Trooper01010 | 31.05.2013 12:59 | Hallo lieber Helfer,
JRT file: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Dominic on 31.05.2013 at 13:23:51,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-3059594977-1893981943-3680611722-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT2319825
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\ibupdaterservice"
Successfully deleted: [Folder] "C:\ProgramData\partner"
Successfully deleted: [Folder] "C:\Users\Dominic\AppData\Roaming\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Users\Dominic\AppData\Roaming\loadtbs"
Successfully deleted: [Folder] "C:\Users\Dominic\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Dominic\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\icq6toolbar"
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{01F8FB6B-207B-48C9-B351-9A5563140397}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{02542B20-474F-4DBD-A0EA-B7656E9AF210}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{058E23C7-8ABE-4BDD-AB33-A58FA6BF51CD}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{062F9E00-A287-41B8-AB4E-8CAF9DB5AAAB}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{078E8AF3-991D-4CD9-B6EF-A25EF9F83B15}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{08328267-1E66-4684-996D-30996436905D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{0B8337BC-DB7D-42F7-8E2E-62966606ACBF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{0D9851FB-30C1-4C7F-BF30-E97637B5A00C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{0EED2D60-EDCD-4E8D-AB1B-171C2BAFFF5A}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{1118CAD1-8D1A-48AD-A9E4-CEEAD05C058D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{1642E000-93D8-479D-B9C1-CC6FE60FF7DA}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{16C69E5D-315B-466F-8E91-D2ED273ED65D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{1794741C-5698-4054-98AC-BC2EAAA41357}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{199C5ED8-3EC8-4449-B486-89AD49EA861F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{1E8CD9C2-ACE5-4EBE-B332-4C27D6D5BD6F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{21BAF03E-C26A-489F-A6A5-84F63DA6C184}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{22A7B144-AD9F-4712-BE60-5360FB963FCB}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2444176C-FD64-46C7-969D-BA281F393F4B}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2900A96A-9FBE-4ECE-AE87-B1F22CE98376}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{292FA6BC-F751-49C4-A9AD-6DFAACC39BB6}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{29D61218-3FD6-4A0D-A4DB-68A320ACEF86}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2A4F6EE6-7EE2-4474-99A1-D0A1588CB912}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2BC6CAF2-2777-4968-9D7F-0C04E25D426D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2EF45248-8A29-4D80-B83A-A7EE077FEECE}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{2F6583DC-1F83-48E9-9F5D-EE0BEEC562E6}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{30B1C8EB-19BE-48F2-874A-97E86CDD7042}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{30F8C236-D7E5-4ED7-A77A-315B80385C6C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{31CF6DC2-5DA4-4413-AE19-910C05DBCE1F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3273CA27-667A-49B3-8094-99AC055C4031}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{327689E6-DED1-4F55-9A08-863670204BF7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{338AD03A-BD34-4C5C-8797-E628FEC33153}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3461DA13-CD11-4E0E-95E7-0052D78F74BE}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{368894A4-0C57-4448-8F93-9812940688F2}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3A9D3BDF-6AAF-4AAC-9F95-55A8218F5D06}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3B9229C1-09D3-44AB-ADB2-C29A57274ED4}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3C56B34F-2A65-4221-8C12-132E0B9BE8DF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{3FB8F2E2-669D-45F3-82F4-944DB3C02973}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{41CB959B-35C6-4B00-A350-A1299CEA1E2A}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{441673A4-70DF-4BAC-A075-7D57EFE0CF51}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{4AFD3C12-F00A-4A99-853F-754AF6FC7B24}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{4C1B7DA0-687F-4B7F-BE32-765BC5FB7E67}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{4CEEA122-6BC3-4633-A89E-D73AB72CE2C7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{4E385FEA-F71C-4891-BB04-A599D9B72C8A}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{4EEFB186-920E-4C75-A5E0-A3A3DA38B7A5}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{51CCF607-A129-4E19-975D-CA2A9D266DA7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{52086DD1-97A3-4337-A77D-AD0CA45A248F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{54238409-4600-41E5-90FA-5267C7EB1EBE}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{5504B3C3-50BA-4957-9996-97A2C70534C1}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{5786D357-A897-4061-BC2B-65A0D20AAC57}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{57C5501E-952D-43AE-BA75-CC99B83BEA7B}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{596B53F6-E19C-4075-A6AE-57BA84886AC0}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{5ECF4939-3E46-4F93-A788-B0A8E266110B}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{60C6437A-4B18-49AB-A385-1FE0BF7A6F43}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