| schusti007 | 14.05.2012 12:05 |
Spardabank West - Aufforderung zur Eingabe von meiner TanListe
habe seit gestern folgendes Problem:
Sobald ich mich in mein Online-Banking bei der SpardaBank West einlogge und ich dann auf "Überweisung" klicke, öffnet sich ein Fenster/Grafik, in der ich aufgefordert werde meine gesamte Tanliste einzutragen.
Habe ich nicht gemacht, sondern direkt mein Konto erst mal sperren lassen.
Anbei die mit OTL erstellten Dateien.
wäre cool, wenn Ihr helfen könntet
Inhalt aus der Extras.txt Zitat:
OTL Extras logfile created on: 14.05.2012 12:11:18 - Run 1
OTL by OldTimer - Version 3.2.43.0 Folder = C:\Users\xxx\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,50 Gb Total Physical Memory | 1,51 Gb Available Physical Memory | 60,47% Memory free
4,99 Gb Paging File | 3,68 Gb Available in Paging File | 73,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 3,81 Gb Free Space | 10,22% Space Free | Partition Type: NTFS
Drive D: | 113,33 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 3,75 Gb Total Space | 1,13 Gb Free Space | 30,24% Space Free | Partition Type: FAT32
Computer Name: xxx-PC | User Name: xxx | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10F6ED60-C13C-4A43-9588-1CF874BBAEBA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1AA1AF9F-2592-4D05-A19A-B5A373C98561}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{3A1AD17D-ED21-49A2-BF52-157573D7991C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{3C4368B1-EB89-43F0-96FF-B090859E32A2}" = rport=139 | protocol=6 | dir=out | app=system |
"{42165DBB-E1A6-4973-B0A8-36F854B6D8CB}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4270812D-6CE7-4CED-85D0-0092A5F69EAE}" = lport=137 | protocol=17 | dir=in | app=system |
"{43E21ACB-2632-4CE6-B601-0E331811BE04}" = lport=2869 | protocol=6 | dir=in | app=system |
"{54B04649-2761-4687-AC91-420A07533E9B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{559DA4BD-70FF-4C9D-85B7-C659A1598471}" = rport=445 | protocol=6 | dir=out | app=system |
"{59F1E132-BB17-4076-94E4-5B57252DE8CF}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{609EC5CC-C819-457D-9135-177434C6980E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6355DF75-C617-48EC-A17D-2B362E79B50E}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{671014E5-2E62-48A0-9F61-BA4AC2B54537}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8014C099-F05F-43A3-9CFA-16886C66D3E0}" = lport=10243 | protocol=6 | dir=in | app=system |
"{964B7648-3F02-4E5D-B705-8F57D311414C}" = lport=139 | protocol=6 | dir=in | app=system |
"{9F757F0D-E5EB-44F5-A0D1-6B355CA63E11}" = rport=138 | protocol=17 | dir=out | app=system |
"{AF3030B1-9059-4B31-BBC5-EB9D36232C14}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{B6C8115D-7F47-4795-A8EE-B91E9584419D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CF5130E3-A80F-474E-8391-EC1FCB15A8D2}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CFFEB218-9488-41C7-B23B-4E86DEA5873A}" = lport=138 | protocol=17 | dir=in | app=system |
"{D8E1696C-FF89-4974-ACEE-83A742E7E30B}" = rport=137 | protocol=17 | dir=out | app=system |
"{DBD71EEE-BA90-4AC4-A1A1-836E5AEB1E7B}" = lport=445 | protocol=6 | dir=in | app=system |
"{E86646BF-CA13-4377-BA5D-30259D9E6710}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F8FC38C3-BD1C-41E7-84E1-7A0954C27B7E}" = rport=10243 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{006ABCEA-4A7E-49F4-91C6-4BB0B7C03413}" = protocol=6 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{009DEAE7-83A5-4B85-B2C6-F3340B06E8A3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0123C2A7-B1C4-4D0A-86D0-2A02EB9A5254}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0139DE1B-0706-408E-8BFE-E6EAD922182A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{04D0E4F2-F87A-4B7D-AE52-37AB65431FD1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0511C9D5-DF07-4549-95B9-42CC853AA1C0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0558488F-458F-4A88-908D-9E8CF1C4B420}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0834EDA8-E8E8-4A64-BA1D-1F918FCEBA93}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{084B9B0D-3D01-4A30-8124-733C7794EFE2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0A7E6856-FBA1-4BB7-A2F5-7DF53EE3AEE2}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0BDFD6E9-99D0-4E31-B6C0-FF3D4BC5D844}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0CD797B6-922E-43B9-9BCB-C229E1F8C5C2}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0DBA2A23-FFFD-401C-99BC-E376F406AE3C}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{0EDCFB53-6624-4623-954F-08AAB64C4369}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{0FD08F76-FA0C-4F1C-8247-16F23916D4CC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{10F9525B-03FA-4EF8-8F06-1443C07B189F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{11110384-16A5-4BD6-8022-615B012176A2}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1297BAE2-CAC0-4981-B5D6-F020586C1628}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{14BFEE23-F246-41AD-A9C6-042473C229CD}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{14CDA385-3275-424F-95C1-33551DC739CE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1723B7B0-4B07-48B0-95B2-AC547F4663EB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1752C8CF-7FC1-4E93-8EA3-F1120DBAEFA1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1758DFD8-303A-4426-A82C-EF0D3EFDD9E8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1774E083-9214-4D85-9A30-873D5D896A7E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{17AB2FD2-CCEE-4EF4-A75C-BA6CE3BD71D0}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{1A31E209-B781