habe es vergessen auf dem destop zu speichern...
OTL Logfile: Code:
OTL logfile created on: 01.06.2010 23:26:11 - Run 1
OTL by OldTimer - Version 3.2.5.2 Folder = C:\Users\Ruby\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222,75 Gb Total Space | 148,91 Gb Free Space | 66,85% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 4,90 Gb Free Space | 49,04% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: RUBY-LAPTOP
Current User Name: Ruby
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Users\Ruby\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Cisco Systems\VPN Client\cvpnd.exe (Cisco Systems, Inc.)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Programme\Stardock\ObjectDock\ObjectDock.exe (Stardock)
PRC - C:\Programme\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
PRC - C:\Programme\Common Files\Logishrd\KHAL2\KHALMNPR.exe (Logitech, Inc.)
PRC - C:\Programme\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\Programme\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
PRC - C:\Programme\DellTPad\hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\ApntEx.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\ApMsgFwd.exe (Alps Electric Co., Ltd.)
PRC - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\stacsv.exe (IDT, Inc.)
PRC - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\AEstSrv.exe (Andrea Electronics Corporation)
PRC - C:\Programme\Dell\QuickSet\quickset.exe (Dell Inc.)
PRC - C:\Programme\Dell Webcam\Dell Webcam Central\WebcamDell.exe (Creative Technology Ltd.)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Programme\Saitek\SD6\Software\SaiMfd.exe (Saitek)
PRC - C:\Programme\Saitek\SD6\Software\ProfilerU.exe (Saitek)
========== Modules (SafeList) ==========
MOD - C:\Users\Ruby\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (CVPND) -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe (Cisco Systems, Inc.)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (GoToAssist) -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
SRV - (STacSV) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\stacsv.exe (IDT, Inc.)
SRV - (AESTFilters) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\AEstSrv.exe (Andrea Electronics Corporation)
SRV - (WlansvcWlansvc) -- C:\Windows\System32\advpacka.exe ()
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (Lbd) -- C:\Windows\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (CVPNDRVA) -- C:\Windows\System32\drivers\CVPNDRVA.sys (Cisco Systems, Inc.)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgio) -- C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (DNE) -- C:\Windows\System32\drivers\dne2000.sys (Deterministic Networks, Inc.)
DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (OA001Ufd) -- C:\Windows\System32\drivers\OA001Ufd.sys (Creative Technology Ltd.)
DRV - (OA001Vid) -- C:\Windows\System32\drivers\OA001Vid.sys (Creative Technology Ltd.)
DRV - (adfs) -- C:\Windows\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (BCM43XX) -- C:\Windows\System32\drivers\BCMWL6.SYS (Broadcom Corporation)
DRV - (BCM42RLY) -- C:\Windows\System32\drivers\bcm42rly.sys (Broadcom Corporation)
DRV - (itecir) -- C:\Windows\System32\drivers\itecir.sys (ITE Tech. Inc. )
DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (STHDA) -- C:\Windows\System32\drivers\stwrt.sys (IDT, Inc.)
DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC)
DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC)
DRV - (k57nd60x) Broadcom NetLink (TM) -- C:\Windows\System32\drivers\k57nd60x.sys (Broadcom Corporation)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (VST_DPV) -- C:\Windows\System32\drivers\VSTDPV3.SYS (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\Windows\System32\drivers\VSTCNXT3.SYS (Conexant Systems, Inc.)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (VSTHWBS2) -- C:\Windows\System32\drivers\VSTBS23.SYS (Conexant Systems, Inc.)