{641C9A2D-734A-4ACB-88DA-7844145BB7B7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{67A03D35-5270-41BD-8FF4-0775190EF512}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{68439F71-DF37-4400-945F-393321C67A5F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{69F6AC28-6479-475E-935F-D7EE4D2352E2}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{6B5E893E-326A-4C0A-9C3B-D775DADE340C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{6C6715B0-0D4E-40EB-A880-2E347B62A7F6}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{6F8BA779-F923-4288-9E0C-A29EFC8F4DE5}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{71496A5D-C69C-40A3-B6EF-FF9B7CAA715F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{731C39CD-E4B8-4C6D-8243-7E9E0F2EAF07}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{74FB6F64-8260-4A0A-B792-F74D1399812A}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{76FBD0AC-2CB3-4BBC-B05C-550372E5C886}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{774329BA-A01C-42F5-96DF-5D50EAA81342}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{77BEA92A-0763-46AE-96FD-317C4A5DE2F5}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{78485FF2-2559-4B63-A2A4-98906A5171DC}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{7AEC0BD0-37D3-4B8C-B233-F549DC8D6C9B}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{7CAC15E6-048B-48D2-BEA4-69EF3DDFBDEF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{7DEF9E11-7F83-47EC-9DEF-CBDCFB69903C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{8063FDF9-CFB8-4B50-9204-F61661CCA2AC}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{80B972DA-34DD-4F80-BB4C-C9FDA2FE69B1}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{85303BB7-11AA-4C43-8E6C-AF673DBD1E9E}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{876F11C5-182C-4300-A3D0-4C63BAFD1A0C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{87CF2DEC-69DB-4134-A9C0-508FEC19D677}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{8873F635-8DED-491D-87AB-2D5ED2D574FC}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{890E4039-6C3A-4F5C-9552-D87D5788C29A}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{8B93023A-8BB8-426F-B27E-338D169BD019}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{9055B579-66BA-47C0-AF78-A527FEC56B42}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{92A7C13A-E814-431F-92B8-A8D55EAEBEF0}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{957806CD-6AE5-469F-BC9F-AC26E755A2E0}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{9725585E-F06E-4FF9-A2BF-8B928E0AAE84}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{973798AA-A47E-4522-A970-E4609E571293}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{9782B083-4F3F-4C4A-B36B-124DE0A13E13}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{9894DC89-59FD-4DD7-91B5-1C4017B82CB8}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{9D6EE5D8-E873-47A9-9360-7CE68E792149}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{A1D08E2B-6B57-4DF4-A948-A45AB5C9D0FA}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{A57470E3-30B6-4AA7-92F8-FF51751D10EF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{A634D7C7-C236-46AD-B18A-1FFE9450307E}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{A7CF5052-296A-4B5A-A329-D8FABD5956D9}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{A9223511-8B3B-478B-91FE-F336DF07A3A2}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{AC05CBEA-A0A8-490B-AC45-DAD360DCE43F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{ADA97E34-D697-4E69-9C4F-C1994397E619}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{AF05AA3C-7DCF-468A-A355-573E1F50CDAD}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B2768729-4357-4E49-9BF6-729DB69528A9}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B2910725-3E95-4DB7-9E28-6274CB4101E8}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B355B3DD-87EE-414A-8CE7-E7650A0337C2}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B493BA2B-02B0-4A70-9FD0-1FDF26E20077}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B505E12F-8C00-4688-9D02-013420C0DE41}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B5F69279-3089-4ED9-AF15-6D4DDCED30C0}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B87C5836-5145-476B-85A1-643322CE87E3}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B8A2755D-D49D-4DCF-A460-82FB7630B48E}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{B9BBA288-8F1B-411A-9217-A30215D4F455}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{BA498D4D-92B3-4103-AC26-EE7E58B66359}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{BD707464-327B-45C7-B44F-B522BBD4AF3C}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{BEBD4382-C600-4A33-A527-DB2F17222BA3}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C07C54F1-69E5-47EA-8F67-99324C672662}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C110639E-16A3-4069-B57A-4DA5265E3346}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C30E2902-9236-4B53-AE73-067C26814695}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C319B8D5-5646-411F-8C92-E3FAF8325BA7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C508EA0B-31A3-46BA-AA86-5840E66FBFBC}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C50E666D-9DF4-47AA-BE7D-3FFF6BE0065F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C5F988E6-9ACF-4F14-88DC-5D292B78ACCE}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C8B80A7A-CEA3-41C8-97A4-46DC6D2DE88F}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{C9E07312-2DB0-4D48-BF46-C39AADD73421}