-4758-87EF-FFD3CC8AF358}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{1BA0224C-6503-40F3-8D3E-86B9BDDF7EEC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{214F4B8D-94BE-40B0-9B3D-D15BA03521CB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{22C6CB3F-12D3-46EE-AC2E-FD63014F2236}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{22FF1113-157A-4E4C-A9B3-50DD5BF76D4E}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{23B91D29-CD9F-4163-AAE7-9F8B869C80C5}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{24D9F743-1D74-4447-8278-AC92A04B3DED}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{263A322C-A382-42F2-924C-27763E0005B6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{268717C8-7007-4A72-9FE2-4320F60B1057}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{276BA89C-5976-4C9F-965E-EB8AED20A7E3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2B22F9CC-C368-4BB2-BA3B-4B03DAB1468C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2B2AED6D-B932-4F32-A4A4-3D51FCD8B683}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2C228935-E3A1-40D6-95A8-1ADBF476D221}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2DD26346-24CF-4466-BA54-1C4DD4DC5814}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{322B4F72-DAF2-4BAC-B2E8-D8F6A50D88CA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{33E735D7-D36D-4CAD-8AF6-C5A654A9BFBA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3425FD75-4B26-4678-B308-133CDED03BC5}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{36227105-81CD-4292-9A7F-DFBCB22099A7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{362AEF24-D6A0-4DE3-8651-F1D2570A1A49}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{380A5113-5940-4753-BECA-7B013687B162}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{38769535-5962-4F3C-876F-6E64FAA55A6F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{38D9EA11-63DB-4200-8D72-7D86D67F8FE7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{38E77ABF-E967-46F7-97E3-E1D02B927A39}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{39B5AE1C-C15A-4464-BF92-C6006849ECD0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{39FDE601-9F0C-4BC2-86F8-15DCC4624867}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3BF93F3A-8DB8-4FD6-9CBF-99B7E35631A3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3D8A9598-A86D-45AA-8779-8399A384B155}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{3DE54268-E2C7-4276-94C2-6B94F3EB71EE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3E51B40A-4975-4FA6-99DE-22F138F33C4A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{425A3685-58E1-4F15-ABAF-58E651BCC101}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{44505CCA-5E6E-4020-AD3D-B4FBBD62A48D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{46D7D431-D98A-4D06-B20E-49980A908D0F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{46F86C63-50A3-4028-90C4-4CBD553E2F68}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{47630D4B-3A38-4D04-941B-76DD8ED6B414}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{48717774-46D1-46B0-8075-3B939EB789AA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4A1A99C5-1F35-472E-91B5-60AF873593AB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4A6F9055-5945-4AA5-B6DF-31B26CC0EEB8}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4D19F8D2-8CB0-4D17-ACEB-BEFAE20A7D23}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4E6D4033-EC30-4839-A638-947983737719}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{4FAF7051-F5A9-4D06-8C68-02EAF6DB3C67}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5271BF8D-7297-4859-9AAD-DD694923D43B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{528B78E9-610C-427B-BD33-FAD58528F1FF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{54966CCE-5872-4F5F-917A-6FEE08FC39FE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{566A62A9-47EF-4D5F-A9A2-CE3CF5D173C9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{57E3B064-0E87-4814-88E7-40022B9CE959}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{580B0148-8EAB-466A-9068-3B973096162F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5A7D9991-B81E-4955-B53E-F5388907DFFB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5B1419F1-88C2-47A1-97F3-C0605B2C4056}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5E821A62-9ECF-4CEB-9BE5-3918EC13F1E5}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{6338744C-3313-4EB6-B459-380D3D7827C6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{641BF20C-961A-4658-93DF-499ED32AF03B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6565E238-BD54-44ED-AFD3-ABCFF4B55266}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{66ACB085-A5E1-4273-94AA-27D107B4C4C6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6746BCA8-D786-4030-932B-5E6FAB015C2E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6784AE3B-9E3D-4C81-863C-F7DE5E49EA44}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{694CBCD9-64CD-4931-AF58-1429A504EC6E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{69880C85-887F-4CA4-9F70-C70CE8239E0C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{69CF4BCC-27E7-4C3C-8E6B-9120BCD370BB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6BA6F8DB-43D6-4C04-9A7B-F306A4FC6F66}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{6C30AE1A-DC5D-4619-8EDB-DC4FEC5F7180}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6DC9194B-0A8A-4F92-A2C3-6EBABEFD902D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6F0C98CE-12AE-4642-8A6D-4CA3F47CF9C6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6FA4715E-4F1A-4361-9B37-6282BF9A706E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{71637D62