OTL logfile created on: 24.03.2013 18:08:17 - Run 1OTL by OldTimer - Version 3

1. OTL logfile created on: 24.03.2013 18:08:17 - Run 1
2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tubsi\Favorites\Downloads
3. 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
4. Internet Explorer (Version = 8.0.6001.18928)
5. Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
6.  
7. 4,00 Gb Total Physical Memory | 2,17 Gb Available Physical Memory | 54,34% Memory free
8. 8,16 Gb Paging File | 5,69 Gb Available in Paging File | 69,71% Paging File free
9. Paging file location(s): ?:\pagefile.sys [binary data]
10.  
11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
12. Drive C: | 585,94 Gb Total Space | 435,70 Gb Free Space | 74,36% Space Free | Partition Type: NTFS
13. Drive D: | 3,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
14. Drive I: | 2,08 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
15. Drive Z: | 345,57 Gb Total Space | 159,64 Gb Free Space | 46,20% Space Free | Partition Type: NTFS
16.  
17. Computer Name: VYERABEND | User Name: Tubsi | Logged in as Administrator.
18. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
19. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
20.  
21. [color=#E56717]========== Processes (SafeList) ==========[/color]
22.  
23. PRC - [2013.03.24 17:07:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tubsi\Favorites\Downloads\OTL.exe
24. PRC - [2013.01.20 20:29:18 | 028,539,272 | ---- | M] (Dropbox, Inc.) -- C:\Users\Tubsi\AppData\Roaming\Dropbox\bin\Dropbox.exe
25. PRC - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
26. PRC - [2012.12.13 09:49:04 | 001,967,104 | ---- | M] (Steppschuh) -- C:\Program Files (x86)\Remote Control Server\Remote Control Server.exe
27. PRC - [2012.10.02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
28. PRC - [2012.02.29 10:35:17 | 000,136,336 | ---- | M] (Google Inc.) -- C:\Users\Tubsi\AppData\Local\RockMelt\Update\1.2.189.1\RockMeltCrashHandler.exe
29. PRC - [2012.02.29 07:50:48 | 000,158,856 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Updater\Updater.exe
30. PRC - [2012.01.18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
31. PRC - [2011.11.11 14:08:06 | 000,205,336 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
32. PRC - [2011.11.11 14:07:54 | 000,265,240 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
33. PRC - [2011.08.12 12:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
34. PRC - [2011.07.01 10:59:07 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
35. PRC - [2011.05.25 16:29:54 | 001,951,112 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
36. PRC - [2011.05.04 13:30:09 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
37. PRC - [2011.01.13 03:01:28 | 006,129,496 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
38. PRC - [2010.11.19 15:03:19 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
39. PRC - [2010.07.27 16:20:35 | 002,480,048 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
40. PRC - [2010.07.27 16:13:05 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe
41. PRC - [2010.07.27 16:13:05 | 000,008,192 | ---- | M] () -- C:\Windows\SysWOW64\srvany.exe
42. PRC - [2010.07.06 16:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
43. PRC - [2010.05.17 08:52:25 | 000,148,280 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\ezprint.exe
44. PRC - [2010.05.17 08:52:23 | 000,770,728 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeemon.exe
45. PRC - [2010.04.29 14:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
46. PRC - [2010.04.29 14:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
47. PRC - [2010.03.27 17:39:06 | 000,362,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
48. PRC - [2010.03.27 17:38:26 | 005,141,512 | ---- | M] () -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
49. PRC - [2009.12.04 11:36:33 | 008,078,704 | ---- | M] (mquadr.at software engineering and consulting GmbH, web: www.mquadr.at, mail: office@mquadr.at) -- C:\Program Files (x86)\A1 Dashboard\Dashboard.exe
50.  
51.  
52. [color=#E56717]========== Modules (No Company Name) ==========[/color]
53.  
54. MOD - [2013.01.22 01:26:07 | 000,767,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll
55. MOD - [2013.01.22 01:25:52 | 001,819,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\e8ab3b63bade82c3522613f2b1240c0d\Microsoft.VisualBasic.ni.dll
56. MOD - [2013.01.21 17:50:03 | 013,006,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll
57. MOD - [2013.01.21 17:49:54 | 007,025,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
58. MOD - [2013.01.21 17:49:52 | 001,651,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll
59. MOD - [2013.01.21 17:49:49 | 005,571,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll
60. MOD - [2013.01.21 17:49:49 | 000,973,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ac18c2dcd06bd2a0589bac94ccae5716\System.Configuration.ni.dll
61. MOD - [2013.01.21 17:49:45 | 009,000,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
62. MOD - [2013.01.21 17:49:38 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
63. MOD - [2012.01.18 07:43:56 | 000,183,320 | ---- | M] () -- C:\Program Files (x86)\Common Files\logishrd\SharedBin\LVAPI11.dll
64. MOD - [2011.11.11 14:09:20 | 000,336,408 | ---- | M] () -- C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
65. MOD - [2011.11.11 14:08:18 | 007,956,504 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
66. MOD - [2011.11.11 14:08:18 | 000,342,552 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
67. MOD - [2011.11.11 14:08:18 | 000,128,536 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
68. MOD - [2011.11.11 14:08:18 | 000,029,208 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
69. MOD - [2011.11.11 14:08:06 | 002,145,304 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
70. MOD - [2011.11.11 14:07:54 | 000,265,240 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
71. MOD - [2011.08.12 12:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
72. MOD - [2011.01.13 02:57:34 | 000,751,616 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
73. MOD - [2011.01.13 02:55:28 | 000,027,472 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
74. MOD - [2010.05.17 08:52:25 | 000,148,280 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\ezprint.exe
75. MOD - [2010.05.17 08:52:23 | 000,770,728 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeemon.exe
76. MOD - [2010.04.05 05:56:07 | 000,716,954 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\Epwizard.DLL
77. MOD - [2010.04.05 05:55:15 | 000,159,890 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\customui.dll
78. MOD - [2010.04.05 05:55:04 | 000,061,604 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\Epfunct.DLL
79. MOD - [2010.04.05 05:54:59 | 000,123,033 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\Eputil.DLL
80. MOD - [2010.04.05 05:54:52 | 000,143,502 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\Imagutil.DLL
81. MOD - [2010.04.01 12:24:28 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeeDRS.dll
82. MOD - [2010.04.01 12:23:27 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeescw.dll
83. MOD - [2010.03.27 17:39:06 | 000,362,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
84. MOD - [2010.03.27 17:38:26 | 005,141,512 | ---- | M] () -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
85. MOD - [2010.03.27 15:30:50 | 000,279,904 | ---- | M] () -- C:\Program Files (x86)\Acronis\TrueImageHome\Common\resource.dll
86. MOD - [2010.03.27 14:14:56 | 000,028,512 | ---- | M] () -- C:\Program Files (x86)\Acronis\TrueImageHome\Common\rpc_client.dll
87. MOD - [2010.03.27 14:13:36 | 000,019,808 | ---- | M] () -- C:\Program Files (x86)\Acronis\TrueImageHome\Common\thread_pool.dll
88. MOD - [2010.01.30 01:41:12 | 004,254,560 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
89. MOD - [2009.07.30 08:54:55 | 000,540,672 | ---- | M] () -- C:\Program Files (x86)\A1 Dashboard\resetregistry.dll
90. MOD - [2009.06.23 06:11:04 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\EPOEMDll.dll
91. MOD - [2009.06.23 06:10:29 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\epstring.dll
92. MOD - [2009.06.23 06:09:11 | 002,203,648 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\EPWizRes.dll
93. MOD - [2009.05.27 07:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeedatr.dll
94. MOD - [2009.04.28 08:56:29 | 000,024,064 | ---- | M] () -- C:\Windows\SysWOW64\LXEEsmr.dll
95. MOD - [2009.04.22 22:53:56 | 000,969,040 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
96. MOD - [2009.04.10 00:04:56 | 002,141,008 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
97. MOD - [2009.04.07 14:25:27 | 000,409,600 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\iptk.dll
98. MOD - [2009.03.10 00:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeecaps.dll
99. MOD - [2009.03.03 23:18:08 | 000,138,064 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
100. MOD - [2009.03.03 23:18:06 | 000,035,152 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
101. MOD - [2009.03.03 23:18:06 | 000,029,008 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
102. MOD - [2009.03.03 23:17:46 | 011,311,952 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
103. MOD - [2009.03.03 23:17:46 | 000,363,856 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
104. MOD - [2009.03.03 23:17:44 | 000,200,016 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
105. MOD - [2009.03.03 23:17:40 | 000,475,472 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
106. MOD - [2009.03.03 23:17:38 | 007,704,400 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
107. MOD - [2009.03.03 23:17:32 | 000,291,664 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
108. MOD - [2009.03.02 09:25:47 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro700 Series\lxeeptp.dll
109. MOD - [2009.02.20 09:48:03 | 000,299,008 | ---- | M] () -- C:\Windows\SysWOW64\LXEEsm.dll
110.  