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{CC151B65-2DA4-4219-ADB4-5802AF2D95CB}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{CCE40144-D977-4330-8E65-ECBD49876CF8}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D0901E21-6A6D-4AD2-BBD3-3575B0158C4D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D15EE1F2-F6D8-4BF0-A3EC-0EEF683292F0}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D2CCA8DF-7D77-4282-A8E2-82A99BBE575D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D52F9E43-854F-4380-A8B8-F44BED0B28DF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D5CAC484-D731-4B5C-91EC-379B0CC772EF}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D7BED9F8-7C50-49E4-89AE-9030F3946264}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{D9AFCE6E-489A-476C-845C-F29B267DCDA4}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{DA28FF56-B92D-4FD8-A667-BC3CB965B7E7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{DAA26628-50C7-4A62-BA51-90F227C75077}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{E2CB4E41-EC0C-44FF-AAF0-F8A64F138C0D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{E5D9395E-6944-46F2-97B7-D650E4CCD271}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{E6436B24-7B64-41C1-B86F-3102161DAD84}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{E79E9B8A-1F85-405D-9935-BC6DAFCA91E7}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{EB048B11-D67B-4AE1-91FD-5FDF65BB38BC}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{EC121481-3C47-4AA1-A6E4-9ABADBC704D2}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{ED8C3C8C-3999-4458-AF73-391389FC86C4}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F1F25203-329E-4459-B4AA-98A2F78EF25D}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F294EE4F-CCD6-4ED5-8D3D-2067F9B49E90}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F31EB6F1-B9F0-4749-B2EF-D20D31AFEB91}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F38A5A4B-C67C-4E8B-9627-A50CCD584825}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F3A4E968-F6B7-46FB-AE38-420ECB5D2A82}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F443DC3F-5370-45D0-8D45-F45AE08D5336}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{F5FF6A74-3848-488A-87E5-398ADC258003}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{FA6D9212-29CF-431B-827D-95FD20AE03ED}
Successfully deleted: [Empty Folder] C:\Users\Dominic\appdata\local\{FAEF6DD1-B82D-4EFF-9971-5FA3A75112BB}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.05.2013 at 13:30:22,99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ adwcleaner file: Code:
# AdwCleaner v2.301 - Datei am 31/05/2013 um 13:32:07 erstellt
# Aktualisiert am 16/05/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : Dominic - DOMINIC-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Dominic\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DFEFCDEE-CF1A-4FC8-88AD-129872198372}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\loadtbs-2.1
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{DFEFCDEE-CF1A-4FC8-88AD-129872198372}]
***** [Internet Browser] *****
-\\ Internet Explorer v8.0.7601.17514
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com
-\\ Google Chrome v27.0.1453.94
Datei : C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[S1].txt - [2418 octets] - [31/05/2013 13:32:07]
########## EOF - C:\AdwCleaner[S1].txt - [2478 octets] ########## OTL file: Code:
OTL logfile created on: 31.05.2013 13:37:11 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dominic\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,87 Gb Total Physical Memory | 2,40 Gb Available Physical Memory | 62,15% Memory free
7,73 Gb Paging File | 6,23 Gb Available in Paging File | 80,61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 144,04 Gb Total Space | 9,09 Gb Free Space | 6,31% Space Free | Partition Type: NTFS
Drive P: | 140,95 Gb Total Space | 22,56 Gb Free Space | 16,01% Space Free | Partition Type: NTFS
Computer Name: DOMINIC-PC | User Name: Dominic | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Dominic\Desktop\OTL.exe (OldTimer Tools)
PRC - P:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - P:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - P:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
PRC - C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Group)
PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
PRC - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
========== Modules (No Company Name) ==========
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\8ee98383179eca974083a41a8ca0c213\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
MOD - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll ()
MOD - C:\Program Files (x86)\Launch Manager\CdDirIo.dll ()
========== Services (SafeList) ==========
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AntiVirSchedulerService) -- P:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- P:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)
SRV - (MWLService) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (Updater Service) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Group)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (YahooAUService) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
========== Driver Services (SafeList) ==========
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (HPub4DE3) -- C:\Windows\SysNative\drivers\HPub4DE3.sys (TPMX Electronics Ltd.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HPMo4DE3) -- C:\Windows\SysNative\drivers\HPMo4DE3.sys (TPMX Electronics Ltd.)