-CA45-4CBE-80D8-47F2CADED6C7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{72D6EC6A-015D-45C5-BB3E-65B129BD8CC3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{736FD578-A2E6-4FD6-B5B7-8866D4B401AF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7453C3DA-293B-497D-8E73-DCE95D319C37}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{750DE331-D8B4-45D7-AA04-254D6FD0CA59}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{762357C0-C345-4699-AE76-249FD5DA5722}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{764C28C9-6728-41DC-98E5-0853B22C3BA1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{76F760D2-314A-404A-B243-90E46162D00F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{78226C77-9553-4C1A-9480-E242E8CA1987}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{789AF3C8-EE7D-443A-B933-3E4D2E977BFF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7BDAE7AE-66F9-4794-8D49-B88571763AD7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7D771A61-2777-4F21-8458-0B57728D668F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7DDB4B3E-A6AB-4C09-BBDA-B69449B5BA11}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7DFC3793-D651-4127-BC33-E5C4CA7AD1B7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7E1EA41A-063A-4A85-BC26-41AF71F840C7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7F3CA505-07AB-4EC7-8EB2-72FEB1BF3435}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{8746C764-3344-4E49-9517-3A6F4668A0B0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8843E547-5819-4AB6-90FF-6DCD4689BEBC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{897E0C55-06E0-4925-8BDE-207BBCE1EA7C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{89DC8372-1626-4D78-BC20-419FEA126917}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8BF52B61-FAB4-4B56-A9F4-2A047372E86B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8BFD26E5-945D-4E50-83BF-890D3D0F6344}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8CFBAD74-56EA-4329-A2F0-674BDEE06BB0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8DC4B8DA-1466-476D-933E-279CFA611F4D}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{8F90BE4F-EE4B-426A-9FB5-306CD2CDCE18}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8FA678F3-2DD2-4EBF-A2DA-2AB77DD678F7}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9173C4DD-F92B-4413-8BE0-686E26D39A4E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{933C0EC5-7457-4227-9174-E35D768DB125}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9467D9D5-FD15-4785-9DAA-0F89AE14E65F}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{946F30E6-E913-47CC-B913-8C8485F6F4C1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{9652FD91-CFF5-407B-B246-EEFCF8977E3A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{97A84226-085D-4412-A661-E8F0B13C7FEF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{98D4B3BF-3327-41CD-9329-777F4F9D8DDD}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9946C112-A161-49A1-AB76-46C8215C9AE4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{99B7BEC8-DE85-4A75-95A2-0B26EB0CA03B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9A6CBC91-C692-448C-9801-BCDA92FFE3B6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9AD97FDC-64E4-4269-B895-64A5CFDB0A45}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9B66EA34-2505-4949-A96D-E6C142659C68}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{9B6FA1DB-3898-49A9-94B1-652010341721}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9D45668F-6ED6-4BD0-A0CF-AC1B8CCC6EAB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9E14087A-B58B-4422-B95E-885637F553EA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9F566DD3-7FB4-4480-8C37-802A4B3A5F69}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A15F79C4-7C4B-4484-9EB1-25FF7521419D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A37E2DCC-2F99-441F-AE76-5A65A1CCB96C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A3CC7197-5535-4077-A263-AB5D9D3200BB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A3E679CA-74C3-448F-A808-808D1DF2DEAB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A42AE984-4787-47A7-9296-50F422120581}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A4A274A7-DFD2-427E-9908-5EBB9D49485F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A5D961A0-036A-4478-8939-2E2CD5F90FB3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A5F82E11-4012-49B4-A139-EA911FE5C9CD}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{AC4D0740-3704-49CE-A889-717044FC4862}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AC8EEB44-2C9F-46CF-8CF2-B8ED15671392}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{AF5B2FC6-13DE-4E54-B005-D34A3835B7D4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B05D7418-0D18-41DF-AD63-B8D86F68B8FC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B0FA592B-6678-4E5B-BA0E-EDF52F3D6321}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B139868F-A201-4FFF-AEEE-6EB5BEC453DA}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B148CCB7-9B99-46B4-8D70-3EC2A54DEB4B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B36ADE73-A239-411D-8162-AD572CDBA2F8}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{B797E0D8-78A6-43F9-83F4-B4A4C377921D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B7A80092-1AC6-48F4-884E-D8A33B2F5C2C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{B8915246-CF50-46A5-81B8-A3E5FAF62EC1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BC20B4F5-CE9D-4B13-B787-6504B1AAA826}" = protocol=6 | dir=out | app=system |
