivaTuner v2.20\RivaTuner32.sys -- (RivaTuner32)
DRV - [2008.11.11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008.11.11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008.11.11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008.07.26 22:30:00 | 000,014,416 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Running] -- C:\Programme\C2DtoG15\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2008.07.03 12:59:54 | 000,193,696 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\windrvr6.sys -- (WinDriver6)
DRV - [2008.02.14 08:56:02 | 000,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2007.09.12 17:24:00 | 000,026,816 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\DslTestSp5.sys -- (dsltestSp5)
DRV - [2007.08.08 18:54:10 | 000,028,968 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\ATITool.sys -- (ATITool)
DRV - [2007.08.01 14:49:00 | 000,016,448 | ---- | M] (T-Systems Enterprise Services GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\dslmnlwf.sys -- (DslMNLwf)
DRV - [2006.06.06 09:51:06 | 000,022,528 | ---- | M] (WALTOP International Corp.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aiptektp.sys -- (aiptektp)
DRV - [2003.10.15 18:52:50 | 000,174,530 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ov519vid.sys -- (ovt519)
DRV - [2002.01.20 19:02:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown (-1) | Running] -- C:\Windows\System32\drivers\papyjoy.sys -- (papyjoy)
DRV - [2002.01.20 19:02:54 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown (-1) | Running] -- C:\Windows\System32\drivers\papycpu2.sys -- (papycpu2)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..network.proxy.http: "localhost"
FF - prefs.js..network.proxy.http_port: 9666
FF - prefs.js..network.proxy.socks: "localhost"
FF - prefs.js..network.proxy.socks_port: 9050
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.ssl: "localhost"
FF - prefs.js..network.proxy.ssl_port: 9666
FF - prefs.js..network.proxy.type: 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tommy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.26 23:04:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.26 16:32:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 11.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011.12.12 21:57:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 11.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\extensions\\{184AA5E6-741D-464a-820E-94B3ABC2F3B4}: C:\Users\Tommy\AppData\Roaming\11019 [2012.04.25 12:51:04 | 000,000,000 | ---D | M]
[2011.10.05 21:19:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tommy\AppData\Roaming\mozilla\Extensions
[2011.04.27 01:03:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tommy\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2011.10.05 21:19:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tommy\AppData\Roaming\mozilla\Extensions\prism@developer.mozilla.org
[2012.03.28 22:12:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tommy\AppData\Roaming\mozilla\Firefox\Profiles\dnmzewow.default\extensions
[2012.03.28 22:12:16 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Tommy\AppData\Roaming\mozilla\Firefox\Profiles\dnmzewow.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.01.24 03:36:30 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Tommy\AppData\Roaming\mozilla\Firefox\Profiles\dnmzewow.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.03.08 14:04:12 | 000,000,000 | ---D | M] (ZoneAlarm-Sicherheit Community Toolbar) -- C:\Users\Tommy\AppData\Roaming\mozilla\Firefox\Profiles\dnmzewow.default\extensions\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}
[2011.08.31 11:25:08 | 000,000,917 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\dnmzewow.default\searchplugins\conduit.xml
[2012.04.07 01:18:12 | 000,000,950 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\dnmzewow.default\searchplugins\icqplugin-1.xml
[2010.09.18 22:53:17 | 000,000,950 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\dnmzewow.default\searchplugins\icqplugin-2.xml
[2010.10.21 15:45:25 | 000,000,950 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\dnmzewow.default\searchplugins\icqplugin-3.xml
[2011.03.30 16:14:34 | 000,001,042 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\dnmzewow.default\searchplugins\icqplugin.xml
[2012.04.26 16:26:38 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.04.26 16:26:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2012.04.25 12:51:04 | 000,000,000 | ---D | M] (Java Link Helper) -- C:\USERS\TOMMY\APPDATA\ROAMING\11019
[2012.03.13 06:38:06 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.04.26 16:26:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012.03.13 07:23:34 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.03.13 07:23:34 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