DRV:64bit: - (nmwcd) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NTI Corporation)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NTI Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
DRV:64bit: - (ATITool) -- C:\Windows\SysNative\drivers\ATITool64.sys ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_5742g&r=273602118105l0484z145v48m22526
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_5742g&r=273602118105l0484z145v48m22526
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 41.0.202.145:8080
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.3: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.3\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.96.0: C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: P:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: P:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Dominic\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Dominic\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Dominic\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: hxxp://www.google.de/
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Dominic\AppData\Local\Google\Chrome\Application\27.0.1453.94\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Dominic\AppData\Local\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Dominic\AppData\Local\Google\Chrome\Application\27.0.1453.94\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\Dominic\AppData\Roaming\Mozilla\plugins\npo1d.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.3\npesnsonar.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Java(TM) Platform SE 7 U5 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Dominic\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: VLC Web Plugin (Enabled) = P:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - Extension: YouTube = C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google-Suche = C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Skype Click to Call = C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
CHR - Extension: Google Mail = C:\Users\Dominic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2013.05.29 16:44:52 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avgnt] P:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3059594977-1893981943-3680611722-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Dominic\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Dominic\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - P:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - P:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 10.21.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5C715D9B-320F-4739-BACC-2B483D6DE224}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B692E382-B46B-49E0-8CA6-6356ABB96264}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FBE8EDFF-40B4-4F01-B66D-8CE039DB5E4E}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2013.05.31 13:23:48 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013.05.31 13:23:41 | 000,000,000 | ---D | C] -- C:\JRT
[2013.05.31 13:20:56 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Dominic\Desktop\JRT.exe
[2013.05.30 20:19:59 | 000,000,000 | ---D | C] -- C:\Users\Dominic\AppData\Roaming\Unified Remote
[2013.05.30 18:09:15 | 000,000,000 | ---D | C] -- C:\Users\Dominic\Desktop\mbar
[2013.05.30 15:13:33 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013.05.29 16:02:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013.05.29 16:02:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013.05.29 16:02:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013.05.29 16:01:06 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.05.29 16:00:47 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.05.29 15:56:31 | 005,073,804 | R--- | C] (Swearware) -- C:\Users\Dominic\Desktop\ComboFix.exe
[2013.05.28 18:07:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Dominic\Desktop\OTL.exe
[2013.05.27 21:58:32 | 000,000,000 | ---D | C] -- C:\Users\Dominic\AppData\Roaming\Malwarebytes
[2013.05.27 21:58:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.05.27 21:58:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.05.27 21:58:02 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013.05.27 21:55:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Navilog1
[2013.05.27 21:50:54 | 000,000,000 | ---D | C] -- C:\Navilog1
[2013.05.26 22:34:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\sun
[2013.05.26 21:16:55 | 000,000,000 | ---D | C] -- C:\Users\Dominic\AppData\Local\Programs
[2013.05.22 20:11:04 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