111.  
112. [color=#E56717]========== Services (SafeList) ==========[/color]
113.  
114. SRV:[b]64bit:[/b] - [2010.07.06 12:20:46 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
115. SRV:[b]64bit:[/b] - [2010.04.14 14:01:44 | 001,052,328 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxeecoms.exe -- (lxee_device)
116. SRV:[b]64bit:[/b] - [2010.04.14 14:01:37 | 000,045,736 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\spool\DRIVERS\x64\3\\lxeeserv.exe -- (lxeeCATSCustConnectService)
117. SRV - [2013.03.13 17:39:56 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
118. SRV - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
119. SRV - [2012.10.02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
120. SRV - [2012.02.29 07:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
121. SRV - [2012.01.18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
122. SRV - [2011.07.01 10:59:07 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
123. SRV - [2011.05.25 16:29:52 | 002,275,720 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
124. SRV - [2011.05.04 13:30:09 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
125. SRV - [2010.07.27 16:20:35 | 002,480,048 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
126. SRV - [2010.07.27 16:13:05 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
127. SRV - [2010.07.27 15:26:36 | 000,607,040 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
128. SRV - [2010.07.06 16:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
129. SRV - [2010.07.06 12:25:12 | 001,403,200 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
130. SRV - [2010.07.06 12:20:38 | 000,030,016 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
131. SRV - [2010.07.04 10:50:48 | 000,099,048 | ---- | M] (tzuk) [Auto | Running] -- C:\Programme\Sandboxie\SbieSvc.exe -- (SbieSvc)
132. SRV - [2010.06.21 21:44:10 | 002,532,680 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Programme\OO Software\Defrag\oodag.exe -- (OODefragAgent)
133. SRV - [2010.04.29 14:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
134. SRV - [2010.04.14 14:01:37 | 000,045,736 | ---- | M] () [Auto | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe -- (lxeeCATSCustConnectService)
135. SRV - [2010.04.14 14:01:23 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWOW64\lxeecoms.exe -- (lxee_device)
136. SRV - [2010.03.27 17:39:22 | 001,055,288 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
137. SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
138. SRV - [2010.01.09 20:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
139. SRV - [2010.01.09 20:20:56 | 000,174,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose64)
140. SRV - [2009.08.24 12:36:45 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- winhttp.dll -- (WinHttpAutoProxySvc)
141. SRV - [2009.03.30 05:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
142.  
143.  
144. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
145.  
146. DRV:[b]64bit:[/b] - [2012.01.18 07:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\lvuvc64.sys -- (LVUVC64)
147. DRV:[b]64bit:[/b] - [2012.01.18 07:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\lvrs64.sys -- (LVRS64)
148. DRV:[b]64bit:[/b] - [2011.07.01 10:59:08 | 000,123,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\avipbb.sys -- (avipbb)
149. DRV:[b]64bit:[/b] - [2011.07.01 10:59:08 | 000,088,288 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\avgntflt.sys -- (avgntflt)
150. DRV:[b]64bit:[/b] - [2010.07.27 16:20:35 | 000,252,512 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\afcdp.sys -- (afcdp)
151. DRV:[b]64bit:[/b] - [2010.07.27 16:20:34 | 001,477,728 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\tdrpm258.sys -- (tdrpman258)
152. DRV:[b]64bit:[/b] - [2010.07.27 16:20:32 | 000,943,712 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\timntr.sys -- (timounter)
153. DRV:[b]64bit:[/b] - [2010.07.27 16:20:28 | 000,271,456 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\snapman.sys -- (snapman)
154. DRV:[b]64bit:[/b] - [2010.05.11 15:29:50 | 000,016,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\epmntdrv.sys -- (epmntdrv)
155. DRV:[b]64bit:[/b] - [2010.05.11 15:29:50 | 000,009,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
156. DRV:[b]64bit:[/b] - [2010.04.29 14:39:28 | 000,024,664 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
157. DRV:[b]64bit:[/b] - [2010.04.19 19:47:42 | 000,050,688 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
158. DRV:[b]64bit:[/b] - [2010.03.11 10:17:14 | 000,035,112 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\teamviewervpn.sys -- (teamviewervpn)
159. DRV:[b]64bit:[/b] - [2010.02.03 14:56:56 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
160. DRV:[b]64bit:[/b] - [2009.12.17 23:25:17 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\ElbyCDIO.sys -- (ElbyCDIO)
161. DRV:[b]64bit:[/b] - [2009.10.01 01:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
162. DRV:[b]64bit:[/b] - [2009.09.10 13:56:08 | 000,117,120 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ewusbmdm.sys -- (hwdatacard)
163. DRV:[b]64bit:[/b] - [2009.08.09 22:25:45 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\VClone.sys -- (VClone)
164. DRV:[b]64bit:[/b] - [2009.07.24 14:52:14 | 000,114,560 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ewusbdev.sys -- (hwusbdev)
165. DRV:[b]64bit:[/b] - [2009.05.18 12:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
166. DRV:[b]64bit:[/b] - [2008.01.21 03:51:07 | 000,016,384 | ---- | M] (Microsoft Corporation) [Recognizer | System | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
167. DRV:[b]64bit:[/b] - [2008.01.21 03:46:55 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express)
168. DRV - [2010.07.04 10:50:46 | 000,139,880 | ---- | M] (tzuk) [Kernel | On_Demand | Running] -- C:\Programme\Sandboxie\SbieDrv.sys -- (SbieDrv)
169. DRV - [2010.05.11 15:29:50 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
170. DRV - [2010.05.11 15:29:50 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
171. DRV - [2010.02.24 13:41:50 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
172.  
173.  
174. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
175.  
176.  
177. [color=#E56717]========== Internet Explorer ==========[/color]
178.  
179. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
180. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
181. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
182. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
183. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
184.  
185. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
186. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
187. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 61 F1 8D 69 EE D1 CC 01 [binary data]
188. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
189. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
190. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
191. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
192. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
193.  
194. [color=#E56717]========== FireFox ==========[/color]
195.  
196. FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
197. FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.9.0.9216
198. FF - user.js - File not found
199.  
200. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
201. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
202. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
203. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
204. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
205. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
206. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
207. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
208. FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
209. FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
210. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
211. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
212. FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
213. FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
214. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
215. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
216. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
217. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
218. FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
219. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
220. FF - HKCU\Software\MozillaPlugins\@us-w1.rockmelt.com/RockMelt Update;version=8: C:\Users\Tubsi\AppData\Local\RockMelt\Update\1.2.189.1\npRockMeltOneClick8.dll (RockMelt Inc.)
221. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
222.  
223. FF - HKEY_LOCAL_MACHINE\software\mozilla\Lanikai (64-bit) 3.1.1\extensions\\Components: C:\Program Files (x86)\Lanikai (64-bit)\components [2013.01.03 11:32:13 | 000,000,000 | ---D | M]
224. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.01.03 11:32:13 | 000,000,000 | ---D | M]
225. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.01.14 18:00:39 | 000,000,000 | ---D | M]
226.  
227. [2010.10.06 10:26:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tubsi\AppData\Roaming\mozilla\Extensions
228. [2010.10.06 10:26:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tubsi\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
229. [2012.05.15 21:21:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tubsi\AppData\Roaming\mozilla\Firefox\Profiles\o1hjuv8r.default\extensions
230. [2010.09.05 14:06:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Tubsi\AppData\Roaming\mozilla\Firefox\Profiles\o1hjuv8r.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
231. [2012.05.15 21:21:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
232. [2012.11.23 00:49:25 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
233. [2011.04.06 18:49:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
234. [2011.04.06 18:48:48 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
235. [2012.01.23 11:50:38 | 000,170,080 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
236. [2010.07.23 01:48:56 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
237. [2010.07.23 01:48:56 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
238. [2010.07.23 01:48:56 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
239. [2010.07.23 01:48:56 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
240. [2010.07.23 01:48:56 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
241.  
242. [color=#E56717]========== Chrome ==========[/color]
243.  