========== Chrome ==========
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C95A4E8E-816D-4655-8C79-D736DA1ADB6D} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {FC2B76FC-2132-4D80-A9A3-1F5C6E49066B} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [IAAnotif] C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.4\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [PlayNC Launcher] File not found
O4 - HKCU..\Run: [Raptr] C:\Programme\Raptr\raptrstub.exe (Raptr, Inc)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [EasyTuneVI] C:\Programme\GIGABYTE\ET6\ETcall.exe ()
O4 - Startup: C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\C2DtoG15.lnk = C:\Programme\C2DtoG15\C2DtoG15.exe (Andreas Sammann)
O4 - Startup: C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk = C:\Programme\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH)
O4 - Startup: C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk = C:\Programme\Xfire\Xfire.exe (Xfire Inc.)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Tommy\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Programme\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Programme\ICQ7.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2D7C1B26-69B5-403D-8482-29F3ADB3332C}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Tommy\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Tommy\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012.04.26 16:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012.04.26 16:31:53 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012.04.26 16:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.04.26 16:26:36 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012.04.26 16:26:36 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012.04.26 16:26:36 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012.04.26 16:21:52 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\xmldm
[2012.04.26 16:11:56 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.04.26 16:05:21 | 000,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2012.04.26 01:52:59 | 003,654,896 | ---- | C] (Piriform Ltd) -- C:\Users\Tommy\Desktop\ccsetup318.exe
[2012.04.26 00:44:33 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Tommy\Desktop\OTL.exe
[2012.04.25 20:21:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.04.25 20:21:02 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.04.25 12:51:04 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11019
[2012.04.24 11:10:37 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11018
[2012.04.23 11:58:15 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11017
[2012.04.21 15:15:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2012.04.21 14:42:22 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11016
[2012.04.18 19:49:57 | 000,000,000 | RH-D | C] -- C:\Users\Tommy\AppData\Roaming\SecuROM
[2012.04.18 19:49:22 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CAPCOM
[2012.04.18 19:30:12 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2012.04.18 19:30:09 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2012.04.17 12:02:36 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11015
[2012.04.16 20:38:39 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11014
[2012.04.13 12:45:05 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11013
[2012.04.12 14:01:57 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11012
[2012.04.12 13:04:45 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11010
[2012.04.12 03:07:53 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012.04.12 03:07:52 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012.04.12 03:07:51 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012.04.12 03:07:50 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012.04.12 03:07:50 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012.04.12 03:07:49 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012.04.12 03:06:38 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012.04.12 03:06:38 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012.04.11 20:30:23 | 000,000,000 | ---D | C] -- C:\Users\Tommy\AppData\Roaming\11009
[2012.04.03 18:41:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESEdit.com 2012 Patch
[1 C:\Users\Tommy\AppData\Roaming\*.tmp files -> C:\Users\Tommy\AppData\Roaming\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.04.26 17:28:49 | 000,607,366 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.04.26 17:28:48 | 000,641,772 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012.04.26 17:28:48 | 000,132,410 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012.04.26 17:28:48 | 000,109,296 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.04.26 17:25:56 | 000,000,680 | ---- | M] () -- C:\Users\Tommy\AppData\Local\d3d9caps.dat