"{BD67470E-EBFB-41DC-B81E-441F77D2EFFA}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BE542D50-4AC5-4F07-9D42-C7D9D5D0803E}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BEB28674-1F68-444E-80D4-027A6EE529D9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BFA19B38-D63B-4CA7-802A-5AA85E9C1DBC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C0E3073B-1716-4D45-A3D7-3B7CB5299D3A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C2294F10-CB7C-4779-8454-0A5A9F9C07F9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C47BF3BC-BBD3-4D9B-A0B6-796A5522343B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C734A8C6-4A44-4502-B364-E899ACE838BC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C77F72FF-0CFE-4398-BCAE-8C39CB4716B8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CA07A078-BA67-4554-A422-D29980CAFA59}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CB8CD535-FC69-4C61-9EC2-5F84EA161D93}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{CCC574E3-6C1F-40FF-8412-BF11D116EE4C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CCF24B83-7915-4738-8683-2E2DAE5EF54B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CEEA18E8-2C33-45A0-BA60-62628965A5EB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D2D8E13F-27CE-45E7-A0FB-F749C0805FAF}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{D315E490-4A15-4088-8D76-4B694CF17D22}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{D323F8DF-7E6E-4548-BD2E-4B0736E6A65E}" = protocol=17 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{D38B23B1-B1EE-485F-9906-56E7DF3DC432}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D39CB2F6-7E71-4D80-A83A-D7A3898DADA4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D5EC7989-B16A-4E2A-9596-A72257A728CC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D6E8FA64-6DAF-4B61-BF5D-32C0FF849E0F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D7114C05-A3D5-4798-9F7C-F4A34B0ABB4D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D8B6BC38-10E1-441E-9A6C-B43C7FA27C44}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DAF686B7-1FDE-4289-8269-A530EFBA3B16}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DE253752-3E62-4842-BAC2-8D9CF0A1FDCF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DE5426A0-DE81-45C1-AF26-163C8204C0AF}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DE5ADC3D-E0A0-432C-B9B2-EF5EED35F882}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{DFDE2978-1323-4A21-B5D8-2209FED974CF}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{E013E8F2-38AE-4D12-B1AB-6C9A8EB4C1E3}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E0919207-C522-4C6B-AA4B-8192045362FE}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E0EA439D-E1EE-4720-9F98-D038C9E7EA2E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E351F508-1C19-43D7-89B7-96FC26B33806}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E6CBF9EE-412E-4239-A40F-6595D6960687}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E6E84F86-C293-449D-8DF1-CD53EA114181}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{E721AA20-D334-4A2F-B399-CFB3748E8B3C}" = dir=in | app=c:\program files\homecinema\powerdirector\pdr8.exe |
"{EAB9318E-48DA-4F31-9522-159074515058}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{EC41BA3D-8E2E-44CD-AB88-7FCB234FEC5D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{ECFE8E4F-750A-4334-B173-F8457F4D0663}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{EDFB5171-4039-4695-A2E0-4E2806CBCC1F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{EEA4F0ED-CD36-415D-9086-C355111E3478}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{EF0F5364-4756-4353-A63E-08C27369609F}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{EF2E2E7E-1E24-4B33-A759-4E1009FBD038}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{EFC5EF98-2B17-41D1-9B1A-1B506FC706BB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F1447C88-EAE4-4E5B-986A-EF7DDCC8EA4F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F1DD53F3-7F20-4C5A-8C28-3FCB396CA86D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F20FEFB3-06D9-4170-AD71-B356A6B56C92}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F2134782-B26B-4930-B4B9-5B8C8CEE40A4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F48E5A21-78F5-40AE-9326-720823F3A532}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F5A48D20-8B96-4972-930C-09C9F6BF2680}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F8B82897-1E38-43F6-9C80-C731D93C37F1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F9D1D051-26B2-431A-AAF9-856F7FF1DF4A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{FA2E7E0A-33E3-4DBF-8AA6-69E7F20842A6}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{FB6E2179-69E4-4B34-9BBD-F0513C39E472}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{FF4C2F05-9A27-42D5-8F42-D2FE9C478DB1}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{1B444F9F-965D-4668-B32B-4115EDA5C634}C:\windows\system32\taskhost.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskhost.exe |
"UDP Query User{9ACBB49F-10BF-4B9E-BFCA-220EE2FCF37E}C:\windows\system32\taskhost.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskhost.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{063E409E-3D7C-4A4A-95AB-2F124B9224B3}" = ArcSoft PhotoImpression 6
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0C792BB5-5B82-CDA0-6244-C785EEDD2547}" = CCC Help Japanese
"{10591DD4-8302-5EBC-91B5-D74563D33C15}" = CCC Help Norwegian
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Windows Live ID-Anmelde-Assistent
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14CF012F-6CDF-56E0-3461-0950D1536125}" = CCC Help Czech
"{15DE85E4-17E4-A68B-CECE-CE93AD9EF037}" = CCC Help Greek
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F55CD48-E84D-AC4D-8A97-70073943AEBC}" = CCC Help Hungarian