244. CHR - default_search_provider: Google (Enabled)
245. CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
246. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
247. CHR - homepage: http://www.google.com
248. CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
249. CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
250. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\pdf.dll
251. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\gcswf32.dll
252. CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
253. CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Tubsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
254. CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
255. CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
256. CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
257. CHR - plugin: PDF-XChange Viewer (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npPDFXCviewNPPlugin.dll
258. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
259. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
260. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
261. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
262. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
263. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
264. CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
265. CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
266. CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
267. CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
268. CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
269. CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
270. CHR - plugin: RockMelt Update (Enabled) = C:\Users\Tubsi\AppData\Local\RockMelt\Update\1.2.189.1\npRockMeltOneClick8.dll
271. CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
272. CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
273. CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
274. CHR - Extension: Skype Click to Call = C:\Users\Tubsi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
275.  
276. O1 HOSTS File: ([2006.09.18 22:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
277. O1 - Hosts: 127.0.0.1 localhost
278. O1 - Hosts: ::1 localhost
279. O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
280. O2:[b]64bit:[/b] - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
281. O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
282. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
283. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
284. O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
285. O2 - BHO: (Lexmark ) - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Programme\Lexmark Printable Web\bho.dll ()
286. O4:[b]64bit:[/b] - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ()
287. O4:[b]64bit:[/b] - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
288. O4:[b]64bit:[/b] - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Lexmark Pro700 Series\ezprint.exe ()
289. O4:[b]64bit:[/b] - HKLM..\Run: [lxeemon.exe] C:\Program Files (x86)\Lexmark Pro700 Series\lxeemon.exe ()
290. O4:[b]64bit:[/b] - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.dll (NVIDIA Corporation)
291. O4:[b]64bit:[/b] - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.dll (NVIDIA Corporation)
292. O4:[b]64bit:[/b] - HKLM..\Run: [OODefragTray] C:\Programme\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
293. O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
294. O4:[b]64bit:[/b] - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
295. O4:[b]64bit:[/b] - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
296. O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
297. O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
298. O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
299. O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
300. O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
301. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
302. O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe ()
303. O4 - HKCU..\Run: [A1_Dashboard] C:\Program Files (x86)\A1 Dashboard\Dashboard.exe (mquadr.at software engineering and consulting GmbH, web: www.mquadr.at, mail: office@mquadr.at)
304. O4 - HKCU..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
305. O4 - HKCU..\Run: [Remote Control Server] C:\Program Files (x86)\Remote Control Server\Remote Control Server.exe (Steppschuh)
306. O4 - HKCU..\Run: [RockMelt Update] C:\Users\Tubsi\AppData\Local\RockMelt\Update\RockMeltUpdate.exe (Google Inc.)
307. O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (tzuk)
308. O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
309. O4 - Startup: C:\Users\Tubsi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Tubsi\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
310. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
311. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
312. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
313. O8:[b]64bit:[/b] - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
314. O8:[b]64bit:[/b] - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
315. O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
316. O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
317. O9:[b]64bit:[/b] - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
318. O9:[b]64bit:[/b] - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
319. O9:[b]64bit:[/b] - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
320. O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
321. O9:[b]64bit:[/b] - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
322. O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars)
323. O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
324. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
325. O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
326. O13[b]64bit:[/b] - gopher Prefix: missing
327. O13 - gopher Prefix: missing
328. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
329. O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
330. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
331. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
332. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B1EA1DED-7BDA-403A-99BA-04DAADA5C77E}: DhcpNameServer = 192.168.1.1
333. O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
334. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
335. O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
336. O18 - Protocol\Handler\ms-help - No CLSID value found
337. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
338. O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
339. O18:[b]64bit:[/b] - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
340. O18:[b]64bit:[/b] - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
341. O18:[b]64bit:[/b] - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
342. O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
343. O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
344. O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
345. O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
346. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
347. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
348. O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
349. O20 - HKLM Winlogon: UserInit - (userinit.exe) - userinit.exe (Microsoft Corporation)
350. O24 - Desktop WallPaper: C:\Users\Tubsi\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
351. O24 - Desktop BackupWallPaper: C:\Users\Tubsi\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
352. O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
353. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
354. O29:[b]64bit:[/b] - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
355. O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
356. O32 - HKLM CDRom: AutoRun - 1
357. O32 - AutoRun File - [2008.01.21 21:00:00 | 000,000,122 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
358. O33 - MountPoints2\{280b680e-98db-11df-8faf-806e6f6e6963}\Shell - "" = AutoRun
359. O33 - MountPoints2\{280b680e-98db-11df-8faf-806e6f6e6963}\Shell\AutoRun\command - "" = D:\SETUP.EXE -- [2008.01.21 21:00:00 | 000,109,624 | R--- | M] (Microsoft Corporation)
360. O33 - MountPoints2\{3e0765bd-f247-11df-b217-00242178ae67}\Shell - "" = AutoRun
361. O33 - MountPoints2\{3e0765bd-f247-11df-b217-00242178ae67}\Shell\AutoRun\command - "" = E:\AutoRun.exe
362. O33 - MountPoints2\{9a762a4d-de96-11df-ba2b-00242178ae67}\Shell - "" = AutoRun
363. O33 - MountPoints2\{9a762a4d-de96-11df-ba2b-00242178ae67}\Shell\AutoRun\command - "" = M:\AutoRun.exe
364. O33 - MountPoints2\{b6afc9e4-d0c0-11df-9235-00242178ae67}\Shell - "" = AutoRun
365. O33 - MountPoints2\{b6afc9e4-d0c0-11df-9235-00242178ae67}\Shell\AutoRun\command - "" = H:\AutoRun.exe
366. O33 - MountPoints2\{b6afc9ed-d0c0-11df-9235-00242178ae67}\Shell - "" = AutoRun
367. O33 - MountPoints2\{b6afc9ed-d0c0-11df-9235-00242178ae67}\Shell\AutoRun\command - "" = H:\AutoRun.exe
368. O33 - MountPoints2\E\Shell - "" = AutoRun
369. O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\AutoRun.exe
370. O33 - MountPoints2\H\Shell - "" = AutoRun
371. O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
372. O33 - MountPoints2\M\Shell - "" = AutoRun
373. O33 - MountPoints2\M\Shell\AutoRun\command - "" = M:\AutoRun.exe
374. O34 - HKLM BootExecute: (autocheck autochk *)
375. O34 - HKLM BootExecute: (OODBS)
376. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
377. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
378. O35 - HKLM\..comfile [open] -- "%1" %*
379. O35 - HKLM\..exefile [open] -- "%1" %*
380. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
381. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
382. O37 - HKLM\...com [@ = comfile] -- "%1" %*
383. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
384. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
385. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
386.  
387. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
388.  
389. [2013.03.13 16:29:46 | 000,000,000 | ---D | C] -- C:\Users\Tubsi\AppData\Local\Steppschuh
390. [2013.03.06 17:16:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Remote Control Server
391. [2013.03.06 17:10:24 | 000,000,000 | ---D | C] -- C:\Users\Tubsi\AppData\Local\Downloaded Installations
392. [2013.02.25 00:38:07 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Data
393. [2010.06.02 04:22:02 | 000,089,944 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Common Files\DSETUP.dll
394. [3 C:\Users\Tubsi\Desktop\*.tmp files -> C:\Users\Tubsi\Desktop\*.tmp -> ]
395.  
396. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
397.  
398. [2013.03.24 18:14:21 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
399. [2013.03.24 18:12:00 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{41DE8018-6823-4B81-8D65-BE60AC7C33ED}.job
400. [2013.03.24 18:05:55 | 000,001,104 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
401. [2013.03.24 17:53:11 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
402. [2013.03.24 17:53:10 | 000,003,712 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
403. [2013.03.24 17:52:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
404. [2013.03.24 17:52:00 | 000,949,344 | ---- | M] () -- C:\Windows\SysNative\oodbs.lor
405. [2013.03.24 17:40:00 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-934889715-4069410435-3536887204-1000UA.job
406. [2013.03.24 17:39:55 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
407. [2013.03.23 16:54:23 | 001,557,964 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
408. [2013.03.23 16:54:23 | 000,670,708 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
409. [2013.03.23 16:54:23 | 000,631,438 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
410. [2013.03.23 16:54:23 | 000,143,876 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
411. [2013.03.23 16:54:23 | 000,118,064 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
412. [2013.03.17 10:40:00 | 000,000,876 | ---- | M] () -- C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-934889715-4069410435-3536887204-1000Core.job
413. [2013.03.16 01:18:22 | 000,156,672 | ---- | M] () -- C:\Users\Tubsi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
414. [2013.03.15 17:19:50 | 001,530,089 | ---- | M] () -- C:\Users\Tubsi\Documents\VO_GfB_1u2_2013 (3)_01.tif
415. [2013.03.14 15:28:55 | 000,047,570 | ---- | M] () -- C:\Users\Tubsi\Desktop\Download.jpg
416. [2013.03.14 01:24:59 | 004,138,999 | ---- | M] () -- C:\Users\Tubsi\Desktop\Paläobiologie_1.pdf
417. [2013.03.14 01:24:56 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
418. [2013.03.13 20:17:00 | 000,002,025 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
419. [2013.03.10 12:59:50 | 401,716,836 | ---- | M] () -- C:\Windows\MEMORY.DMP
420. [2013.03.04 19:05:31 | 000,066,717 | ---- | M] () -- C:\Users\Tubsi\Desktop\Picture 44.jpg
421. [2013.03.04 19:05:15 | 000,063,907 | ---- | M] () -- C:\Users\Tubsi\Desktop\Picture 42.jpg
422. [2013.03.04 19:05:02 | 000,064,451 | ---- | M] () -- C:\Users\Tubsi\Desktop\Picture 40.jpg
423. [2013.02.27 18:20:57 | 000,420,579 | ---- | M] () -- C:\Users\Tubsi\Desktop\B-BIO5_BioethikForschungsethik-ZF-WiSe12.pdf
424. [2013.02.24 21:10:46 | 000,000,923 | ---- | M] () -- C:\Users\Tubsi\Desktop\PokerStars.eu.lnk
425. [3 C:\Users\Tubsi\Desktop\*.tmp files -> C:\Users\Tubsi\Desktop\*.tmp -> ]
426.  