[2012.04.26 17:24:50 | 000,024,944 | ---- | M] () -- C:\Windows\System32\drivers\GVTDrv.sys
[2012.04.26 17:24:50 | 000,000,004 | ---- | M] () -- C:\Windows\System32\GVTunner.ref
[2012.04.26 17:24:34 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2012.04.26 17:24:14 | 000,004,880 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.04.26 17:24:14 | 000,004,880 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.04.26 17:24:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.04.26 17:24:06 | 3487,850,496 | -HS- | M] () -- C:\hiberfil.sys
[2012.04.26 17:22:39 | 000,000,796 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk
[2012.04.26 16:32:16 | 000,001,897 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012.04.26 16:26:23 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012.04.26 16:26:23 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012.04.26 16:26:23 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012.04.26 16:26:22 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012.04.26 11:52:26 | 000,000,809 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.04.26 01:53:10 | 003,654,896 | ---- | M] (Piriform Ltd) -- C:\Users\Tommy\Desktop\ccsetup318.exe
[2012.04.26 00:44:37 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Tommy\Desktop\OTL.exe
[2012.04.26 00:35:03 | 000,073,216 | ---- | M] () -- C:\Users\Tommy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.04.25 20:21:05 | 000,000,911 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.25 18:01:22 | 000,000,016 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\blckdom.res
[2012.04.25 14:07:27 | 000,000,048 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\urhtps.dat
[2012.04.24 11:10:39 | 000,226,792 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\AcroIEHelpe109.dll
[2012.04.24 11:10:39 | 000,007,368 | ---- | M] () -- C:\Users\Tommy\AppData\Roaming\BAcroIEHelpe109.dll
[2012.04.18 19:15:41 | 001,047,158 | ---- | M] () -- C:\Users\Tommy\Desktop\Bubble_Wallpaper.jpg
[2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[1 C:\Users\Tommy\AppData\Roaming\*.tmp files -> C:\Users\Tommy\AppData\Roaming\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.04.26 16:32:16 | 000,001,897 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012.04.26 16:32:16 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012.04.26 11:52:26 | 000,000,809 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.04.25 20:21:05 | 000,000,911 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.24 11:10:39 | 000,226,792 | ---- | C] () -- C:\Users\Tommy\AppData\Roaming\AcroIEHelpe109.dll
[2012.04.24 11:10:39 | 000,007,368 | ---- | C] () -- C:\Users\Tommy\AppData\Roaming\BAcroIEHelpe109.dll
[2012.04.22 00:21:57 | 3487,850,496 | -HS- | C] () -- C:\hiberfil.sys
[2012.04.18 19:10:52 | 001,047,158 | ---- | C] () -- C:\Users\Tommy\Desktop\Bubble_Wallpaper.jpg
[2012.04.12 18:10:30 | 000,000,048 | ---- | C] () -- C:\Users\Tommy\AppData\Roaming\urhtps.dat
[2012.04.11 20:30:19 | 000,000,016 | ---- | C] () -- C:\Users\Tommy\AppData\Roaming\blckdom.res
[2012.03.13 21:47:28 | 000,017,408 | ---- | C] () -- C:\Users\Tommy\AppData\Local\WebpageIcons.db
[2012.02.29 21:21:24 | 000,042,392 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2011.12.05 23:29:47 | 000,146,190 | ---- | C] () -- C:\Windows\hpoins18.dat.temp
[2011.12.05 23:29:47 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat.temp
[2011.12.05 23:28:44 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011.11.09 18:12:00 | 000,019,400 | ---- | C] () -- C:\Windows\prodsett_copy.ini
[2011.10.13 01:41:51 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2011.09.15 11:03:59 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2011.09.09 17:47:26 | 000,036,892 | ---- | C] () -- C:\Windows\System32\bassmod.dll
[2011.08.03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011.05.16 12:55:28 | 011,010,048 | ---- | C] () -- C:\Users\Tommy\AppData\Roaming\Sandra.mdb
[2011.04.13 15:07:49 | 000,001,984 | ---- | C] () -- C:\Windows\System32\drivers\papycpu2.sys
[2011.04.13 15:07:49 | 000,001,856 | ---- | C] () -- C:\Windows\System32\drivers\papyjoy.sys
[2011.04.13 15:06:50 | 000,000,202 | ---- | C] () -- C:\Windows\SIERRA.INI
[2011.04.12 13:44:06 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011.03.26 14:28:19 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2011.03.26 14:28:19 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2011.02.14 13:42:58 | 000,000,552 | ---- | C] () -- C:\Users\Tommy\AppData\Local\d3d8caps.dat
[2011.01.06 18:04:20 | 000,000,000 | ---- | C] () -- C:\Windows\System32\cd.dat
[2011.01.06 17:45:44 | 000,074,752 | ---- | C] () -- C:\Windows\System32\CLEyeDevices.dll
[2010.12.06 03:16:11 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll
[2010.11.04 03:16:50 | 000,000,093 | ---- | C] () -- C:\Users\Tommy\AppData\Local\fusioncache.dat
[2010.10.20 12:01:05 | 000,221,291 | ---- | C] () -- C:\Windows\Imei_dll.dll
[2010.10.20 12:01:05 | 000,040,960 | ---- | C] () -- C:\Windows\Sublock.dll
[2010.08.27 21:28:46 | 000,053,248 | ---- | C] () -- C:\Windows\System32\CommonDL.dll
[2010.08.27 21:28:46 | 000,002,413 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini
[2010.07.23 18:18:52 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010.07.23 18:18:52 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010.07.20 16:25:39 | 000,073,216 | ---- | C] () -- C:\Users\Tommy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.19 11:10:06 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010.07.18 23:16:38 | 000,146,190 | ---- | C] () -- C:\Windows\hpoins18.dat
[2010.07.18 10:56:50 | 000,024,944 | ---- | C] () -- C:\Windows\System32\drivers\GVTDrv.sys
[2010.07.17 23:02:49 | 000,000,165 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010.07.17 13:37:10 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.07.17 13:02:17 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2010.07.17 12:58:09 | 000,000,680 | ---- | C] () -- C:\Users\Tommy\AppData\Local\d3d9caps.dat
========== LOP Check ==========
[2012.04.11 20:30:23 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11009
[2012.04.12 13:04:55 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11010
[2012.04.12 15:30:19 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11012
[2012.04.13 12:45:08 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11013
[2012.04.17 02:00:42 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11014
[2012.04.17 12:02:36 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11015
[2012.04.22 00:34:38 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11016
[2012.04.23 11:58:17 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11017
[2012.04.24 11:10:39 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11018
[2012.04.25 12:51:04 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\11019
[2011.01.08 03:38:53 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Activision
[2011.04.13 17:36:02 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\AnvSoft
[2010.07.17 13:23:41 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\CheckPoint
[2011.04.12 13:35:03 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\DeepBurner
[2012.01.24 03:36:36 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\DVDVideoSoft
[2011.04.24 13:17:59 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.11.10 01:41:07 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\GetRightToGo
[2012.04.26 17:24:50 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\ICQ
[2012.03.06 14:28:09 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Image Zone Express
[2011.11.18 00:37:42 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\LaunchPad
[2010.08.27 21:49:01 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\LG Electronics
[2011.06.23 23:38:07 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\LucasArts
[2010.10.07 23:43:54 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\OpenOffice.org
[2011.09.15 11:04:01 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\pdfforge
[2011.02.22 00:18:47 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Petroglyph
[2010.11.03 21:19:04 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Printer Info Cache
[2011.10.05 21:19:00 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Prism
[2011.09.23 01:41:20 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Quest3D
[2012.04.26 17:24:42 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Raptr
[2011.09.23 01:41:20 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Roaming
[2011.07.20 17:43:17 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Simfy
[2011.12.12 21:57:54 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\Thunderbird
[2011.04.27 01:03:56 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\TomTom
[2012.04.22 00:12:36 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\TS3Client
[2012.04.26 16:21:52 | 000,000,000 | ---D | M] -- C:\Users\Tommy\AppData\Roaming\xmldm
[2012.04.26 17:22:45 | 000,032,534 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report > --- --- ---
OTL Logfile: Code:
OTL Extras logfile created on: 26.04.2012 17:33:50 - Run 3
OTL by OldTimer - Version 3.2.42.0 Folder = C:\Users\Tommy\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,25 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 60,67% Memory free
6,68 Gb Paging File | 5,24 Gb Available in Paging File | 78,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,82 Gb Total Space | 145,00 Gb Free Space | 31,13% Space Free | Partition Type: NTFS
Drive D: | 464,23 Gb Total Space | 53,00 Gb Free Space | 11,42% Space Free | Partition Type: NTFS