"{1FCAD262-FF72-3B35-3B96-7970FA1E71B8}" = Catalyst Control Center Core Implementation
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{21BCE515-D5A3-11D4-8E33-0010B53EC668}" = Ulead Photo Express 4.0 Meine Spezielle Edition
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 29
"{28971D68-1781-FF8F-A29A-C30D9D474F86}" = CCC Help German
"{28AEBAC9-66B3-53CB-DAB0-92B665E68784}" = CCC Help Thai
"{29098F98-D533-AE5F-925A-D2CAA07EE309}" = CCC Help Swedish
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2CAF1B84-8157-289F-F590-B950430300A0}" = ccc-utility
"{30E230F7-000C-5FF7-B8D5-743952FC8036}" = CCC Help Portuguese
"{351D5F9B-4971-3069-370F-4C150F9FE7CB}" = Catalyst Control Center InstallProxy
"{37C99A9A-DC51-4BAA-5AAF-5F7E382A2F55}" = CCC Help Korean
"{396CE7FD-94E4-F454-DB02-599FBB323F89}" = CCC Help Danish
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{3FF76A1B-13C9-4336-BBCF-B007A745B065}" = Video Grabber Driver Setup
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4CC1A849-80D4-8463-F579-D025A47172FB}" = CCC Help Polish
"{4F45FB95-7BC3-C2AB-1013-DC957868616A}" = CCC Help Finnish
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6B566EFE-DC1D-471F-93DD-84832663F140}" = OVT Scanner X86
"{6B9815F1-E0B1-01D7-D0D3-7AAADDD2FE87}" = Catalyst Control Center Graphics Light
"{6D32C637-6149-CED1-A9F6-330607532674}" = Catalyst Control Center Graphics Full New
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7308D4D7-25E4-EC49-1D07-27AE51F50126}" = CCC Help Italian
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{81063354-9060-42B2-A000-1EBE96778AA9}" = iTunes
"{81EFDD8D-CE79-7C0E-EA26-8E8968B29506}" = CCC Help English
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8AC93C10-A817-E0B1-7214-87C186DDE1C9}" = CCC Help Chinese Traditional
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8F769654-32F6-3A18-8E7E-35A31446EE47}" = Catalyst Control Center HydraVision Full
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISER_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISER_{26454C26-D259-4543-AA60-3189E09C5F76}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-0407-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{994223F3-A99B-4DDD-9E1D-0190A17C6860}" = Windows Live Family Safety
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0EA845A-4DC1-7FB2-8083-49F2866C6750}" = ATI Catalyst Install Manager
"{A1A22AD5-CF10-374B-DA23-077B6826288E}" = CCC Help Dutch
"{A1A9A33E-F1E5-FBF4-8D72-E90BEAC7108A}" = HydraVision
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB91D67A-6CE4-8E06-B3A2-BC1B5F812670}" = CCC Help French
"{ABAD283C-0F52-C7EE-4287-9350CA233862}" = Catalyst Control Center Graphics Previews Common
"{AC76BA86-7AD7-1031-7B44-A95000000001}" = Adobe Reader 9.5.1 - Deutsch
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C58979C6-C75E-D003-1DA4-83267880FA4C}" = Catalyst Control Center Graphics Previews Vista
"{C982FAE0-9E75-0BB0-933D-69046512C216}" = ATI AVIVO Codecs
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CF929EEB-CE39-4F06-B1BF-F51FC617A2B2}" = Catalyst Control Center - Branding
"{D92D1ED8-71B6-6CE4-62FE-0444605CFFE1}" = CCC Help Turkish
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E645C441-5D08-5AA2-C841-7F245C65BE9F}" = Catalyst Control Center Localization All
"{E6DED140-000F-177B-F917-8C65BDB7BE6E}" = ccc-core-static
"{EB484E7E-B9A3-FC7A-6739-BDFA6F349884}" = Catalyst Control Center Graphics Full Existing
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F8DA5AAA-0F37-AB50-EA2E-9D38680CFF75}" = CCC Help Russian
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FEC732C4-2B93-8DAA-7E09-38FBE6E5562B}" = CCC Help Chinese Standard
"{FF5A6B87-F8AF-C1D0-3D6D-1BF055210508}" = CCC Help Spanish
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"ENTERPRISER" = Microsoft Office Enterprise 2007
"EZ Vinyl/Tape Converter by MixMeister_is1" = EZ Vinyl/Tape Converter 4.1 by MixMeister
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"OVT Scanner" = Uninstall OVT Scanner
"Picasa 3" = Picasa 3
"Slim U2 TA" = Slim U2 TA
"TeamViewer 5" = TeamViewer 5
"TeamViewer 6" = TeamViewer 6
"TeamViewer 7" = TeamViewer 7
"VueScan" = VueScan
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"f031ef6ac137efc5" = Dell Driver Download Manager
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
| Inhalt aus der otl.txt Zitat:
OTL logfile created on: 14.05.2012 12:11:18 - Run 1
OTL by OldTimer - Version 3.2.43.0 Folder = C:\Users\xxx\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,50 Gb Total Physical Memory | 1,51 Gb Available Physical Memory | 60,47% Memory free
4,99 Gb Paging File | 3,68 Gb Available in Paging File | 73,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 3,81 Gb Free Space | 10,22% Space Free | Partition Type: NTFS
Drive D: | 113,33 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 3,75 Gb Total Space | 1,13 Gb Free Space | 30,24% Space Free | Partition Type: FAT32
Computer Name: xxx-PC | User Name: xxx | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\xxx\Desktop\OTL.exe (OldTimer Tools)
PRC - c:\Programme\Microsoft Silverlight\4.1.10111.0\agcp.exe (Microsoft Corporation)
PRC - C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - c:\Programme\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Programme\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Programme\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
PRC - C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)
PRC - C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Programme\HomeCinema\Power2Go\CLMLSvc.exe (CyberLink)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - c:\Programme\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Programme\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