DRV - (e1express) Intel(R) -- C:\Windows\System32\drivers\e1e6032.sys (Intel Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (SaiNtBus) -- C:\Windows\System32\drivers\SaiBus.sys (Saitek)
DRV - (SaiMini) -- C:\Windows\System32\drivers\SaiMini.sys (Saitek)
DRV - (SaiH80C0) -- C:\Windows\System32\drivers\SaiH80C0.sys (Saitek)
DRV - (CVirtA) -- C:\Windows\System32\drivers\CVirtA.sys (Cisco Systems, Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=3081217
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=3081217
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=3081217
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.071303000004
FF - prefs.js..extensions.enabledItems: {B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - HKLM\software\mozilla\Firefox\Extensions\\{400F0BDB-6C49-43A4-BE1F-76D7327A604D}: C:\Program Files\Common Files\fluxDVD\Download Manager\Mozilla [2009.01.29 22:49:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.28 17:56:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.31 14:43:07 | 000,000,000 | ---D | M]
[2008.12.24 22:20:40 | 000,000,000 | ---D | M] -- C:\Users\Ruby\AppData\Roaming\mozilla\Extensions
[2010.06.01 18:15:41 | 000,000,000 | ---D | M] -- C:\Users\Ruby\AppData\Roaming\mozilla\Firefox\Profiles\di9xmhig.default\extensions
[2009.09.08 22:34:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Ruby\AppData\Roaming\mozilla\Firefox\Profiles\di9xmhig.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.04.03 10:52:54 | 000,000,000 | ---D | M] -- C:\Users\Ruby\AppData\Roaming\mozilla\Firefox\Profiles\di9xmhig.default\extensions\moveplayer@movenetworks.com
[2010.05.31 15:30:39 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.05.31 14:43:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2007.03.02 15:17:24 | 000,095,200 | ---- | M] () -- C:\Programme\Mozilla Firefox\plugins\NPAPIX.dll
[2010.05.31 14:42:57 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2007.01.17 13:18:04 | 000,095,200 | ---- | M] () -- C:\Programme\Mozilla Firefox\plugins\NPFluxBrowserHelper.dll
[2007.09.07 16:25:50 | 000,103,064 | ---- | M] () -- C:\Programme\Mozilla Firefox\plugins\NPMPDRM.dll
[2007.09.07 15:46:48 | 000,098,968 | ---- | M] () -- C:\Programme\Mozilla Firefox\plugins\NPWMDRMWrapper.dll
[2010.01.18 14:41:01 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.01.18 14:41:01 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.01.18 14:41:01 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.01.18 14:41:01 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.01.18 14:41:01 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2008.12.26 17:23:03 | 000,000,794 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (Download Manager Browser Helper Object) - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\Programme\Common Files\fluxDVD\Download Manager\XEBDLHelper.dll (Protect Software GmbH)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Programme\Dell\BAE\BAE.dll (Dell Inc.)
O4 - HKLM..\Run: [Apoint] C:\Programme\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [ProfilerU] C:\Programme\Saitek\SD6\Software\ProfilerU.exe (Saitek)
O4 - HKLM..\Run: [SaiMfd] C:\Programme\Saitek\SD6\Software\SaiMfd.exe (Saitek)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Ruby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk = C:\Programme\Stardock\ObjectDock\ObjectDock.exe (Stardock)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll - C:\Programme\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O24 - Desktop WallPaper: C:\Users\Ruby\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Ruby\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.06.01 23:24:49 | 000,571,392 | ---- | C] (OldTimer Tools) -- C:\Users\Ruby\Desktop\OTL.exe
[2010.06.01 20:03:37 | 000,000,000 | ---D | C] -- C:\Users\Ruby\AppData\Roaming\Malwarebytes
[2010.06.01 20:03:27 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.06.01 20:03:25 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.06.01 20:03:25 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.06.01 20:03:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.06.01 10:59:00 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2010.06.01 10:58:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2010.06.01 10:58:56 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010.06.01 10:39:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2010.06.01 10:39:16 | 000,000,000 | ---D | C] -- C:\Programme\Lavasoft