427. [color=#E56717]========== Files Created - No Company Name ==========[/color]
428.  
429. [2013.03.15 17:19:50 | 001,530,089 | ---- | C] () -- C:\Users\Tubsi\Documents\VO_GfB_1u2_2013 (3)_01.tif
430. [2013.03.14 15:28:54 | 000,047,570 | ---- | C] () -- C:\Users\Tubsi\Desktop\Download.jpg
431. [2013.03.14 01:24:58 | 004,138,999 | ---- | C] () -- C:\Users\Tubsi\Desktop\Paläobiologie_1.pdf
432. [2013.03.04 19:13:38 | 000,064,451 | ---- | C] () -- C:\Users\Tubsi\Desktop\Picture 40.jpg
433. [2013.03.04 19:12:23 | 000,063,907 | ---- | C] () -- C:\Users\Tubsi\Desktop\Picture 42.jpg
434. [2013.03.04 19:11:50 | 000,066,717 | ---- | C] () -- C:\Users\Tubsi\Desktop\Picture 44.jpg
435. [2013.02.27 18:20:56 | 000,420,579 | ---- | C] () -- C:\Users\Tubsi\Desktop\B-BIO5_BioethikForschungsethik-ZF-WiSe12.pdf
436. [2013.02.24 21:10:46 | 000,000,923 | ---- | C] () -- C:\Users\Tubsi\Desktop\PokerStars.eu.lnk
437. [2013.01.21 17:51:33 | 001,537,146 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
438. [2012.02.14 11:50:39 | 000,121,752 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
439. [2012.01.18 07:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
440. [2012.01.18 07:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
441. [2012.01.18 07:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
442. [2011.04.08 12:28:58 | 000,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
443. [2010.07.27 21:35:07 | 000,156,672 | ---- | C] () -- C:\Users\Tubsi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
444. [2010.07.26 18:38:27 | 000,000,732 | ---- | C] () -- C:\Users\Tubsi\AppData\Local\d3d9caps64.dat
445. [2010.06.02 04:22:54 | 001,412,902 | ---- | C] () -- C:\Program Files\Common Files\OCT2006_d3dx9_31_x64.cab
446. [2010.06.02 04:22:54 | 001,127,217 | ---- | C] () -- C:\Program Files\Common Files\OCT2006_d3dx9_31_x86.cab
447. [2010.06.02 04:22:54 | 000,273,960 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_XAudio_x64.cab
448. [2010.06.02 04:22:54 | 000,272,611 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_XAudio_x86.cab
449. [2010.06.02 04:22:54 | 000,182,361 | ---- | C] () -- C:\Program Files\Common Files\OCT2006_XACT_x64.cab
450. [2010.06.02 04:22:54 | 000,138,017 | ---- | C] () -- C:\Program Files\Common Files\OCT2006_XACT_x86.cab
451. [2010.06.02 04:22:54 | 000,086,037 | ---- | C] () -- C:\Program Files\Common Files\Oct2005_xinput_x64.cab
452. [2010.06.02 04:22:54 | 000,045,359 | ---- | C] () -- C:\Program Files\Common Files\Oct2005_xinput_x86.cab
453. [2010.06.02 04:22:52 | 001,906,878 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_d3dx9_40_x64.cab
454. [2010.06.02 04:22:52 | 001,550,796 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_d3dx9_40_x86.cab
455. [2010.06.02 04:22:52 | 000,965,421 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_d3dx10_40_x86.cab
456. [2010.06.02 04:22:52 | 000,121,794 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_XACT_x64.cab
457. [2010.06.02 04:22:52 | 000,092,684 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_XACT_x86.cab
458. [2010.06.02 04:22:52 | 000,054,522 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_X3DAudio_x64.cab
459. [2010.06.02 04:22:52 | 000,021,851 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_X3DAudio_x86.cab
460. [2010.06.02 04:22:50 | 000,994,154 | ---- | C] () -- C:\Program Files\Common Files\Nov2008_d3dx10_40_x64.cab
461. [2010.06.02 04:22:50 | 000,196,762 | ---- | C] () -- C:\Program Files\Common Files\NOV2007_XACT_x64.cab
462. [2010.06.02 04:22:50 | 000,148,264 | ---- | C] () -- C:\Program Files\Common Files\NOV2007_XACT_x86.cab
463. [2010.06.02 04:22:50 | 000,046,144 | ---- | C] () -- C:\Program Files\Common Files\NOV2007_X3DAudio_x64.cab
464. [2010.06.02 04:22:50 | 000,018,496 | ---- | C] () -- C:\Program Files\Common Files\NOV2007_X3DAudio_x86.cab
465. [2010.06.02 04:22:48 | 001,802,058 | ---- | C] () -- C:\Program Files\Common Files\Nov2007_d3dx9_36_x64.cab
466. [2010.06.02 04:22:48 | 001,709,360 | ---- | C] () -- C:\Program Files\Common Files\Nov2007_d3dx9_36_x86.cab
467. [2010.06.02 04:22:48 | 000,864,600 | ---- | C] () -- C:\Program Files\Common Files\Nov2007_d3dx10_36_x64.cab
468. [2010.06.02 04:22:48 | 000,803,884 | ---- | C] () -- C:\Program Files\Common Files\Nov2007_d3dx10_36_x86.cab
469. [2010.06.02 04:22:48 | 000,273,018 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_XAudio_x86.cab
470. [2010.06.02 04:22:46 | 000,275,044 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_XAudio_x64.cab
471. [2010.06.02 04:22:46 | 000,121,506 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_XACT_x64.cab
472. [2010.06.02 04:22:46 | 000,092,740 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_XACT_x86.cab
473. [2010.06.02 04:22:38 | 000,054,600 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_X3DAudio_x64.cab
474. [2010.06.02 04:22:38 | 000,021,298 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_X3DAudio_x86.cab
475. [2010.06.02 04:22:36 | 001,973,702 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_d3dx9_41_x64.cab
476. [2010.06.02 04:22:36 | 001,612,446 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_d3dx9_41_x86.cab
477. [2010.06.02 04:22:36 | 001,067,160 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_d3dx10_41_x64.cab
478. [2010.06.02 04:22:36 | 001,040,745 | ---- | C] () -- C:\Program Files\Common Files\Mar2009_d3dx10_41_x86.cab
479. [2010.06.02 04:22:36 | 000,251,194 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_XAudio_x64.cab
480. [2010.06.02 04:22:36 | 000,226,250 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_XAudio_x86.cab
481. [2010.06.02 04:22:36 | 000,122,336 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_XACT_x64.cab
482. [2010.06.02 04:22:36 | 000,093,734 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_XACT_x86.cab
483. [2010.06.02 04:22:34 | 001,769,862 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_d3dx9_37_x64.cab
484. [2010.06.02 04:22:34 | 001,443,282 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_d3dx9_37_x86.cab
485. [2010.06.02 04:22:34 | 000,818,260 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_d3dx10_37_x86.cab
486. [2010.06.02 04:22:34 | 000,055,058 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_X3DAudio_x64.cab
487. [2010.06.02 04:22:34 | 000,021,867 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_X3DAudio_x86.cab
488. [2010.06.02 04:22:32 | 000,937,246 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx9_43_x64.cab
489. [2010.06.02 04:22:32 | 000,844,884 | ---- | C] () -- C:\Program Files\Common Files\Mar2008_d3dx10_37_x64.cab
490. [2010.06.02 04:22:32 | 000,768,036 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx9_43_x86.cab
491. [2010.06.02 04:22:32 | 000,278,060 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_XAudio_x86.cab
492. [2010.06.02 04:22:32 | 000,277,338 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_XAudio_x64.cab
493. [2010.06.02 04:22:32 | 000,124,596 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_XACT_x64.cab
494. [2010.06.02 04:22:32 | 000,093,686 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_XACT_x86.cab
495. [2010.06.02 04:22:30 | 000,762,188 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dcsx_43_x86.cab
496. [2010.06.02 04:22:30 | 000,235,955 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx10_43_x64.cab
497. [2010.06.02 04:22:30 | 000,197,283 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx10_43_x86.cab
498. [2010.06.02 04:22:30 | 000,138,205 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx11_43_x64.cab
499. [2010.06.02 04:22:30 | 000,109,445 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dx11_43_x86.cab
500. [2010.06.02 04:22:28 | 000,944,460 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_D3DCompiler_43_x64.cab
501. [2010.06.02 04:22:28 | 000,931,471 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_D3DCompiler_43_x86.cab
502. [2010.06.02 04:22:28 | 000,752,783 | ---- | C] () -- C:\Program Files\Common Files\Jun2010_d3dcsx_43_x64.cab