PRC - C:\Programme\Google\Google Talk\googletalk.exe (Google)
========== Modules (No Company Name) ==========
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\3aa966e818d35f094e23bbbdcf1b4297\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\79b487ba3d893f59ce7e697d06721dd0\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\1dce8ad4aa93ed395af726c0e510846e\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Programme\WinRAR\RarExt.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HydraVision.Wizard\2.0.3512.36913__90ba9c70f846762e\CLI.Aspect.HydraVision.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Dashboard\2.0.3512.36913__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Dashboard.dl l ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Dashboard\2.0.3512.36912__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Dashboard\2.0.3512.36911__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Dashboard\2.0.3512.36907__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Runtime\2.0.3512.36908__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Runtime\2.0.3512.36911__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Runtime\2.0.3512.36912__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Runtime\2.0.3512.36912__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeskMan.HydraVision.Shared\2.0.3512.36911__90ba9c70f846762e\CLI.Aspect.DeskMan.HydraVision.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MDProp.HydraVision.Shared\2.0.3512.36911__90ba9c70f846762e\CLI.Aspect.MDProp.HydraVision.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Shared\2.0.3512.36907__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiDesk.HydraVision.Shared\2.0.3512.36912__90ba9c70f846762e\CLI.Aspect.MultiDesk.HydraVision.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3512.36924__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard. dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3512.36894__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3512.36804__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3512.36823__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3512.36875__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3512.36812__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3512.36856__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3512.36818__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3512.36847__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dl l ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3512.36812__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime. dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3512.36907__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3512.36906__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3512.36910__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3512.36906__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3512.36905__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3512.36869__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3512.36861__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3512.36862__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3512.36905__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3512.36861__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3512.36895__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3512.36893__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3512.36920__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dash board.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3512.36849__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3512.36824__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashbo ard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3512.36824__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3512.36854__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashbo ard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3512.36848__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3512.36847__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3512.36854__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime. dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3512.36828__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime. dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3512.36855__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3512.36848__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3512.36848__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3498.37515__90ba9c70f846762e\LOG.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3498.37517__90ba9c70f846762e\NEWAEM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3498.37534__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3498.37533__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3498.37551__90ba9c70f846762e\MOM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3498.37558__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3498.37615__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3498.37612__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3498.37554__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3498.37610__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3498.37541__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3498.37518__90ba9c70f846762e\CLI.