[2013.05.22 20:02:44 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013.05.22 20:02:44 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2013.05.22 20:02:28 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2013.05.22 20:02:28 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2013.05.22 20:02:28 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2013.05.22 20:02:10 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013.05.22 20:02:10 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013.05.22 20:02:10 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013.05.22 20:02:10 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2013.05.22 20:01:58 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2013.05.22 20:01:54 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2013.05.22 20:01:46 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2013.05.22 20:01:46 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2013.05.22 20:01:46 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2013.05.22 20:01:46 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2013.05.22 20:01:45 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2013.05.22 20:01:45 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2013.05.22 20:01:36 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2013.05.22 20:00:26 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013.05.21 21:41:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2013.05.21 09:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO Steuer-Sparbuch 2013
[2013.05.08 21:34:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013.05.07 20:13:44 | 000,083,160 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avnetflt.sys
[10 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.05.31 13:41:06 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.05.31 13:41:06 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.05.31 13:34:14 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.05.31 13:33:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.05.31 13:33:08 | 3113,254,912 | -HS- | M] () -- C:\hiberfil.sys
[2013.05.31 13:24:05 | 000,001,146 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3059594977-1893981943-3680611722-1000UA.job
[2013.05.31 13:21:33 | 000,632,031 | ---- | M] () -- C:\Users\Dominic\Desktop\adwcleaner.exe
[2013.05.31 13:21:07 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\Dominic\Desktop\JRT.exe
[2013.05.31 13:21:01 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.05.31 13:20:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.05.30 23:56:04 | 000,001,128 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3059594977-1893981943-3680611722-1000UA.job
[2013.05.30 23:48:42 | 000,000,512 | ---- | M] () -- C:\Users\Dominic\Desktop\MBR.dat
[2013.05.30 20:19:30 | 000,000,801 | ---- | M] () -- C:\Users\Dominic\Desktop\Unified Remote.lnk
[2013.05.30 18:56:02 | 000,001,076 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3059594977-1893981943-3680611722-1000Core.job
[2013.05.30 18:09:23 | 001,500,294 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.05.30 18:09:23 | 000,654,852 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013.05.30 18:09:23 | 000,616,694 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.05.30 18:09:23 | 000,130,434 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013.05.30 18:09:23 | 000,106,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.05.30 15:18:55 | 013,169,742 | ---- | M] () -- C:\Users\Dominic\Desktop\mbar-1.06.0.1003.zip
[2013.05.30 15:16:50 | 000,377,856 | ---- | M] () -- C:\Users\Dominic\Desktop\w77yld2x.exe
[2013.05.29 16:44:52 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013.05.29 16:24:00 | 000,001,124 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3059594977-1893981943-3680611722-1000Core.job
[2013.05.29 15:56:48 | 005,073,804 | R--- | M] (Swearware) -- C:\Users\Dominic\Desktop\ComboFix.exe
[2013.05.28 19:53:44 | 000,002,384 | ---- | M] () -- C:\Users\Dominic\Desktop\Google Chrome.lnk
[2013.05.28 18:07:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dominic\Desktop\OTL.exe
[2013.05.27 21:58:05 | 000,000,795 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.05.26 17:41:27 | 000,289,296 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.05.22 20:11:04 | 000,000,933 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk
[2013.05.22 11:27:48 | 000,000,622 | ---- | M] () -- C:\Windows\wiso.ini
[2013.05.21 21:57:38 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2013.05.21 21:57:37 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2013.05.21 09:41:03 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\WISO Steuer-Sparbuch 2013.lnk
[2013.05.16 16:30:07 | 000,131,133 | ---- | M] () -- C:\Users\Dominic\Desktop\Germany.pdf
[2013.05.07 20:13:09 | 000,083,160 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avnetflt.sys
[10 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.05.31 13:21:22 | 000,632,031 | ---- | C] () -- C:\Users\Dominic\Desktop\adwcleaner.exe
[2013.05.30 23:48:42 | 000,000,512 | ---- | C] () -- C:\Users\Dominic\Desktop\MBR.dat
[2013.05.30 20:19:30 | 000,000,801 | ---- | C] () -- C:\Users\Dominic\Desktop\Unified Remote.lnk
[2013.05.30 15:18:24 | 013,169,742 | ---- | C] () -- C:\Users\Dominic\Desktop\mbar-1.06.0.1003.zip
[2013.05.30 15:16:36 | 000,377,856 | ---- | C] () -- C:\Users\Dominic\Desktop\w77yld2x.exe
[2013.05.29 16:02:31 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.05.29 16:02:31 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.05.29 16:02:31 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.05.29 16:02:31 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.05.29 16:02:31 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.05.27 21:58:05 | 000,000,795 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.05.26 21:14:38 | 000,002,384 | ---- | C] () -- C:\Users\Dominic\Desktop\Google Chrome.lnk