503. [2010.06.02 04:22:20 | 000,269,024 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_XAudio_x86.cab
504. [2010.06.02 04:22:18 | 001,792,608 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_d3dx9_38_x64.cab
505. [2010.06.02 04:22:18 | 001,463,878 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_d3dx9_38_x86.cab
506. [2010.06.02 04:22:18 | 000,867,828 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_d3dx10_38_x64.cab
507. [2010.06.02 04:22:18 | 000,849,919 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_d3dx10_38_x86.cab
508. [2010.06.02 04:22:18 | 000,269,628 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_XAudio_x64.cab
509. [2010.06.02 04:22:18 | 000,152,909 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_XACT_x86.cab
510. [2010.06.02 04:22:18 | 000,121,054 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_XACT_x64.cab
511. [2010.06.02 04:22:18 | 000,093,128 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_XACT_x86.cab
512. [2010.06.02 04:22:18 | 000,055,154 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_X3DAudio_x64.cab
513. [2010.06.02 04:22:18 | 000,021,905 | ---- | C] () -- C:\Program Files\Common Files\JUN2008_X3DAudio_x86.cab
514. [2010.06.02 04:22:16 | 001,607,774 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_d3dx9_34_x64.cab
515. [2010.06.02 04:22:16 | 001,607,286 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_d3dx9_34_x86.cab
516. [2010.06.02 04:22:16 | 001,064,925 | ---- | C] () -- C:\Program Files\Common Files\Jun2005_d3dx9_26_x86.cab
517. [2010.06.02 04:22:16 | 000,699,044 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_d3dx10_34_x64.cab
518. [2010.06.02 04:22:16 | 000,698,472 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_d3dx10_34_x86.cab
519. [2010.06.02 04:22:16 | 000,197,122 | ---- | C] () -- C:\Program Files\Common Files\JUN2007_XACT_x64.cab
520. [2010.06.02 04:22:16 | 000,180,785 | ---- | C] () -- C:\Program Files\Common Files\JUN2006_XACT_x64.cab
521. [2010.06.02 04:22:16 | 000,133,671 | ---- | C] () -- C:\Program Files\Common Files\JUN2006_XACT_x86.cab
522. [2010.06.02 04:22:14 | 001,336,002 | ---- | C] () -- C:\Program Files\Common Files\Jun2005_d3dx9_26_x64.cab
523. [2010.06.02 04:22:14 | 000,277,191 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_XAudio_x86.cab
524. [2010.06.02 04:22:14 | 000,276,960 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_XAudio_x64.cab
525. [2010.06.02 04:22:14 | 000,122,446 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_XACT_x64.cab
526. [2010.06.02 04:22:14 | 000,093,180 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_XACT_x86.cab
527. [2010.06.02 04:22:12 | 000,194,675 | ---- | C] () -- C:\Program Files\Common Files\FEB2007_XACT_x64.cab
528. [2010.06.02 04:22:12 | 000,147,983 | ---- | C] () -- C:\Program Files\Common Files\FEB2007_XACT_x86.cab
529. [2010.06.02 04:22:12 | 000,054,678 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_X3DAudio_x64.cab
530. [2010.06.02 04:22:12 | 000,020,713 | ---- | C] () -- C:\Program Files\Common Files\Feb2010_X3DAudio_x86.cab
531. [2010.06.02 04:22:10 | 000,178,359 | ---- | C] () -- C:\Program Files\Common Files\Feb2006_XACT_x64.cab
532. [2010.06.02 04:22:10 | 000,132,409 | ---- | C] () -- C:\Program Files\Common Files\Feb2006_XACT_x86.cab
533. [2010.06.02 04:22:04 | 001,084,720 | ---- | C] () -- C:\Program Files\Common Files\Feb2006_d3dx9_29_x86.cab
534. [2010.06.02 04:22:02 | 001,801,048 | ---- | C] () -- C:\Program Files\Common Files\dsetup32.dll
535. [2010.06.02 04:22:02 | 001,574,376 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_d3dx9_32_x86.cab
536. [2010.06.02 04:22:02 | 001,362,796 | ---- | C] () -- C:\Program Files\Common Files\Feb2006_d3dx9_29_x64.cab
537. [2010.06.02 04:22:02 | 001,247,499 | ---- | C] () -- C:\Program Files\Common Files\Feb2005_d3dx9_24_x64.cab
538. [2010.06.02 04:22:02 | 001,013,225 | ---- | C] () -- C:\Program Files\Common Files\Feb2005_d3dx9_24_x86.cab
539. [2010.06.02 04:22:02 | 000,537,432 | ---- | C] () -- C:\Program Files\Common Files\DXSETUP.exe
540. [2010.06.02 04:22:02 | 000,192,475 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_XACT_x64.cab
541. [2010.06.02 04:22:02 | 000,145,599 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_XACT_x86.cab
542. [2010.06.02 04:22:02 | 000,094,011 | ---- | C] () -- C:\Program Files\Common Files\dxupdate.cab
543. [2010.06.02 04:22:02 | 000,042,410 | ---- | C] () -- C:\Program Files\Common Files\dxdllreg_x86.cab
544. [2010.06.02 04:22:00 | 001,571,154 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_d3dx9_32_x64.cab
545. [2010.06.02 04:22:00 | 001,357,976 | ---- | C] () -- C:\Program Files\Common Files\Dec2005_d3dx9_28_x64.cab
546. [2010.06.02 04:22:00 | 001,079,456 | ---- | C] () -- C:\Program Files\Common Files\Dec2005_d3dx9_28_x86.cab
547. [2010.06.02 04:22:00 | 000,273,264 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_XAudio_x64.cab
548. [2010.06.02 04:22:00 | 000,272,642 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_XAudio_x86.cab
549. [2010.06.02 04:22:00 | 000,212,807 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_d3dx10_00_x64.cab
550. [2010.06.02 04:22:00 | 000,191,720 | ---- | C] () -- C:\Program Files\Common Files\DEC2006_d3dx10_00_x86.cab
551. [2010.06.02 04:22:00 | 000,122,408 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_XACT_x64.cab
552. [2010.06.02 04:22:00 | 000,093,106 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_XACT_x86.cab
553. [2010.06.02 04:21:58 | 000,930,116 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx9_42_x64.cab
554. [2010.06.02 04:21:58 | 000,728,456 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx9_42_x86.cab
555. [2010.06.02 04:21:58 | 000,232,635 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx10_42_x64.cab
556. [2010.06.02 04:21:58 | 000,192,131 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx10_42_x86.cab
557. [2010.06.02 04:21:58 | 000,136,301 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx11_42_x64.cab
558. [2010.06.02 04:21:58 | 000,105,044 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dx11_42_x86.cab
559. [2010.06.02 04:21:56 | 003,319,740 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dcsx_42_x86.cab
560. [2010.06.02 04:21:56 | 003,112,111 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_d3dcsx_42_x64.cab
561. [2010.06.02 04:21:56 | 000,900,598 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_D3DCompiler_42_x86.cab
562. [2010.06.02 04:21:46 | 000,919,044 | ---- | C] () -- C:\Program Files\Common Files\Aug2009_D3DCompiler_42_x64.cab
563. [2010.06.02 04:21:46 | 000,271,412 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_XAudio_x64.cab
564. [2010.06.02 04:21:46 | 000,271,038 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_XAudio_x86.cab
565. [2010.06.02 04:21:44 | 001,794,084 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_d3dx9_39_x64.cab
566. [2010.06.02 04:21:44 | 001,464,672 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_d3dx9_39_x86.cab
567. [2010.06.02 04:21:44 | 000,849,167 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_d3dx10_39_x86.cab
568. [2010.06.02 04:21:44 | 000,198,096 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_XACT_x64.cab
569. [2010.06.02 04:21:44 | 000,153,012 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_XACT_x86.cab
570. [2010.06.02 04:21:44 | 000,121,772 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_XACT_x64.cab
571. [2010.06.02 04:21:44 | 000,092,996 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_XACT_x86.cab
572. [2010.06.02 04:21:42 | 001,800,160 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_d3dx9_35_x64.cab
573. [2010.06.02 04:21:42 | 001,708,152 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_d3dx9_35_x86.cab
574. [2010.06.02 04:21:42 | 000,867,612 | ---- | C] () -- C:\Program Files\Common Files\Aug2008_d3dx10_39_x64.cab
575. [2010.06.02 04:21:42 | 000,852,286 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_d3dx10_35_x64.cab