Computer Name: TOMMY-PC | User Name: Tommy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{017A3BEC-B7BA-4BCB-B93D-F0AFA4F2FC84}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2011.sp2\wnt500x86\rpcsandrasrv.exe |
"{17BF2527-3D2C-4E27-A52A-335D765C9B71}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2011.sp2\rpcagentsrv.exe |
"{B4D26F88-212D-4814-AE61-E5025C3D2193}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{C9647509-994C-4A16-B4CA-EC7109561E02}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00620CC1-D498-4423-9896-CC5A77255AD5}" = protocol=6 | dir=in | app=d:\spiele\capcom\resident evil 5\re5dx10.exe |
"{01B24FCC-2E63-4DA1-84AC-9FC6D8C80AFC}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\fear2\fear2.exe |
"{04A02DE7-9BAB-494A-B528-1A32D0745159}" = protocol=17 | dir=in | app=d:\spiele\capcom\resident evil 5\re5dx9.exe |
"{05205A34-0373-4CB1-A7A0-AD1B184C2011}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{0631EAED-5859-4807-B74C-85F3B01193A9}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\orcs must die!\build\release\orcsmustdie.exe |
"{07B84C9C-8307-4494-8DFD-1DAF134E9023}" = protocol=6 | dir=in | app=d:\spiele\reality pump\two worlds\twoworlds.exe |
"{07DE5062-84F0-4B3D-B299-3544E3D391A7}" = protocol=17 | dir=in | app=d:\spiele\lucasarts\republic heroes\republic heroes.exe |
"{0D63082B-4CB1-4B9D-ABED-B4FE72C8C464}" = protocol=6 | dir=in | app=d:\spiele\capcom\resident evil 5\re5dx9.exe |
"{1120922E-2CFF-41D9-BA00-8CE71EA9FE22}" = protocol=17 | dir=in | app=d:\spiele\reality pump\two worlds\twoworlds_radeon.exe |
"{184BA749-E1D9-45F0-9262-555402C4F527}" = protocol=17 | dir=in | app=d:\spiele\world of warcraft\launcher.exe |
"{19EDD077-C8C4-4EE2-A320-DEDB7134B9DC}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\bulletstorm demo\binaries\win32\shippingpc-stormgame.exe |
"{1CB0E5CE-4F79-4E8A-BDF2-D5C39D886FAB}" = protocol=6 | dir=in | app=d:\spiele\star wars-the old republic\launcher.exe |
"{1DB4FF3C-0507-47EC-B8EA-C5EF4C8D86EB}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\lost planet extreme condition\lostplanetdx10.exe |
"{1E45F541-C265-4E80-AAAF-6E8AD018DC57}" = protocol=6 | dir=in | app=d:\spiele\reality pump\two worlds\twoworlds_radeon.exe |
"{23C56C71-059B-4021-B9C8-CD76219E796A}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{324851DB-58D2-4E7B-BAF2-E0996704E922}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\the secret of monkey island special edition\mise.exe |
"{35BA93CB-333C-4CF6-8725-11A17A243391}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\iron grip marauders\prism.exe |
"{3A589C88-CF25-42B8-9FA1-92497C882B7A}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\kane & lynch 2 - dog days\kl2.exe |
"{3AC095A9-3247-4C63-8473-3BD770B9C20B}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\lost planet extreme condition\lostplanetdx9.exe |
"{3E9D0BFA-3CE7-4FB1-A21B-57ADD51A3EE3}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{42377774-C2DE-4D34-B9F3-C32BBC1C7AD2}" = protocol=6 | dir=in | app=d:\spiele\star wars-the old republic\launcher.exe |
"{4392C986-9C66-4DC7-931C-D7C1025685F8}" = protocol=6 | dir=in | app=c:\spiele\volition inc\red faction guerrilla\rfg.exe |
"{4C140D38-27DC-4D28-BAE3-1E66BF97CEF1}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\empire total war demo\empire.exe |
"{50C5997D-B2D4-4F9B-B2F8-78B56D6DEA04}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{59E4CCF8-22B5-4C4F-87EE-06A1BB88D51D}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{60DFDA8D-4F6E-48B4-962B-2ADD5E106EEC}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{62757F24-4DFF-4168-9234-4D327FA7E047}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{651A1A49-015B-4C90-9DE9-832A7E8BA785}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\rusty hearts\clientlauncher.exe |
"{669BCEAE-EFCA-4731-B451-EF0D095218BB}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\rusty hearts\clientlauncher.exe |
"{6825AEE4-B11B-4EDB-8390-190C1A04BC1E}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\rise of immortals\roiclientr.exe |
"{69B164D5-A05D-47DF-9AF2-EA1822B42267}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{6F73E07A-155A-4446-A5EA-B735BDB4593B}" = protocol=17 | dir=in | app=d:\spiele\activision\ein quantum trost(tm)\jb_liveengine_s.exe |
"{725138F0-640F-4CAC-94EE-7C148F6A877D}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\lost planet extreme condition\lostplanetdx10.exe |
"{791F8798-EFB2-4E96-9020-C56D4FF7BEDD}" = protocol=17 | dir=in | app=d:\spiele\star wars-the old republic\launcher.exe |
"{79E3658D-84F3-4488-B3F1-96F6EE0F796D}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{7AD4D544-6D73-455A-BBFF-30551F72919F}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\empire total war demo\empire.exe |