[2013.05.22 20:11:04 | 000,000,933 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk
[2013.05.21 09:41:03 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\WISO Steuer-Sparbuch 2013.lnk
[2013.05.16 16:30:07 | 000,131,133 | ---- | C] () -- C:\Users\Dominic\Desktop\Germany.pdf
[2013.01.13 22:07:13 | 000,000,622 | ---- | C] () -- C:\Windows\wiso.ini
[2012.09.28 03:29:54 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.09.28 03:29:54 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.05.02 15:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.02.04 02:51:44 | 000,007,625 | ---- | C] () -- C:\Users\Dominic\AppData\Local\Resmon.ResmonCfg
[2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011.09.09 22:19:02 | 000,003,584 | ---- | C] () -- C:\Users\Dominic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.06.16 16:20:17 | 000,000,000 | ---- | C] () -- C:\Users\Dominic\AppData\Local\{71D90A8B-6C5B-4710-A01C-C37C344ADDC5}
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== Alternate Data Streams ==========
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:E36F5B57
< End of report > Code:
OTL Extras logfile created on: 31.05.2013 13:37:11 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dominic\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,87 Gb Total Physical Memory | 2,40 Gb Available Physical Memory | 62,15% Memory free
7,73 Gb Paging File | 6,23 Gb Available in Paging File | 80,61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 144,04 Gb Total Space | 9,09 Gb Free Space | 6,31% Space Free | Partition Type: NTFS
Drive P: | 140,95 Gb Total Space | 22,56 Gb Free Space | 16,01% Space Free | Partition Type: NTFS
Computer Name: DOMINIC-PC | User Name: Dominic | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "P:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "P:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "P:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "P:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{14E6259D-7CDD-4800-BF6B-8C35C3BB4B20}" = lport=137 | protocol=17 | dir=in | app=system |
"{190F95B1-8726-44BD-A2F5-7D1BF3118B6C}" = rport=445 | protocol=6 | dir=out | app=system |
"{32E08E3E-B1A7-46A3-8C3A-AFD8268ADE5B}" = rport=138 | protocol=17 | dir=out | app=system |
"{3B5081F0-E60E-4974-8574-9DE0CF601040}" = lport=139 | protocol=6 | dir=in | app=system |
"{40A3B9F9-7BCB-4352-8B39-72142E4CE5B2}" = lport=138 | protocol=17 | dir=in | app=system |
"{47624B65-154B-477D-BDE8-CB2FED391854}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{65D69AAD-82A9-460E-9975-B3199647B736}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{74C31532-5E19-49AB-81FA-EC565319BD15}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{7A7CEDED-43BF-4C6A-9D5C-0F3F01605308}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7D97BF95-9C99-4F34-AA76-CCA434FEAFE2}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{92BF8E2F-6250-4F2B-A4FE-485A4BA42DC2}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9593422A-D0BA-4917-ADA4-2A54F9626A12}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{9F871B61-2F4D-43FE-A4DB-8794B8FDAE82}" = lport=445 | protocol=6 | dir=in | app=system |
"{A0B14462-58BB-4ADA-94B1-D3803018AF5B}" = rport=139 | protocol=6 | dir=out | app=system |
"{C5958036-DDEA-42C9-838E-F6ACEFE33160}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F11453BE-E9EB-463B-A297-E8341FF94DD6}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{08757FD3-9F8A-44FC-A6EE-13D53F9AA6B5}" = protocol=6 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"{0BB7A654-9293-459D-8B3F-604F2C0B7270}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{1E4DD80A-89C8-4AFE-BA16-D690A5DD0CEF}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{20CBF5AE-FD2C-4F7E-A354-4231E13F49A2}" = dir=out | app=%programfiles% (x86)\skype\phone\skype.exe |
"{2F326BE1-68C1-4269-9ABD-31E141F693A0}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.3\sonarhost.exe |
"{343BA5FE-FD65-45A9-890C-BD0C2043EF2D}" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{37B607D2-28D3-495D-B313-42CA11EDE166}" = protocol=17 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"{46E028C5-7ADE-489D-A90C-0B6DADD22CEF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4B3E57D2-9A41-457D-B501-513FD8B54094}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{53293032-1630-4CD8-B120-BBF06396E67C}" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe |
"{5345F1C6-66FC-4190-AB45-BB4038C46AD4}" = protocol=6 | dir=in | app=p:\program files (x86)\origin\syndicate\system\win32_x86_release\syndicate.exe |
"{54476611-C3DB-4820-81F6-5A0A3C85E69E}" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe |
"{54E0361C-19B2-4C19-9D32-2F3F610ABE3A}" = protocol=6 | dir=in | app=p:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{572B3711-BF54-41B7-AEC5-FCA9C418BC47}" = dir=in | app=c:\users\dominic\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{59483C95-DD1D-4F44-BCD7-2E376C69F6C3}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5C2530E3-1490-4935-BFDA-BB9161C6009C}" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe |
"{5EEAAA19-4B88-47A9-A944-B1B8B024B9CD}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{61A0696F-8107-4884-BE12-5039B6A29E6B}" = protocol=17 | dir=in | app=p:\program files (x86)\origin\syndicate\system\win32_x86_release\syndicate.exe |
"{6D63BD9D-CB0A-44D9-94D4-89B4D72F845B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{70B57DEF-6C03-4869-A565-E9E5BC21230B}" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{7560CAD5-2833-444B-AF09-8700BA77F23C}" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe |
"{90B735A1-D8CB-4C01-8B67-B8141AAA886F}" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"{966D2B8A-2F2E-4E5B-ACA3-5D31022FBEF5}" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steam.exe |
"{9BE989CB-5B6B-49B5-9DE2-D329E672C516}" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steam.exe |
"{9EEFF54A-F4A1-49A0-AFF5-A256FFD2E10A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{AC3105C5-73D9-4BAD-BB8B-7FEE549B2C8E}" = protocol=17 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"{BCFF1487-B704-4032-90FE-E334B80C6CE7}" = protocol=17 | dir=in | app=p:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{C16CA4B9-512B-46C3-8AB5-365DD481E6FE}" = protocol=6 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"{CAF76FB7-DB93-4C61-B440-902AD7F380AB}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{D9FAEB46-3C17-44A5-BAC2-EDB936E6283C}" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"{F122F3B7-60C7-4638-B66D-6F5F2691FD81}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{F55B3A92-27A4-4398-8AA4-546316115199}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.3\sonarhost.exe |
"TCP Query User{1CFB7FCD-30C0-454B-9BCA-67D80AAA3D07}P:\program files (x86)\unified remote\remoteserver.exe" = protocol=6 | dir=in | app=p:\program files (x86)\unified remote\remoteserver.exe |
"TCP Query User{1FEB5430-C188-45DC-9E75-AB47420DA4E9}P:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=p:\program files (x86)\sopcast\sopcast.exe |
"TCP Query User{31EE6465-96D8-4DC1-84D2-6F276F930D11}P:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe" = protocol=6 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"TCP Query User{4DB65B7D-0F83-448C-9460-6B4272A03D9C}C:\users\dominic\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\dominic\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{6E1B31C9-6EDC-4603-8801-6562B78A5CEF}P:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=p:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"TCP Query User{BF37AD35-5AA9-4DC6-AC0D-F4D08BEE59F9}P:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=p:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"TCP Query User{CBF5AEB9-C72F-46F2-BEE0-F04812CAD6D3}P:\programme\icq7.4\icq.exe" = protocol=6 | dir=in | app=p:\programme\icq7.4\icq.exe |
"TCP Query User{D10D88BE-7DCF-4AED-B1DC-39E6A2708E3F}P:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=p:\program files (x86)\sopcast\adv\sopadver.exe |
"TCP Query User{E3693444-3605-4CEA-BD2D-B8A7D7FB2F9F}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{F07FA1AD-986B-4522-9A43-AFC20CC19C18}P:\program files (x86)\icq7.5\icq.exe" = protocol=6 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"UDP Query User{26998D77-41A3-4134-930D-61A1AFF2F498}P:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=p:\program files (x86)\sopcast\sopcast.exe |
"UDP Query User{64708352-E5BE-465B-A972-4E301290222F}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{680A7734-72A9-494B-948B-5F0803A57E99}P:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=p:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"UDP Query User{70314CEB-91F2-4320-9FED-703FBBA243FA}C:\users\dominic\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\dominic\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{82442E2F-13E5-46F4-832F-DC1306030EE2}P:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe" = protocol=17 | dir=in | app=p:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"UDP Query User{AC74BF75-81CA-4F23-878A-A7804465A6C7}P:\program files (x86)\unified remote\remoteserver.exe" = protocol=17 | dir=in | app=p:\program files (x86)\unified remote\remoteserver.exe |
"UDP Query User{D5A479AB-304F-4B22-8488-80B31339072F}P:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=p:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"UDP Query User{D8252AF0-1AFA-4357-894C-4C0F9824466F}P:\programme\icq7.4\icq.exe" = protocol=17 | dir=in | app=p:\programme\icq7.4\icq.exe |
"UDP Query User{EFF1D862-EC0E-45A0-921D-DC05627472A2}P:\program files (x86)\icq7.5\icq.exe" = protocol=17 | dir=in | app=p:\program files (x86)\icq7.5\icq.exe |
"UDP Query User{FF92CE33-8012-4EC7-B30C-27F8778E00E8}P:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=p:\program files (x86)\sopcast\adv\sopadver.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86416031FF}" = Java(TM) 6 Update 31 (64-bit)