576. [2010.06.02 04:21:42 | 000,796,867 | ---- | C] () -- C:\Program Files\Common Files\AUG2007_d3dx10_35_x86.cab
577. [2010.06.02 04:21:40 | 001,350,542 | ---- | C] () -- C:\Program Files\Common Files\Aug2005_d3dx9_27_x64.cab
578. [2010.06.02 04:21:40 | 001,077,644 | ---- | C] () -- C:\Program Files\Common Files\Aug2005_d3dx9_27_x86.cab
579. [2010.06.02 04:21:40 | 000,182,903 | ---- | C] () -- C:\Program Files\Common Files\AUG2006_XACT_x64.cab
580. [2010.06.02 04:21:40 | 000,137,235 | ---- | C] () -- C:\Program Files\Common Files\AUG2006_XACT_x86.cab
581. [2010.06.02 04:21:40 | 000,087,142 | ---- | C] () -- C:\Program Files\Common Files\AUG2006_xinput_x64.cab
582. [2010.06.02 04:21:40 | 000,053,302 | ---- | C] () -- C:\Program Files\Common Files\APR2007_xinput_x86.cab
583. [2010.06.02 04:21:40 | 000,046,058 | ---- | C] () -- C:\Program Files\Common Files\AUG2006_xinput_x86.cab
584. [2010.06.02 04:21:38 | 001,606,039 | ---- | C] () -- C:\Program Files\Common Files\APR2007_d3dx9_33_x86.cab
585. [2010.06.02 04:21:38 | 000,195,766 | ---- | C] () -- C:\Program Files\Common Files\APR2007_XACT_x64.cab
586. [2010.06.02 04:21:38 | 000,151,225 | ---- | C] () -- C:\Program Files\Common Files\APR2007_XACT_x86.cab
587. [2010.06.02 04:21:38 | 000,096,817 | ---- | C] () -- C:\Program Files\Common Files\APR2007_xinput_x64.cab
588. [2010.06.02 04:21:36 | 001,607,358 | ---- | C] () -- C:\Program Files\Common Files\APR2007_d3dx9_33_x64.cab
589. [2010.06.02 04:21:36 | 000,698,612 | ---- | C] () -- C:\Program Files\Common Files\APR2007_d3dx10_33_x64.cab
590. [2010.06.02 04:21:36 | 000,695,865 | ---- | C] () -- C:\Program Files\Common Files\APR2007_d3dx10_33_x86.cab
591. [2010.06.02 04:21:34 | 000,046,010 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_xinput_x86.cab
592. [2010.06.02 04:21:20 | 000,087,101 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_xinput_x64.cab
593. [2010.06.02 04:21:18 | 004,162,630 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_MDX1_x86_Archive.cab
594. [2010.06.02 04:21:18 | 000,916,430 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_MDX1_x86.cab
595. [2010.06.02 04:21:18 | 000,179,133 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_XACT_x64.cab
596. [2010.06.02 04:21:18 | 000,133,103 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_XACT_x86.cab
597. [2010.06.02 04:21:16 | 001,397,830 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_d3dx9_30_x64.cab
598. [2010.06.02 04:21:16 | 001,347,354 | ---- | C] () -- C:\Program Files\Common Files\Apr2005_d3dx9_25_x64.cab
599. [2010.06.02 04:21:16 | 001,115,221 | ---- | C] () -- C:\Program Files\Common Files\Apr2006_d3dx9_30_x86.cab
600. [2010.06.02 04:21:16 | 001,078,962 | ---- | C] () -- C:\Program Files\Common Files\Apr2005_d3dx9_25_x86.cab
601.  
602. [color=#E56717]========== ZeroAccess Check ==========[/color]
603.  
604. [2006.11.02 16:30:40 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
605.  
606. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
607.  
608. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
609.  
610. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
611.  
612. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
613.  
614. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
615. "" = C:\Windows\SysNative\shell32.dll -- [2010.07.26 17:16:26 | 012,898,816 | ---- | M] (Microsoft Corporation)
616. "ThreadingModel" = Apartment
617.  
618. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
619. "" = %SystemRoot%\system32\shell32.dll -- [2010.07.26 16:51:48 | 011,584,512 | ---- | M] (Microsoft Corporation)
620. "ThreadingModel" = Apartment
621.  
622. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
623. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.04.11 08:11:14 | 000,891,392 | ---- | M] (Microsoft Corporation)
624. "ThreadingModel" = Free
625.  
626. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
627. "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
628. "ThreadingModel" = Free
629.  
630. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
631. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2008.01.21 03:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
632. "ThreadingModel" = Both
633.  
634. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
635.  
636. [color=#E56717]========== LOP Check ==========[/color]
637.  
638. [2011.06.13 19:19:52 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\.minecraft
639. [2012.10.06 21:49:07 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Acronis
640. [2011.05.21 19:15:10 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Canon
641. [2013.03.24 18:07:32 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Dropbox
642. [2010.07.27 00:44:42 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\GameRanger
643. [2011.06.24 10:17:12 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\go
644. [2012.10.28 22:30:05 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Leadertech
645. [2012.09.12 16:27:58 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\LolClient
646. [2011.04.21 12:39:16 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Opera
647. [2010.10.19 18:13:17 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Stardock
648. [2010.07.27 14:43:56 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\TeamViewer
649. [2010.10.06 10:26:37 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\Thunderbird
650. [2010.07.27 00:24:39 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\TS3Client
651. [2010.07.27 15:26:31 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\TuneUp Software
652. [2013.03.23 22:24:39 | 000,000,000 | ---D | M] -- C:\Users\Tubsi\AppData\Roaming\uTorrent
653.  
654. [color=#E56717]========== Purity Check ==========[/color]
655.  
656.  
657.  
658. < End of report >
659. OTL Extras logfile created on: 24.03.2013 18:08:17 - Run 1
660. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tubsi\Favorites\Downloads
661. 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
662. Internet Explorer (Version = 8.0.6001.18928)
663. Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
664.  
665. 4,00 Gb Total Physical Memory | 2,17 Gb Available Physical Memory | 54,34% Memory free
666. 8,16 Gb Paging File | 5,69 Gb Available in Paging File | 69,71% Paging File free
667. Paging file location(s): ?:\pagefile.sys [binary data]
668.  
669. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
670. Drive C: | 585,94 Gb Total Space | 435,70 Gb Free Space | 74,36% Space Free | Partition Type: NTFS
671. Drive D: | 3,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
672. Drive I: | 2,08 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
673. Drive Z: | 345,57 Gb Total Space | 159,64 Gb Free Space | 46,20% Space Free | Partition Type: NTFS
674.  
675. Computer Name: VYERABEND | User Name: Tubsi | Logged in as Administrator.
676. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
677. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
678.  
679. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
680.  
681.  
682. [color=#E56717]========== File Associations ==========[/color]
683.  
684. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
685. .html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
686. .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
687.  
688. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
689. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
690. .html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
691.  
692. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
693. .html [@ = ChromeHTML] -- Reg Error: Key error. File not found
694.  
695. [color=#E56717]========== Shell Spawning ==========[/color]
696.  
697. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
698. batfile [open] -- "%1" %*
699. cmdfile [open] -- "%1" %*
700. comfile [open] -- "%1" %*
701. exefile [open] -- "%1" %*
702. helpfile [open] -- Reg Error: Key error.