"{7B6CB3B9-CDB5-4A24-90EF-E95202F4017B}" = protocol=17 | dir=in | app=d:\spiele\reality pump\two worlds\twoworlds.exe |
"{82E761B3-68B0-48FE-86AE-07A06B46FFFA}" = protocol=1 | dir=in | name=sisoftware deployment agent service (icmp-in) |
"{85C784E8-E53A-4FF8-A799-B194D047EB17}" = protocol=6 | dir=in | app=d:\spiele\activision\ein quantum trost(tm)\jb_liveengine_s.exe |
"{86D45300-0ACD-4BE8-AB72-030A7827B356}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr.exe |
"{880E771B-8EE5-42F4-825B-6F1BD9F39299}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{8C528F8F-F9E0-468E-A0E7-80D0C6046279}" = protocol=1 | dir=in | name=sisoftware sandra agent service (icmp-in) |
"{938512F5-34FE-4BA1-AA62-0E2441A6F1B8}" = protocol=6 | dir=in | app=d:\spiele\world of warcraft\launcher.exe |
"{94733B01-EFEF-4380-8485-D76DA1B97A93}" = protocol=17 | dir=in | app=d:\spiele\codemasters\grid\grid.exe |
"{95F18369-3CA7-45A7-B410-D932FEA49DA2}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\forsaken world\patcher.exe |
"{96F625FD-1546-4B7F-9F13-12DBE198CA5D}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{9C38C6AB-BA1D-40AA-9CC3-3AC823585D2B}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\might and magic clash of heroes demo\clashofheroesdemo.exe |
"{9D8B252F-6326-4430-821A-316AD24CA993}" = protocol=17 | dir=in | app=d:\spiele\capcom\resident evil 5\re5dx10.exe |
"{9EB1B8D1-4A1C-4CC8-A5A7-7CABB99B6676}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\rise of immortals\roiclientr.exe |
"{A15AB570-8384-4902-9D28-2FB4F6BD58AB}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{A1FFC0BC-265D-4E1E-AFC0-7BC8DDDF8284}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\lost planet extreme condition\lostplanetdx9.exe |
"{A22B1C81-8077-4B1B-925A-2003ED70E811}" = protocol=17 | dir=in | app=c:\windows.old.000\program files\steam\steam.exe |
"{AA526D98-2546-4B01-9B31-BD81DE179A61}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\iron grip marauders\prism.exe |
"{AB965C6A-AC05-4DD4-90D9-2693C880D0C5}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{B1BB64BA-947C-4E8B-893B-894A6A5CF03B}" = protocol=17 | dir=in | app=d:\spiele\activision\wolfenstein\mp\wolf2mplite.exe |
"{B6AD2761-C0BA-4118-90E1-5D00BC3F05DD}" = protocol=17 | dir=in | app=d:\spiele\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{C4E6D21C-2533-44CD-8AEA-BC3CBBB65F03}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\kane & lynch 2 - dog days\kl2.exe |
"{D0693EBA-B3B3-4D51-8710-B584971E25CF}" = protocol=6 | dir=in | app=d:\spiele\codemasters\grid\grid.exe |
"{D2762F96-67AE-4661-85F2-93677C02B61C}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\the secret of monkey island special edition\mise.exe |
"{D2E250DE-8CED-4856-821F-A915978A3047}" = protocol=6 | dir=in | app=c:\windows.old.000\program files\steam\steam.exe |
"{D2FEF08A-BA2F-4BFE-8495-C28381A88465}" = protocol=6 | dir=in | app=d:\spiele\lucasarts\republic heroes\republic heroes.exe |
"{D8A0FC63-6DB0-4125-AF9E-1D00DB435CFE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DB0EE392-F4C7-40CD-BC17-D20B73A179A0}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\might and magic clash of heroes demo\clashofheroesdemo.exe |
"{DC9915A7-A4E1-4F03-BDB2-2D294B9706F7}" = protocol=17 | dir=in | app=d:\spiele\star wars-the old republic\launcher.exe |
"{E16414F2-4350-45CC-8098-6D9935769051}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\orcs must die!\build\release\orcsmustdie.exe |
"{E359C5D5-6000-42B2-97CC-223E33D82831}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{E4E9454F-0456-4B33-9BD7-483B19A1D56F}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{E56812BF-5C28-4F52-A7E4-55BC8D7CFC2B}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr.exe |
"{E6B40784-8AB0-4447-B716-5F0808923114}" = protocol=6 | dir=in | app=d:\spiele\activision\wolfenstein\mp\wolf2mplite.exe |
"{EB685CA2-12DF-4AC1-8522-714E9561AB02}" = protocol=17 | dir=in | app=c:\spiele\volition inc\red faction guerrilla\rfg.exe |
"{EB6BA865-1719-444D-B73A-6322C6DF530B}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\bulletstorm demo\binaries\win32\shippingpc-stormgame.exe |
"{EDA860F6-074C-41B9-9658-EF874CC73C76}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\forsaken world\patcher.exe |
"{EDFD00CD-8896-414F-AA72-07650C4F0301}" = protocol=6 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\fear2\fear2.exe |
"{F08CE25F-BB41-49B3-ACCB-7616CF6A8B3C}" = protocol=6 | dir=in | app=d:\spiele\lucasarts\star wars empire at war\gamedata\sweaw.exe |
"{F6E67672-46EE-47A7-AB25-BA1503196D01}" = protocol=17 | dir=in | app=c:\windows.old\program files\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{FA4A80D3-5AE6-4FD9-875C-7DD84059AE30}" = protocol=6 | dir=in | app=d:\spiele\activision\wolfenstein\mp\wolf2mp.exe |