[2010.06.01 10:39:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2010.05.31 17:17:32 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\Sozi_Präsi
[2010.05.31 14:43:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.05.31 14:43:25 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.05.31 14:43:07 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.05.31 14:43:07 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.05.31 14:43:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.05.31 14:43:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.05.31 14:42:54 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.05.31 13:45:23 | 000,000,000 | ---D | C] -- C:\Users\Ruby\AppData\Local\MigWiz
[2010.05.31 13:29:43 | 000,000,000 | ---D | C] -- C:\Users\Ruby\AppData\Local\Deployment
[2010.05.30 17:34:22 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010.05.30 17:20:25 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010.05.30 17:05:14 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010.05.30 16:52:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Roxio
[2010.05.28 19:21:16 | 000,000,000 | ---D | C] -- C:\Users\Ruby\AppData\Roaming\Media Player Classic
[2010.05.28 17:24:32 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\JusticeLeague.Crisis.on.Two.Earths.2010.DVDRIP.XviD_By-Lion_Boy877-SpicyForums.Com
[2010.05.28 17:22:36 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\HQ-Uploads.com_The.Good.Heart.LIMITED.DVDSCR.XviD-BLUNTROLA
[2010.05.26 22:29:54 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\Edge.of.Darkness-10.m720p.coolhd
[2010.05.26 12:09:15 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.05.26 11:56:18 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\elia-darkisland-poizonx.com
[2010.05.25 22:56:08 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\Legion.By.Al-Raheem_Just4FreePlanet.Com
[2010.05.25 22:54:26 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Desktop\Warez-ape.com_Self_Medicated
[2010.05.07 18:48:48 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Deterministic Networks
[2010.05.07 13:50:47 | 000,000,000 | ---D | C] -- C:\Users\Ruby\Documents\BOS2_präsi
========== Files - Modified Within 30 Days ==========
[2010.06.01 23:27:46 | 004,718,592 | -HS- | M] () -- C:\Users\Ruby\ntuser.dat
[2010.06.01 23:24:52 | 000,571,392 | ---- | M] (OldTimer Tools) -- C:\Users\Ruby\Desktop\OTL.exe
[2010.06.01 21:34:16 | 001,418,806 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.06.01 21:34:16 | 000,618,442 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.06.01 21:34:16 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.06.01 21:34:16 | 000,122,842 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.06.01 21:34:16 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.06.01 21:28:02 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.06.01 21:28:00 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.06.01 21:28:00 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.06.01 21:27:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.06.01 21:27:38 | 3215,826,944 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.01 21:26:16 | 000,524,288 | -HS- | M] () -- C:\Users\Ruby\ntuser.dat{32a3d505-e7d1-11de-a654-00059a3c7800}.TMContainer00000000000000000001.regtrans-ms
[2010.06.01 21:26:16 | 000,065,536 | -HS- | M] () -- C:\Users\Ruby\ntuser.dat{32a3d505-e7d1-11de-a654-00059a3c7800}.TM.blf
[2010.06.01 21:26:15 | 003,137,979 | -H-- | M] () -- C:\Users\Ruby\AppData\Local\IconCache.db
[2010.06.01 16:06:54 | 000,030,872 | ---- | M] () -- C:\Users\Ruby\Desktop\bookmarks.html
[2010.06.01 10:58:55 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010.06.01 10:58:54 | 000,015,880 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2010.05.31 15:16:19 | 000,000,195 | --S- | M] () -- C:\Windows\System32\3240411575.dat
[2010.05.31 15:15:49 | 002,355,296 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.05.31 15:13:54 | 000,000,306 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2010.05.31 14:42:56 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.05.31 14:42:56 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.05.31 14:42:56 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.05.31 14:42:56 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.05.31 14:41:31 | 000,002,671 | ---- | M] () -- C:\Users\Ruby\Desktop\RapidShare Manager.lnk