"{45CB0703-D49C-31B2-0DBD-FDD98D7DEF7A}" = AMD Drag and Drop Transcoding
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{852B1308-4E5A-B54D-637D-F710D92C6930}" = AMD Accelerated Video Transcoding
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A84DB02B-9C2B-4272-9D2D-A80E00A56513}" = Broadcom Gigabit NetLink Controller
"{ABFC0970-7FDF-9E49-C049-5D24CB1F150E}" = AMD Catalyst Install Manager
"{DE7BAEF8-C639-381A-D835-95BD517ED602}" = AMD Media Foundation Decoders
"{E88AD18B-D467-F11F-C431-99DE36FCACC7}" = ccc-utility64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}" = MyWinLocker
"{0E04AD66-9C5A-46DF-836B-29BD26194820}" = Unified Remote
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{11210BD7-A8EF-79EE-D18F-021D1E04A689}" = CCC Help Dutch
"{118AD615-8BCF-11D6-1700-B6763A0EA713}" = CCC Help Polish
"{145238D6-1ADD-15DD-4499-744215DCCD18}" = Catalyst Control Center InstallProxy
"{14EC371D-145C-9AC3-B3A8-EA90C6B0325E}" = PX Profile Update
"{15DEA4E9-E4AD-2A1A-4B59-89CA65D5075B}" = CCC Help Finnish
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1AFD9DDB-FB24-F8C4-E792-03901C50490D}" = CCC Help Swedish
"{1B0FF612-0E07-4AB2-DD95-EB7651AEB3A1}" = CCC Help Italian
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}" = OpenOffice.org 3.4.1
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{376A622B-F0FA-DDAB-9635-05D9F3F634D6}" = CCC Help Norwegian
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{48BA11B4-3E38-FA74-2D5A-003475844AA3}" = CCC Help Spanish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DD75A56-D9DA-DD49-3507-470C7CA7B43F}" = CCC Help Chinese Standard
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{51F026FA-5146-4232-A8BA-1364740BD053}" = Acer Crystal Eye webcam
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{586509F0-350D-48B5-B763-9CC2F8D96C4C}" = Windows Live Sync
"{5DB24244-5ABE-A87B-5FB1-95CF09F801A8}" = CCC Help German
"{61D73C02-EF3F-45D2-7F01-DCC4B1B39CC3}" = CCC Help Korean
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6DDC515D-1FE6-C5FC-E872-24D1B8B4C1A1}" = CCC Help Russian
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}" = MyWinLocker Suite
"{7427941A-51A3-E2EB-BCD2-A1981DBCA4AD}" = Catalyst Control Center Graphics Previews Common
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{79A16F82-9F79-E47E-C6D4-206E7CC1D593}" = CCC Help Czech
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{8153BA0E-719E-3829-3B06-DC1412933BD6}" = CCC Help Japanese
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8B7D9B66-1B53-D729-FD0C-ED38629FA407}" = CCC Help Greek
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{91B9368F-6C6F-3DB5-9CBA-6CAD56035B26}" = Google Talk Plugin
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A4A550A8-4EEF-8577-1C15-E3C914FF4AD9}" = CCC Help Portuguese
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A866F37D-0E46-1812-3E3C-9778D4A458B2}" = Catalyst Control Center
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAF7FFC8-20C4-CB57-4982-68EB410EBBC7}" = CCC Help Danish
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.01)
"{AD4B6B20-11CE-2C81-9615-2DCAABF15966}" = CCC Help French
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1931310-EEF5-3B7A-0C57-01127888E4E4}" = CCC Help Turkish
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6CC2FAF-F827-4091-96A1-D32CC9B69C79}" = WISO Steuer-Sparbuch 2013
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E72F1051-B87E-4EF4-AE9F-8FDD229CC438}" = Catalyst Control Center - Branding
"{E7A94CD8-526B-FDD3-E16F-CB40A0747C70}" = CCC Help Chinese Traditional
"{E91BD0CF-EFA8-477C-8207-A026E70BBED9}" = CCC Help English
"{ECD4DCC1-C03F-8CC2-432B-317ECB9D6A09}" = Catalyst Control Center Localization All
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{F9F07F00-FF55-7752-7FF8-F512AF641BA9}" = CCC Help Thai
"{FA602928-EB59-449c-B9F7-1FBE1291B63D}" = Syndicate™
"{FFE0A7EE-0627-307D-F102-519B5B367703}" = CCC Help Hungarian
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"ArgusMonitor" = ArgusMonitor
"Avira AntiVir Desktop" = Avira Free Antivirus
"Battlelog Web Plugins" = Battlelog Web Plugins
"ESN Sonar-0.70.3" = ESN Sonar
"Fraps" = Fraps
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.12.0.128
"Identity Card" = Identity Card
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}" = MyWinLocker Suite
"InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Origin" = Origin
"PS3 Media Server" = PS3 Media Server
"SopCast" = SopCast 3.4.0
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 55230" = Saints Row: The Third
"VLC media player" = VLC media player 2.0.1
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.20 (32-Bit)
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3059594977-1893981943-3680611722-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 31.05.2013 07:43:53 | Computer Name = Dominic-PC | Source = CVHSVC | ID = 100
Description = Nur zur Information. (Patch task for {90140011-0066-0407-0000-0000000FF1CE}):
DownloadLatest Failed: Zurzeit sind keine aktiven Netzwerkverbindungen verfügbar.
Der Vorgang wird von BITS wiederholt, sobald der Adapter über eine Verbindung verfügt.
< End of report > |