"{FECE9618-DC46-4FDC-A57C-3B22D90001C2}" = protocol=17 | dir=in | app=d:\spiele\activision\wolfenstein\mp\wolf2mp.exe |
"TCP Query User{0D5EBFBC-A9A4-438C-B1D8-7207BE0D26A8}C:\program files\icq7.4\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"TCP Query User{0EDD7BF4-BA1D-483A-BDBA-6C18E7FB5F2C}D:\spiele\world of warcraft\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe" = protocol=6 | dir=in | app=d:\spiele\world of warcraft\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe |
"TCP Query User{25FC25FB-538C-421A-BB38-DAB484798C45}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{354DF200-F50E-42F1-B226-24FD7EDC1E24}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{3A281E06-7267-4768-A385-2042F13D632D}C:\program files\starcraft\starcraft.exe" = protocol=6 | dir=in | app=c:\program files\starcraft\starcraft.exe |
"TCP Query User{7BD0C7D7-F7B8-44DD-A8F0-917490ED8D41}D:\spiele\codemasters\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\codemasters\der herr der ringe online\lotroclient.exe |
"TCP Query User{A4E43130-B07D-40AA-840E-7265589F4480}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{C6F24F49-73D7-4621-BAFE-891D0DE44590}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{017ABF61-7E57-4DB4-88CE-20257B965F54}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{2738105C-0A02-44A5-A826-626C478737A9}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{50FC507A-C9A5-4A78-B157-1D4D8DEF50BD}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{842BD1C4-91FA-4B84-9BF1-77073DFB2578}C:\program files\starcraft\starcraft.exe" = protocol=17 | dir=in | app=c:\program files\starcraft\starcraft.exe |
"UDP Query User{9E5D26BC-0E59-4953-8E0E-E3E183CDDEFB}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{D3AFC773-2271-46A8-AB69-049243EC6FD5}C:\program files\icq7.4\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"UDP Query User{E14BE6CF-E5E0-4444-A059-21EE2136BA75}D:\spiele\codemasters\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\codemasters\der herr der ringe online\lotroclient.exe |
"UDP Query User{E6D79A89-5C1D-4F41-983C-7770670D18CC}D:\spiele\world of warcraft\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe" = protocol=17 | dir=in | app=d:\spiele\world of warcraft\wow-3.3.5.12340-x86-win-dede-bkgnd-downloader.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{065D5505-3821-4C2E-BB6C-FE66A7E7CB4F}" = USB Flash Port Driver
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0A0E062D-3235-406B-8D3C-090923EDFC00}_is1" = C2DtoG15 2.0.0.1
"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan
"{109945A8-D8D5-48B8-B4A5-195D3F99B56D}" = Logitech GamePanel Software 3.04.143
"{10A1D1C4-F0B0-4341-B49A-A9ED8FBDBF9D}" = Livestream Procaster
"{1148E85C-E1AF-48E0-A29C-68DACE07E054}" = Pro Evolution Soccer 2011
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{1AE3E621-E0C0-4aa1-B10B-B3E353A8D110}" = c3100_Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{282E5AB2-8E47-4571-B6FA-6B512555B557}" = HP Photosmart.All-In-One Driver Software 8.0 .A
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
"{2C3CE8F0-F4AD-4D54-A520-975309C617E2}" = LG PC Suite III
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{336C4194-47FA-40A8-8D65-21000CA5186E}" = Pro Evolution Soccer 2011 DEMO
"{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}" = Microsoft XNA Framework Redistributable 3.0
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40034B11-149E-4310-AE89-BB575B02525B}" = LG Internet Kit
"{44F5A980-8A6B-4aca-8D85-EFCE5D67D379}" = AIO_CDA_ProductContext
"{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0528.1
"{46EDCFA5-7EDB-46A9-B093-1C6237470CEC}" = 3DMark 11
"{49F2B650-2D7B-4F59-B33D-346F63776BD3}" = DocProc
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D565319-8B91-41cb-961C-0DDC86101AC5}" = Dragon Age II Demo
"{54510837-257F-4E9A-B359-731000028301}" = Red Faction: Guerrilla
"{54510837-257F-4E9A-B359-731000028302}" = Red Faction: Guerrilla
"{54510837-257F-4E9A-B359-731000028303}" = Red Faction: Guerrilla
"{54510837-257F-4E9A-B359-731000038301}" = Red Faction: Guerrilla
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{5612C844-55BC-4B77-82C2-A2E28962418E}" = Republic Heroes
"{5A0B7BA5-4682-4273-81C2-69B17E649103}" = GRID
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{6844E55F-37A1-42BC-B316-326B48C49ADC}" = Pro Evolution Soccer 2012 DEMO
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{7ED169D4-5053-4166-93DF-53B12AE6C539}" = Energy Saver Advance B8.0610.1
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90A455A7-0FC8-4508-B7FA-8F135B8F041A}" = DSL-Manager
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}" = MarketResearch
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{978C25EE-5777-46e4-8988-732C297CBDBD}" = Status
"{99AE7207-8612-4DBA-A8F8-BAE5C633390D}" = Star Wars Empire at War