[2010.05.31 13:17:17 | 000,002,565 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VPN Client.lnk
[2010.05.30 17:29:19 | 250,842,414 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.05.30 17:12:53 | 000,190,976 | ---- | M] () -- C:\Windows\Ctetea.exe
[2010.05.30 17:02:35 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.05.30 17:02:35 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.05.30 16:54:22 | 000,000,146 | ---- | M] () -- C:\Windows\WININIT.INI
[2010.05.18 15:30:49 | 000,140,782 | ---- | M] () -- C:\Users\Ruby\Documents\BUY_VIP_TASCHE.jpg
[2010.05.12 11:21:16 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.05.07 18:55:53 | 000,000,820 | ---- | M] () -- C:\Users\Ruby\Documents\Uni-SB_VPN-Server_world-secure.pcf
[2010.05.07 18:55:25 | 000,002,925 | ---- | M] () -- C:\Users\Ruby\Documents\vpn-client.p12
[2010.05.07 18:50:29 | 000,001,594 | ---- | M] () -- C:\Windows\VPNInstall.MIF
[2010.05.07 18:45:06 | 000,001,594 | ---- | M] () -- C:\Windows\VPNUnInstall.MIF
[2010.05.04 15:10:37 | 000,353,792 | ---- | M] () -- C:\Users\Ruby\Documents\Klausurskript_Allgemeine.doc
[2010.05.04 15:10:32 | 000,434,176 | ---- | M] () -- C:\Users\Ruby\Documents\Klausurfragen_bio(Druckversion).doc
========== Files Created - No Company Name ==========
[2010.06.01 16:06:54 | 000,030,872 | ---- | C] () -- C:\Users\Ruby\Desktop\bookmarks.html
[2010.06.01 11:59:15 | 000,015,880 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2010.05.31 15:13:54 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010.05.31 14:41:31 | 000,002,671 | ---- | C] () -- C:\Users\Ruby\Desktop\RapidShare Manager.lnk
[2010.05.30 17:35:40 | 3215,826,944 | -HS- | C] () -- C:\hiberfil.sys
[2010.05.30 17:20:13 | 250,842,414 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010.05.30 17:13:03 | 000,190,976 | ---- | C] () -- C:\Windows\Ctetea.exe
[2010.05.30 17:12:59 | 000,000,195 | --S- | C] () -- C:\Windows\System32\3240411575.dat
[2010.05.30 17:02:35 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010.05.30 17:02:35 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010.05.30 16:54:22 | 000,000,146 | ---- | C] () -- C:\Windows\WININIT.INI
[2010.05.18 15:30:49 | 000,140,782 | ---- | C] () -- C:\Users\Ruby\Documents\BUY_VIP_TASCHE.jpg
[2010.05.07 18:55:52 | 000,000,820 | ---- | C] () -- C:\Users\Ruby\Documents\Uni-SB_VPN-Server_world-secure.pcf
[2010.05.07 18:55:22 | 000,002,925 | ---- | C] () -- C:\Users\Ruby\Documents\vpn-client.p12
[2010.05.07 18:48:50 | 000,002,565 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VPN Client.lnk
[2010.05.07 18:38:37 | 000,001,594 | ---- | C] () -- C:\Windows\VPNUnInstall.MIF
[2010.05.04 15:10:37 | 000,353,792 | ---- | C] () -- C:\Users\Ruby\Documents\Klausurskript_Allgemeine.doc
[2010.05.04 15:10:32 | 000,434,176 | ---- | C] () -- C:\Users\Ruby\Documents\Klausurfragen_bio(Druckversion).doc
[2009.09.25 14:18:43 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.08.23 21:41:22 | 000,197,424 | ---- | C] () -- C:\Windows\System32\vpnapi.dll
[2008.12.26 17:25:33 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.12.17 22:31:15 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008.12.17 13:58:39 | 000,055,808 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2008.01.21 04:23:43 | 000,048,585 | ---- | C] () -- C:\Windows\System32\AltTabz.sys
[2007.05.01 17:01:36 | 001,708,032 | ---- | C] () -- C:\Windows\System32\SaiC80C0.Dll
[2007.05.01 17:01:36 | 000,008,704 | ---- | C] () -- C:\Windows\System32\SaiC80C0_0C.dll
[2007.05.01 17:01:36 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC80C0_10.dll
[2007.05.01 17:01:36 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC80C0_0A.dll
[2007.05.01 17:01:36 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC80C0_07.dll
[2007.05.01 17:01:36 | 000,007,680 | ---- | C] () -- C:\Windows\System32\SaiC80C0_09.dll
[2007.05.01 17:01:36 | 000,007,168 | ---- | C] () -- C:\Windows\System32\SaiC80C0_0402.dll
[2007.05.01 17:01:36 | 000,005,632 | ---- | C] () -- C:\Windows\System32\SaiC80C0_11.dll
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
< End of report > --- --- ---