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3498.37583__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3498.37614__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3498.37579__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3498.37582__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3498.37603__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3498.37674__90ba9c70f846762e\CLI.Foundation.XManifest.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3498.37602__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3498.37575__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dl l ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3498.37536__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3498.37580__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dl l ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3498.37540__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3498.37526__90ba9c70f846762e\CLI.Component.Client.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3498.37555__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dl l ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3498.37571__90ba9c70f846762e\DEM.Graphics.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3498.37544__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3498.37574__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3498.37547__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3512.36919__90ba9c70f846762e\ResourceManagement.Foundation.Implementatio n.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3512.36883__90ba9c70f846762e\CLI.Component.Systemtray.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3512.36817__90ba9c70f846762e\CLI.Component.Wizard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3512.36889__90ba9c70f846762e\MOM.Implementation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3512.36887__90ba9c70f846762e\LOG.Foundation.Implementation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3512.36803__90ba9c70f846762e\CLI.Component.SkinFactory.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3512.36801__90ba9c70f846762e\CLI.Component.Runtime.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3498.37578__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3498.37577__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3498.37546__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3512.36900__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3498.37522__90ba9c70f846762e\CLI.Foundation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3498.37582__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3498.37528__90ba9c70f846762e\LOG.Foundation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3498.37557__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3498.37572__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3498.37552__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3498.37548__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3498.37531__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3498.37547__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3498.37553__90ba9c70f846762e\APM.Foundation.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3498.37535__90ba9c70f846762e\AEM.Server.Shared.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3512.36801__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3512.36808__90ba9c70f846762e\CLI.Component.Dashboard.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3512.36800__90ba9c70f846762e\APM.Server.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3512.36801__90ba9c70f846762e\AEM.Server.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3498.37538__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3498.37549__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3498.37585__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3512.36889__90ba9c70f846762e\CCC.Implementation.dll ()
MOD - C:\Programme\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Programme\Common Files\Apple\Apple Application Support\ASL.dll ()
MOD - C:\Programme\HomeCinema\Power2Go\CLMLSvcPS.dll ()
MOD - C:\Programme\HomeCinema\Power2Go\CLMediaLibrary.dll ()
MOD - C:\Programme\ATI Technologies\ATI.ACE\Branding\Branding.dll ()
========== Win32 Services (SafeList) ==========
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (TeamViewer7) -- C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (TeamViewer6) -- C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (WMPNetworkSvc) -- C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (TeamViewer5) -- C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (ACDaemon) -- C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (fsssvc) -- C:\Programme\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (SeaPort) -- C:\Programme\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (odserv) -- C:\Programme\Common Files\microsoft shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (Microsoft Office Groove Audit Service) -- C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (ose) -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (tsusbhub) -- system32\drivers\tsusbhub.sys File not found
DRV - (Synth3dVsc) -- System32\drivers\synth3dvsc.sys File not found
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (TridVid) -- C:\Windows\System32\drivers\TridVid6010.sys (10Moons Technologies Co.,Ltd)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (AtiHdmiService) -- C:\Windows\System32\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (avgio) -- C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (teamviewervpn) -- C:\Windows\System32\drivers\teamviewervpn.sys (TeamViewer GmbH)
DRV - (LVUSBSta) -- C:\Windows\System32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (PID_0928) Logitech QuickCam Express(PID_0928) -- C:\Windows\System32\drivers\LV561AV.SYS (Logitech Inc.)