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}" = Destinations
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A1644527-B0FF-485B-8412-3C7504A2F188}" = Quantum of Solace(TM) 1.1 Patch
"{A357EF4C-2B6F-4980-ACA9-B1E42A74D7F3}" = Red Faction Guerrilla
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}" = Copy
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB61E316-F10B-43eb-B47F-42095835F9CC}" = C3100
"{AC08BBA0-96B9-431A-A7D0-D8598E493775}" = RESIDENT EVIL 5
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Deutsch
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{AF1C9345-B53D-4110-BFBF-A0DD83AEAB83}" = AIO_CDA_Software
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 280.26
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C0E18DC4-C74A-4889-AE3A-933471023787}" = LG PC Suite III
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1" = SiSoftware Sandra Lite 2011.SP2
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CDF29D6C-AA05-49F9-A55A-89C2F8F4F46E}" = Activision(R)
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{DFAE9340-E8BB-4433-9A08-C8334DAFE1B9}" = Star Wars Republic Commando
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9-Reihe
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = The Witcher
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"{FA02ACAC-9E14-4878-A257-92A22A647C2C}" = LG USB Modem Drivers
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FF075778-6E50-47ed-991D-3B07FD4E3250}" = TrayApp
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4f6dcc3b-179d-4b1b-80f0-b6083a0b3ce6_is1" = Der Herr der Ringe Online v03.02.04.8010
"7D6D030B3D73FCCA3D4E45319380F315DFBE7A54" = Windows-Treiberpaket - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Any Video Converter_is1" = Any Video Converter 3.2.1
"ATITool" = ATITool Overclocking Utility
"Avira AntiVir Desktop" = Avira Free Antivirus
"CCleaner" = CCleaner
"Cheat Engine 6.0_is1" = Cheat Engine 6.0
"CloneDVD2" = CloneDVD2
"Episode 1" = Back to the Future The Game - Episode 1
"Fraps" = Fraps (remove only)
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.15.1228
"HP Imaging Device Functions" = HP Imaging Device Functions 8.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"HPExtendedCapabilities" = HP Customer Participation Program 8.0
"HPOCR" = HP OCR Software 8.0
"ICQToolbar" = ICQ Toolbar
"Infineon USB driver_is1" = Infineon USB driver 1.0.0.6
"InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0528.1
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{A1644527-B0FF-485B-8412-3C7504A2F188}" = Quantum of Solace(TM) 1.1 Patch
"InstallShield_{A357EF4C-2B6F-4980-ACA9-B1E42A74D7F3}" = Red Faction Guerrilla
"InstallShield_{CDF29D6C-AA05-49F9-A55A-89C2F8F4F46E}" = Ein Quantum Trost(TM)
"InstallShield_{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"IP Changer 2.0" = IP Changer 2.0
"Logitech Eyetoy Webcam" = Logitech Eyetoy Webcam
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.61.0.1400
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 11.0 (x86 de)" = Mozilla Firefox 11.0 (x86 de)
"Mozilla Thunderbird 11.0.1 (x86 de)" = Mozilla Thunderbird 11.0.1 (x86 de)
"NASCAR Racing 2002 Season" = NASCAR® Racing 2002 Season
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.1.3
"pepakura_designer3en" = Pepakura Designer 3
"RADVideo" = RAD Video Tools
"Rainlendar2" = Rainlendar2 (remove only)
"Raptr" = Raptr
"RivaTuner" = RivaTuner v2.20
"Sam & Max - Culture Shock" = Sam & Max - Culture Shock 1.0
"SopCast" = SopCast 3.3.2
"StarCraft" = StarCraft
"Steam App 102610" = Orcs Must Die! Demo
"Steam App 220" = Half-Life 2
"Steam App 22600" = Worms Reloaded
"Steam App 28000" = Kane & Lynch 2: Dog Days
"Steam App 31740" = Iron Grip: Marauders
"Steam App 36620" = Forsaken World
"Steam App 36630" = Rusty Hearts
"Steam App 440" = Team Fortress 2
"Steam App 48810" = Ship Simulator Extremes Demo
"Steam App 61720" = Might and Magic: Clash of Heroes - Demo
"Steam App 90530" = Rise of Immortals
"Steam App 99870" = Bulletstorm Demo
"Tales of Monkey Island" = Tales of Monkey Island
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TomTom HOME" = TomTom HOME 2.8.2.2264
"Two Worlds" = Two Worlds
"Uninstall_is1" = Uninstall 1.0.0.1
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VLC media player 1.1.0
"Volumenzähler_is1" = Volumenzähler 1.0
"Windows Media Encoder 9" = Windows Media Encoder 9-Reihe
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"World of Warcraft" = World of Warcraft
"Worms Armageddon" = Worms Armageddon
"Xfire" = Xfire (remove only)
"Zattoo4" = Zattoo4 4.0.5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"NCsoft-AionEU" = Aion
"Smart Shutdown Manager" = Smart Shutdown Manager
"UnityWebPlayer" = Unity Web Player
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report > --- --- ---
ich hoff, des passt soweit |