703. htmlfile [edit] -- Reg Error: Key error.
704. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
705. http [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" (Opera Software)
706. https [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" (Opera Software)
707. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
708. InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
709. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
710. piffile [open] -- "%1" %*
711. regfile [merge] -- Reg Error: Key error.
712. scrfile [config] -- "%1"
713. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
714. scrfile [open] -- "%1" /S
715. txtfile [edit] -- Reg Error: Key error.
716. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
717. Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
718. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
719. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
720. Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
721. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
722. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
723. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
724.  
725. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
726. batfile [open] -- "%1" %*
727. cmdfile [open] -- "%1" %*
728. comfile [open] -- "%1" %*
729. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
730. exefile [open] -- "%1" %*
731. helpfile [open] -- Reg Error: Key error.
732. htmlfile [edit] -- Reg Error: Key error.
733. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
734. http [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" (Opera Software)
735. https [open] -- "C:\Program Files (x86)\Opera\opera.exe" "%1" (Opera Software)
736. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
737. piffile [open] -- "%1" %*
738. regfile [merge] -- Reg Error: Key error.
739. scrfile [config] -- "%1"
740. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
741. scrfile [open] -- "%1" /S
742. txtfile [edit] -- Reg Error: Key error.
743. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
744. Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
745. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
746. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
747. Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
748. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
749. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
750. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
751.  
752. [color=#E56717]========== Security Center Settings ==========[/color]
753.  
754. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
755. "cval" = 1
756.  
757. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
758.  
759. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
760. "AntiVirusOverride" = 0
761. "AntiSpywareOverride" = 0
762. "FirewallOverride" = 0
763. "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
764. "VistaSp2" = C6 13 46 B4 94 2D CB 01 [binary data]
765.  
766. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
767.  
768. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
769.  
770. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
771. "oobe_av" = 1
772.  
773. [color=#E56717]========== Firewall Settings ==========[/color]
774.  
775. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
776. "EnableFirewall" = 1
777. "DisableNotifications" = 0
778.  
779. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
780. "EnableFirewall" = 1
781. "DisableNotifications" = 0
782.  
783. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
784. "EnableFirewall" = 1
785. "DisableNotifications" = 0
786.  
787. [color=#E56717]========== Authorized Applications List ==========[/color]
788.  
789.  
790. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
791.  
792. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
793. "{01623DD8-C4F2-49D8-98AC-A1B5176822CA}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
794. "{02BEBB3C-92F2-4B0F-931C-4A75C1B9064D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
795. "{065107E2-E32F-4D62-9382-C4CA860AA6DE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
796. "{08439291-1EB5-499C-9A17-C820D89E09AC}" = lport=2869 | protocol=6 | dir=in | app=system |
797. "{1C7B9961-CEB1-49DE-85FB-B6195AD4C010}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
798. "{350ABDEC-D898-42DF-A89A-0FCDB4F561F5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
799. "{3C98474D-7A8B-499F-9E6C-5AF551408F96}" = rport=139 | protocol=6 | dir=out | app=system |
800. "{3E515D88-4112-4FCE-AB0E-37DB0AF958A6}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
801. "{539422F4-31A0-41FF-9320-EC392E678EFA}" = rport=137 | protocol=17 | dir=out | app=system |
802. "{5569A54A-6A49-4906-B51D-C368B8B8422A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
803. "{65B1627C-857B-4EB3-BD9F-6ED7C75EF54A}" = rport=10243 | protocol=6 | dir=out | app=system |
804. "{68E3F97F-D8F5-4B9A-AC41-8346BE21306B}" = lport=10243 | protocol=6 | dir=in | app=system |
805. "{6AE6C769-9806-4C9A-96B2-90B3FDB6D7E1}" = lport=139 | protocol=6 | dir=in | app=system |
806. "{78B7FEB5-0EB6-4F82-9FC7-DD7D2758F5AD}" = rport=445 | protocol=6 | dir=out | app=system |
807. "{80481DE2-3D90-4814-8FBF-6794D7A8B42E}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
808. "{9301E0FE-468E-4F06-A9ED-ECB2D0B2BC9C}" = lport=137 | protocol=17 | dir=in | app=system |
809. "{98958A8A-3F45-4FFD-8CD7-966A0CFBF237}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
810. "{AAEB56E4-F138-4361-91C0-D16239B6D2BC}" = rport=138 | protocol=17 | dir=out | app=system |
811. "{AEC01211-4234-460B-9AEC-75C78AA729F8}" = lport=138 | protocol=17 | dir=in | app=system |
812. "{C22010A7-4511-4AA5-8523-BE85EE7A1AA2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
813. "{C8790533-2EAA-48B8-94BA-7148A1046C58}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
814. "{D1CF48F5-8730-45C3-872F-C138E12A4AD0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
815. "{D561A217-121F-44AB-98E4-802CC13A45FB}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
816. "{D6601586-BB4B-402C-BC6A-02627EF4B868}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
817. "{D73CC616-1A62-4DBB-A97C-FF871F15A4D6}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
818. "{E074DE73-470E-43FF-9604-7E80CC7A8214}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
819. "{F2443DAB-C094-45D9-8821-51B56ED695A3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
820. "{F6D6408C-E79D-4374-8558-C12A7E35382B}" = lport=445 | protocol=6 | dir=in | app=system |
821.  
822. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
823.  
824. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
825. "{00A7A75F-96D7-4EC4-9048-AAB8A3D9F43A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
826. "{02903671-03E6-451D-A123-D458C2F9882C}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
827. "{04D8AEA1-EC66-4E60-894F-9B7C8E31957E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
828. "{061D5C4D-C5D2-4C78-B97F-E90E3B1EF204}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
829. "{08E146B6-56CD-477B-AC39-53BD9576BC9A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
830. "{090E8892-9B68-4BA9-948B-16F39D9725A8}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base15405\sc2.exe |
831. "{09857889-31DE-450C-97E6-362583AE109B}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16561\sc2.exe |
832. "{0A693FE6-C102-4CAF-97B2-09D8893BA001}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
833. "{0BD525A9-316E-446E-B35E-372962E05303}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18574\sc2.exe |
834. "{0D0C1AD2-E3FB-437B-81E8-0ADE99921788}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18092\sc2.exe |
835. "{10679317-EAAE-403E-9766-661E464A81EC}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
836. "{10C9ADE2-9DAD-4BE8-BC4E-28981D0742C9}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
837. "{14357D26-CF89-47B8-B25F-252D7905261C}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18574\sc2.exe |
838. "{17D7CC8E-1E3A-454E-9829-5D4754FF74B6}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
839. "{1DFA3FA5-56B5-40CA-9702-A2121369B320}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
840. "{20791E50-24D1-4FAF-87AB-10F78EBA6C39}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
841. "{23F9DDD1-8FA0-4CD2-8F76-66EEA8C751D5}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18574\sc2.exe |
842. "{2400E563-753A-4C8A-9256-5025A62F6840}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base15405\sc2.exe |
843. "{24B97F36-030E-49C9-9F27-F2FAEDB6AC16}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
844. "{2CB16B6A-4E00-4F47-BEDE-F74D15B62CD3}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
845. "{2F210006-7D2F-4963-A745-8A8DBC3364CF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
846. "{322B94ED-1A72-4391-B00E-7F146A08CBDF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
847. "{33C9886F-27AF-4527-829B-4F5DAB3D07D3}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
848. "{33FC40FA-5F2F-4306-9F40-18E8B1B1E302}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
849. "{3473205F-5A2E-4EE3-9611-C298A679B394}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
850. "{371A018E-40DF-44FF-BDD3-274E807DABDE}" = protocol=6 | dir=in | app=c:\users\tubsi\appdata\roaming\dropbox\bin\dropbox.exe |
851. "{386678EB-7FCF-45EF-9596-DB92F33D3099}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
852. "{38D5A73B-AB39-4DC8-AB49-29AF33054C7B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