OTL Logfile: Code:
OTL Extras logfile created on: 01.06.2010 23:26:11 - Run 1
OTL by OldTimer - Version 3.2.5.2 Folder = C:\Users\Ruby\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222,75 Gb Total Space | 148,91 Gb Free Space | 66,85% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 4,90 Gb Free Space | 49,04% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: RUBY-LAPTOP
Current User Name: Ruby
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{014C3E82-88A6-44BA-9A00-9B66ADBBFB7E}" = rport=445 | protocol=6 | dir=out | app=system |
"{052D22EC-BD9D-4B57-8F8B-E01ACEBA6AE4}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{0890F07E-94AA-430D-88CE-AC04D13D449F}" = lport=138 | protocol=17 | dir=in | app=system |
"{1932EF63-197A-470B-976E-5018EE48701E}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{1CACC933-ADFD-490B-BF3D-C3B271C7F653}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{294C8EA6-FAE8-4031-BBF7-DE9AB8D80E8D}" = lport=139 | protocol=6 | dir=in | app=system |
"{374241A3-6B7F-40B0-AB7E-E9C98046BDB2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{374B091F-72DB-45EC-A028-9CDF1574D638}" = lport=445 | protocol=6 | dir=in | app=system |
"{49D38AC3-7470-4F41-B89C-751652996EDF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4F32CC9E-D871-4E06-820C-0585DAE051D8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{70BE3B0C-738C-4CBB-8805-D14E9D2CFC25}" = rport=137 | protocol=17 | dir=out | app=system |
"{7EAB4DF5-6889-46E4-B6CA-56C0FEDD8641}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8CA62236-8EAE-4591-916B-03EBCC8CD4F0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AB29DE6B-87DF-4179-A88D-1B46FEB39C25}" = rport=138 | protocol=17 | dir=out | app=system |
"{B9117DD5-E391-4D3F-A120-3E56CED05053}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{C86DF4B9-F7DE-4ED4-8490-7ECB3560EF13}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DBD57514-7F92-4602-B3C1-294B6B1A5B8A}" = lport=137 | protocol=17 | dir=in | app=system |
"{E547C15C-1BB8-4F34-9DB8-C3F169633803}" = rport=139 | protocol=6 | dir=out | app=system |
"{FE8C2618-F1B2-438B-AC44-AF543F335BDE}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04A86A19-D58D-44AC-9BCD-C860A72E8543}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\last remnant - demo sel\binaries\tlrdemo.exe |
"{27D94F15-2EF8-48C8-872A-442A07EE1D03}" = protocol=17 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe |
"{2920C0D8-1609-4D2C-BC78-4207689992CE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3DED5CD6-DE17-4F0B-90AE-47CE749BC019}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{4F7544CD-1B1E-4C5B-B1E8-31BBD6ED0ADF}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{52DDD81D-72A7-422E-9DD4-C354404C5B2B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5FC0079E-7F6C-439F-A644-C1BF6771C10A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{72AF059D-2247-4C54-886D-9B854E249C54}" = protocol=6 | dir=in | app=c:\program files\cisco systems\vpn client\vpngui.exe |
"{82801EEE-9427-4CDA-8D6E-9724A249FAB8}" = dir=in | app=c:\program files\dell\mediadirect\mediadirect.exe |
"{83E1CD35-62FC-4288-BC3D-042C0C3F3611}" = dir=in | app=c:\program files\dell\mediadirect\kernel\dmp\clbrowserengine.exe |
"{84CC67D6-3C54-418F-8D2A-DC9AF55A4C99}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{94D26A21-54AE-4195-9B5F-3F26D88E4BB0}" = protocol=6 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{9577A3E2-CECF-4D17-8EA2-35443A6635F7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9A96C962-91EC-450B-951E-0ED2D06EE90A}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{AB613024-C356-4E1F-A929-991049B82DB5}" = dir=in | app=c:\program files\dell\mediadirect\pcmservice.exe |
"{B1EB7197-004C-4837-BB07-D87D2F975185}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BF52504B-E988-4950-9C25-FEC0447F1A8C}" = protocol=17 | dir=in | app=c:\program files\cisco systems\vpn client\vpngui.exe |
"{E32926B6-4200-4EA1-B2A1-056850ACC1A9}" = protocol=17 | dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{E483A919-37FE-475C-8237-100258A77313}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{EC34F633-162D-4F02-92F3-1FB55410D06C}" = dir=in | app=c:\program files\dell\mediadirect\kernel\dms\clmsservice.exe |
"{ECA8073D-FDF1-4ADC-A746-4B826A21B18A}" = protocol=6 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe |
"{EF36C861-97F2-41FF-A713-0F57A4159BFA}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\last remnant - demo sel\binaries\tlrdemo.exe |
"{F38725AE-D1F8-4C64-AA1F-56A517BCFA19}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{F973C46B-7A7F-4803-874F-B50CB35A24C3}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"TCP Query User{06C07C87-EE6B-433B-ACE9-C791BEBEC326}C:\program files\bittornado\btdownloadgui.exe" = protocol=6 | dir=in | app=c:\program files\bittornado\btdownloadgui.exe |
"TCP Query User{20F6CB85-CBB1-4CBD-B0AD-344A00849FD7}C:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe |
"TCP Query User{325AD0B3-45D4-4D17-A6B8-4368E97D869F}C:\program files\lecturnity player\jre5\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\lecturnity player\jre5\bin\javaw.exe |
"TCP Query User{4FCA672B-A51B-4E1F-AFBB-BC8B93D1E152}C:\program files\bittornado\btdownloadgui.exe" = protocol=6 | dir=in | app=c:\program files\bittornado\btdownloadgui.exe |
"TCP Query User{703B39C6-75AD-4583-8EEA-08A2DF58398D}C:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe |
"TCP Query User{78D259EA-2FE2-4A87-B187-416E5190584F}C:\program files\steam\steamapps\g1fted\half-life 2 deathmatch\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\g1fted\half-life 2 deathmatch\hl2.exe |
"TCP Query User{D83AEB0D-C215-48FA-A9E7-1C9D9C7FE995}C:\program files\lecturnity player\jre5\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\lecturnity player\jre5\bin\javaw.exe |
"UDP Query User{45C3682B-84F3-477A-90D0-70F473BA130F}C:\program files\bittornado\btdownloadgui.exe" = protocol=17 | dir=in | app=c:\program files\bittornado\btdownloadgui.exe |
"UDP Query User{5A513372-89B1-409B-90EA-C8C874018D1C}C:\program files\steam\steamapps\g1fted\half-life 2 deathmatch\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\g1fted\half-life 2 deathmatch\hl2.exe |
"UDP Query User{5D9EA444-1C39-4763-8EE3-359447F85AD0}C:\program files\lecturnity player\jre5\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\lecturnity player\jre5\bin\javaw.exe |
"UDP Query User{6682CA00-727D-40A8-8A3D-577680B32D58}C:\program files\lecturnity player\jre5\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\lecturnity player\jre5\bin\javaw.exe |
"UDP Query User{71E2FB6C-3F56-4188-B753-F245199B532E}C:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe |
"UDP Query User{9845572B-B93A-4ADE-99FE-10E2F45D1ED0}C:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\pr1nca55\half-life 2 deathmatch\hl2.exe |
"UDP Query User{BBD62A78-D2DB-410A-B1A1-71DD136AA60B}C:\program files\bittornado\btdownloadgui.exe" = protocol=17 | dir=in | app=c:\program files\bittornado\btdownloadgui.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0709B06B-82BC-6073-0E43-DE107DF1389C}" = Catalyst Control Center Localization Spanish
"{08B785C1-3893-4154-B53B-F5D341D0AAAA}" = Cisco Systems VPN Client 5.0.06.0110
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D4BA8C5-ED23-4BEF-94B8-95CFCAC73FFC}" = Saitek SD6 Programming Software 6.0.10.7
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{11D03BF4-A66F-325E-7762-4F64586C673F}" = Catalyst Control Center Graphics Full New
"{15EB6A85-A28D-2ED8-C344-DEBC592F2E12}" = Catalyst Control Center Localization German
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{28C3CD30-2DF4-FEFA-3F4E-D6C1C3257FCE}" = ccc-core-static
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{32C2CBBB-4540-E526-206D-B7BC7932D82F}" = CCC Help Danish
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{425819E1-D68E-8CE1-85D5-CDBA64E82DDE}" = CCC Help Japanese
"{4392E2AF-1643-29DA-E873-C94D547467D7}" = Catalyst Control Center Localization Swedish
"{44FDDB51-0E97-DD4A-9FB2-8D394DBEE47F}" = CCC Help Dutch
"{48C86A94-A6C0-D2D0-1649-ECB00D2DF4DE}" = Catalyst Control Center Localization Norwegian
"{48CC1AD8-2013-82B3-284F-E0253195664F}" = Catalyst Control Center Localization French
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{496C34BF-9DE5-9628-48CC-052DD6A8453E}" = Catalyst Control Center Core Implementation
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A4D109A-D9C4-E460-4F9A-0252F581D600}" = CCC Help Swedish
"{4CA09BF7-1CFC-44B8-80EA-7B4D15D12DC5}" = Catalyst Control Center - Branding