DRV - (Afc) -- C:\Windows\System32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (APL531) -- C:\Windows\System32\drivers\ov550i.sys (Omnivision Technologies, Inc.)
DRV - (senfilt) -- C:\Windows\System32\drivers\senfilt.sys (Creative Technology Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5A 5B 65 58 32 82 CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {90569BEF-AC53-435E-AC6A-13DF7B05DD63}
IE - HKCU\..\SearchScopes\{90569BEF-AC53-435E-AC6A-13DF7B05DD63}: "URL" = hxxp://www.google.de/search?q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID-Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [{97BAB48E-77F8-E8EE-b85F-A9E89E95EB78}] "C:\Program Files\Philips PhotoFrame Manager\AvqAutorun.exe" "C:\Program Files\Philips PhotoFrame Manager\MMCenter.exe" /OnPlug=%s File not found
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\HomeCinema\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [XeroxEndeavorBackgroundTask] C:\Windows\System32\xrWCbgnd.dll (Xerox Corporation)
O4 - HKCU..\Run: [Ochoe] C:\Users\xxx\AppData\Roaming\Igen\iqmar.exe (Initex)
O4 - Startup: C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0665BCB5-F45A-4A2B-90A3-862CFBFCDCEB}: NameServer = 192.168.5.254
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programme\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2012.05.14 12:08:09 | 000,595,456 | ---- | C] (OldTimer Tools) -- C:\Users\xxx\Desktop\OTL.exe
[2012.05.13 18:05:49 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Yzirxy
[2012.05.13 18:05:49 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Igen
[2012.05.13 18:05:49 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Abidu
[2012.05.11 12:16:05 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012.05.11 12:16:04 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012.05.11 12:16:03 | 002,343,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012.05.11 12:15:52 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012.04.17 16:15:20 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012.04.17 16:15:19 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012.04.17 16:15:18 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012.04.17 16:15:18 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012.04.17 16:15:18 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[1 C:\Users\xxx\Documents\*.tmp files -> C:\Users\xxx\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.05.14 12:10:57 | 003,407,872 | -HS- | M] () -- C:\Users\xxx\ntuser.dat
[2012.05.14 12:07:10 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Users\xxx\Desktop\OTL.exe
[2012.05.14 11:26:12 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.05.14 10:50:17 | 000,017,136 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.05.14 10:50:17 | 000,017,136 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.05.14 10:42:08 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2012.05.14 10:42:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.05.14 10:41:59 | 2011,803,648 | -HS- | M] () -- C:\hiberfil.sys
[2012.05.12 12:18:59 | 003,031,467 | -H-- | M] () -- C:\Users\xxx\AppData\Local\IconCache.db
[2012.05.11 16:10:28 | 000,418,144 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.05.11 13:03:07 | 001,541,262 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2012.05.11 13:03:07 | 000,662,276 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012.05.11 13:03:07 | 000,622,856 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.05.11 13:03:07 | 000,133,346 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012.05.11 13:03:07 | 000,108,978 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.05.10 22:15:44 | 002,407,856 | ---- | M] () -- C:\Users\xxx\Documents\IMG_1700.jpg
[2012.05.05 17:26:13 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012.05.05 17:26:13 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012.04.18 08:52:07 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[1 C:\Users\xxx\Documents\*.tmp files -> C:\Users\xxx\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.05.10 22:15:43 | 002,407,856 | ---- | C] () -- C:\Users\xxx\Documents\IMG_1700.jpg
[2011.06.21 12:43:17 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011.06.21 12:41:24 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011.06.21 12:41:23 | 000,053,600 | ---- | C] () -- C:\Windows\System32\dosx.exe
[2010.10.22 13:04:06 | 000,000,381 | ---- | C] () -- C:\Windows\ulead32.ini
[2010.10.22 13:00:01 | 000,026,112 | ---- | C] () -- C:\Windows\RunUnDrv.exe
========== LOP Check ==========
[2012.05.13 18:05:49 | 000,000,000 | ---D | M] -- C:\Users\xxx\AppData\Roaming\Abidu
[2012.05.13 18:05:49 | 000,000,000 | ---D | M] -- C:\Users\xxx\AppData\Roaming\Igen
[2009.12.21 14:31:33 | 000,000,000 | ---D | M] -- C:\Users\xxx\AppData\Roaming\TeamViewer
[2012.05.14 10:43:03 | 000,000,000 | ---D | M] -- C:\Users\xxx\AppData\Roaming\Yzirxy
[2012.04.30 09:55:16 | 000,032,632 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
| |