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{57847CB0-95DA-D785-B170-1F00FC79B860}" = Catalyst Control Center Localization Chinese Traditional
"{5A72A2C4-9D4A-0718-DA28-95B73C2270DA}" = Catalyst Control Center Localization Danish
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682FED0E-738E-0048-F448-B3EE427978CC}" = Catalyst Control Center Localization Japanese
"{6B00208E-2844-7480-5F50-6515A5907F0B}" = CCC Help Norwegian
"{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}" = EDocs
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76E12A66-1AEC-3816-E75A-330998F2D40C}" = CCC Help Korean
"{79FBDD2E-DD2B-141A-DCF0-B8C125B5A008}" = Catalyst Control Center Graphics Previews Vista
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C63DFEB-6176-C3F1-AA83-F997E32B44EA}" = Catalyst Control Center Localization Portuguese
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{84557D91-D8C7-D7A4-1393-3AB3A16106C7}" = CCC Help Chinese Traditional
"{8624888C-A959-45A5-98F4-292E956325EA}" = LECTURNITY Player
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00B0-0409-0000-0000000FF1CE}" = Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9266D931-C05C-86F5-B74A-B1A382249916}" = Catalyst Control Center Localization Italian
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94333A1C-DC4A-E70F-FA92-16AB6F2443D6}" = Catalyst Control Center Graphics Full Existing
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{974BBAF1-048D-4230-2254-62FEA00B18E9}" = Skins
"{998D91BE-65FE-8B9D-5C6E-1D52401EAAA1}" = CCC Help English
"{9AB377EE-454D-374C-C309-D2DFA9AB535B}" = CCC Help Italian
"{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}" = MediaDirect
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A4874CD2-6942-E7A7-3690-277B9CB56DF5}" = Catalyst Control Center Graphics Light
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B578DD15-CB17-CBB8-611E-D1AE7D5568AC}" = Catalyst Control Center Graphics Previews Common
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BC5C42B3-CE50-8D5E-A495-6C48C0FF6336}" = CCC Help Portuguese
"{BEFFB92B-8238-E6B7-E9D4-494BA407E593}" = Catalyst Control Center Localization Korean
"{BFC19AEE-8C4D-65BF-3BAE-729D1252E86C}" = Catalyst Control Center InstallProxy
"{C177F7FD-C061-003B-47F6-41483424517B}" = Catalyst Control Center Localization Chinese Standard
"{C4972073-2BFE-475D-8441-564EA97DA161}" = QuickSet
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3171626-2269-7CF9-82AC-7BFC534A0E6A}" = ccc-utility
"{D86C72D4-57DB-D59E-1FE3-9ED8819B28C4}" = Catalyst Control Center Localization Russian
"{DAD207CE-44D2-0C73-198B-8DD3B4F27426}" = CCC Help Spanish
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E1ED3247-902C-9B94-31AB-81572A6D77AA}" = Catalyst Control Center Localization Dutch
"{E374F278-E64E-D574-332F-AE9241580749}" = CCC Help Chinese Standard
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E60E58A1-6093-3DFC-C382-3702EFB40F0E}" = CCC Help French
"{E87A027B-8051-4323-1B8D-34CB90A9EEBE}" = CCC Help German
"{EAD1C99F-6325-E477-C94C-58B2DB656959}" = Catalyst Control Center Localization Finnish
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F688B66F-AC95-809B-0056-154AF871D5EF}" = CCC Help Finnish
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FC41BB0E-F005-F0B8-9040-18E935D752E7}" = CCC Help Russian
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FCED9B62-34FF-4C15-8A23-F65221F7874D}" = ITECIR Driver
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BitTornado" = BitTornado 0.3.18
"Broadcom 802.11b Network Adapter" = Dienstprogramm für Dell Wireless WLAN Karte
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Creative OA001" = Integrated Webcam Driver (1.03.01.0825)
"Dell Video Chat" = Dell Video Chat (remove only)
"Dell Webcam Central" = Dell Webcam Central
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GoToAssist" = GoToAssist 8.0.0.514
"HijackThis" = HijackThis 2.0.2
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.9)" = Mozilla Firefox (3.5.9)
"Mumble" = Mumble and Murmur
"ObjectDock Plus" = ObjectDock Plus
"PhotoScape" = PhotoScape
"Steam App 320" = Half-Life 2: Deathmatch
"VLC media player" = VLC media player 0.9.8a
"Winamp" = Winamp
"WinRAR archiver" = WinRAR archiver
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"5f48e2ab41c5d005" = RapidShare Manager
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 28.05.2010 08:05:04 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =
Error - 28.05.2010 09:07:59 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 28.05.2010 09:07:59 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 28.05.2010 09:08:03 | Computer Name = Ruby-LAPTOP | Source = WinMgmt | ID = 10
Description =
Error - 30.05.2010 10:30:55 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 30.05.2010 10:30:55 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 30.05.2010 10:30:57 | Computer Name = Ruby-LAPTOP | Source = WinMgmt | ID = 10
Description =
Error - 30.05.2010 10:36:18 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 30.05.2010 11:01:48 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 30.05.2010 11:01:48 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
[ Broadcom Wireless LAN Events ]
Error - 28.05.2010 09:06:37 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 15:06:37, Fri, May 28, 10 Error - User "" does not have administrative
privileges on this system
Error - 28.05.2010 13:24:00 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 19:24:00, Fri, May 28, 10 Error - User "" does not have administrative
privileges on this system
Error - 28.05.2010 13:24:00 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 19:24:00, Fri, May 28, 10 Error - User "" does not have administrative
privileges on this system
Error - 30.05.2010 10:59:57 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 16:59:57, Sun, May 30, 10 Error - User "" does not have administrative
privileges on this system
Error - 30.05.2010 10:59:57 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 16:59:57, Sun, May 30, 10 Error - User "" does not have administrative
privileges on this system
Error - 30.05.2010 16:33:08 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 22:33:08, Sun, May 30, 10 Error - User "" does not have administrative
privileges on this system
Error - 30.05.2010 16:33:08 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 22:33:08, Sun, May 30, 10 Error - User "" does not have administrative
privileges on this system
Error - 31.05.2010 09:14:10 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 15:14:10, Mon, May 31, 10 Error - User "" does not have administrative
privileges on this system
Error - 31.05.2010 09:14:10 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 15:14:10, Mon, May 31, 10 Error - User "" does not have administrative
privileges on this system
Error - 01.06.2010 15:26:14 | Computer Name = Ruby-LAPTOP | Source = WLAN-Tray | ID = 0
Description = 21:26:14, Tue, Jun 01, 10 Error - User "" does not have administrative
privileges on this system
[ System Events ]
Error - 26.10.2009 07:23:00 | Computer Name = Ruby-LAPTOP | Source = srv | ID = 2019
Description = Der Server konnte keinen nicht ausgelagerten Poolspeicher reservieren,
da der Pool leer war.
Error - 26.10.2009 07:24:00 | Computer Name = Ruby-LAPTOP | Source = srv | ID = 2017
Description = Der Server konnte keinen nicht-ausgelagerten Poolspeicher reservieren,
da die konfigurierte Grenze für die Reservierung von nicht-ausgelagertem Poolspeicher
erreicht wurde.
Error - 26.10.2009 07:25:00 | Computer Name = Ruby-LAPTOP | Source = srv | ID = 2017
Description = Der Server konnte keinen nicht-ausgelagerten Poolspeicher reservieren,
da die konfigurierte Grenze für die Reservierung von nicht-ausgelagertem Poolspeicher
erreicht wurde.
Error - 26.10.2009 07:29:47 | Computer Name = Ruby-LAPTOP | Source = HTTP | ID = 15016
Description =
Error - 26.10.2009 12:52:18 | Computer Name = Ruby-LAPTOP | Source = HTTP | ID = 15016
Description =
Error - 26.10.2009 17:32:24 | Computer Name = Ruby-LAPTOP | Source = HTTP | ID = 15016
Description =
Error - 26.10.2009 17:40:10 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-Service Pack Installer | ID = 6
Description =
Error - 26.10.2009 17:41:22 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-Service Pack Installer | ID = 6
Description =
Error - 26.10.2009 17:41:26 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-Service Pack Installer | ID = 6
Description =
Error - 26.10.2009 17:41:26 | Computer Name = Ruby-LAPTOP | Source = Microsoft-Windows-Service Pack Installer | ID = 8
Description =
< End of report > --- --- ---
falls der log auf dem desktop anders ausfallen würde, dann sagt bescheid und ich lass es nochma laufen |