853. "{3B167F1F-4F97-46B1-BF22-60D474753DC0}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
854. "{3BC5AC5D-5E22-4D81-AFFE-2E626B3F1B45}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
855. "{3E8C14FF-AB49-4070-8ABA-2C48BB648AF0}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
856. "{3F941080-4A88-4B40-91B7-ECFA084F2FB0}" = dir=in | app=c:\windows\system32\lxeecoms.exe |
857. "{43034305-BF1C-49A3-91BB-01A6A88CB00D}" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
858. "{44F5F119-ED08-4C39-922C-D7E2FFA8AA68}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
859. "{4C8D46F0-80F6-4551-BF3C-603017F9BAF8}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18574\sc2.exe |
860. "{4CBF8E85-8A20-4A93-9797-E68BB343AE71}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
861. "{4F2FCC87-B2D7-4D27-B99C-465719F24108}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
862. "{52B73E28-52AE-4606-AE38-ABE67983118B}" = dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
863. "{546011FD-FFD1-40E7-B83F-D01018267B20}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
864. "{58053A79-2026-4FC6-B17B-8A1D8FB01F2B}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18092\sc2.exe |
865. "{60184F2F-1613-4305-A3D3-B46E7BB3D9A8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
866. "{60ABA040-C402-451F-A0A6-9E58B5C99998}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
867. "{61B54361-AC23-4CCD-8461-85D36E0140FB}" = dir=in | app=c:\windows\system32\lxeecoms.exe |
868. "{626F79B4-BF84-425C-A18B-227A6574B912}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
869. "{672008CE-F2A1-4C9B-9CDA-52004D2F75A4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
870. "{6B8CB144-4D6A-4B53-A5F3-88EF2D58D83C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
871. "{70160D06-A44A-4E36-93A0-854D9006887C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
872. "{70248F7D-12BF-46DF-8D82-E956700F1142}" = dir=in | app=c:\windows\system32\lxeecoms.exe |
873. "{704786FD-AF91-4575-9621-208957F5BFFD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
874. "{706A89C9-0DAC-4F93-802E-8686EE4FD561}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
875. "{70B1E193-17DC-4CA6-B2C7-48732CEDD518}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
876. "{71D3028A-024E-4F54-B836-3A5190CE708D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
877. "{733AB488-1F1A-4A1A-AB91-20A89A8C5920}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16755\sc2.exe |
878. "{73649DA3-B998-4117-863C-5F70194CF103}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
879. "{7454DE52-9F5E-4712-A6AD-831D5B2D37EA}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18092\sc2.exe |
880. "{7C90F6E0-308B-42E2-83F9-9F2B7E200B45}" = dir=in | app=c:\windows\system32\lxeecoms.exe |
881. "{84F45A9E-E483-4F00-AC4C-1B7488CCD62C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
882. "{8698A978-95B4-41FF-9689-F3198DD7F812}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
883. "{8989A4FE-0F92-4B9E-A488-BF402E143ED1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
884. "{89CCDF53-C5D9-4272-841B-C55BC0C4624C}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
885. "{8BAD50ED-4A19-44D3-BF9E-63C5B077A3AB}" = protocol=17 | dir=in | app=c:\users\tubsi\appdata\roaming\dropbox\bin\dropbox.exe |
886. "{8BCCD0A2-5745-4AC5-A38E-ADE2A3818ADD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
887. "{8DB2FAD3-5DF3-47A2-9789-21883A9C0254}" = dir=in | app=c:\windows\system32\lxeecoms.exe |
888. "{93C2C8E8-AD8E-47F4-90BD-F320AB583AF6}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
889. "{9B8409BC-A60F-4D60-AB8B-B95834C67373}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
890. "{9C133954-A308-463D-B606-4B790626B004}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16755\sc2.exe |
891. "{9C55804D-2ACA-4279-9D0B-3331B51DB6E9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
892. "{9CAAA19D-CA43-4501-8363-57796B0DADB1}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
893. "{9D506C47-B91A-4092-89B5-86ED52E8768E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
894. "{9E8F24FC-4F26-421F-BD4A-36F54AEA3D34}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
895. "{9EA3FBE1-8290-417B-8748-3F2B7525B6E1}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
896. "{A3EC3ACF-83FD-462B-884B-20B4B6A23194}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
897. "{A5CFB361-4A46-4F06-8FCE-9759ABDC8176}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
898. "{AAF6D3FC-FBC3-4EE7-BA11-2C61F2D5E1DC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
899. "{AFD61D94-4AEB-48E2-9B29-45E0B3CE96A7}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-203 |
900. "{B2400A6B-E079-426B-9E99-2DF26B89AC37}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
901. "{B3F337F8-F1AE-494B-AFE9-EA068DB15975}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
902. "{B5225057-F181-4124-915C-975A460A3B1E}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
903. "{B6FB6980-7735-421B-95FD-1297AD50104A}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16755\sc2.exe |
904. "{B800F826-707F-4BA7-AC0A-E436A657EBA7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
905. "{B9B1A39A-1272-40FC-94C4-E252B5891BB6}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
906. "{BC2A3881-FB30-4F06-B92F-AE1CE50E8051}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
907. "{BC67D3DC-704B-48AF-A5EF-31205F623E6E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
908. "{BECFD415-F6FA-4D0A-AFF1-F8F83C9E63C8}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
909. "{BFE3C06E-6D95-443D-8356-058AAC0AFE0D}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base18092\sc2.exe |
910. "{C299B7B3-A23B-49B8-B072-A272AD5F1A79}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16561\sc2.exe |
911. "{CB7A3A30-D45E-4D6C-897A-5F9C78934632}" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
912. "{CE994391-9A4B-4712-9673-492BC40B7333}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
913. "{D096973F-41CB-4E70-A2EC-A569EA6FA1FE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
914. "{D7348D17-8D15-42FE-8446-70F692AB10FF}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
915. "{DD022B56-58E2-4C92-B317-D861A3A1F8D6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
916. "{DD66DCFB-2A2D-411B-AE4F-F0A747960BB8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
917. "{E3F5890E-28E5-4F22-870C-745A62859322}" = protocol=6 | dir=out | app=system |
918. "{E58B8F6A-B7A5-42E5-B247-1D6BE8C7A795}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
919. "{E76CA015-8148-4BC3-B353-C47A5A66E8BC}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
920. "{F3273966-1CA8-4F9B-8345-753DB280E606}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
921. "{F4A22231-E0B0-4511-8DFB-260501FEE83D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
922. "{F5C90155-1D37-4F70-AFE2-D1D7E53801A5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
923. "{FA12E38C-0AA6-4AD8-92D1-FB636DFED358}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
924. "{FC339683-353B-4563-91F2-0B06B984E30E}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
925. "{FD5084CF-FE18-4718-B143-539D3FA5CF9B}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base16755\sc2.exe |
926. "{FE6112CD-B925-452A-A633-09023C0392E8}" = protocol=58 | dir=in | app=system |
927. "TCP Query User{113FE5A7-EED9-4678-9598-839BE048AA39}Z:\games\call of duty - world at war\codwaw.exe.exe" = protocol=6 | dir=in | app=z:\games\call of duty - world at war\codwaw.exe.exe |
928. "TCP Query User{15DF870C-CA16-481D-8BE3-1DDB0E91B8B2}C:\users\tubsi\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=6 | dir=in | app=c:\users\tubsi\appdata\roaming\gameranger\gameranger\gameranger.exe |
929. "TCP Query User{1C046B50-2579-4A02-87AB-55F524EAE7CB}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
930. "TCP Query User{33F4CD1F-5CD3-4A3A-9DC0-A3F33B09855F}C:\program files (x86)\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
931. "TCP Query User{6D269D80-4F8E-4A4F-9ACF-71DB53188FCE}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
932. "TCP Query User{955889AB-BCA7-4737-802E-491C8DB0792C}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe |
933. "TCP Query User{9864B91C-14F9-459B-8164-B621045DCA40}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
934. "TCP Query User{A475AA6C-66C9-416F-AC1F-6EE7A09D0138}Z:\games\demigod\bin\demigod.exe" = protocol=6 | dir=in | app=z:\games\demigod\bin\demigod.exe |
935. "TCP Query User{B4A5D2F2-D69F-4ABA-9B5B-A4A608D89C88}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
936. "TCP Query User{BACB0C31-5224-4FBC-94A7-89E5CBD28BF2}Z:\games\demigod 2\bin\demigod.exe" = protocol=6 | dir=in | app=z:\games\demigod 2\bin\demigod.exe |
937. "TCP Query User{C723B93F-3722-454B-8BE7-29E53BC23C2B}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe |
938. "TCP Query User{D1BF485C-D5CB-46CA-BDE8-881D8CB82613}Z:\games\call of duty - world at war\codwaw.exe.exe" = protocol=6 | dir=in | app=z:\games\call of duty - world at war\codwaw.exe.exe |
939. "TCP Query User{D2E51665-A408-48B9-B0B1-F3A0255FBA6E}C:\program files (x86)\remote control server\remote control server.exe" = protocol=6 | dir=in | app=c:\program files (x86)\remote control server\remote control server.exe |
940. "UDP Query User{0622B045-CB78-454D-A6FF-FB5C4436065B}C:\users\tubsi\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=17 | dir=in | app=c:\users\tubsi\appdata\roaming\gameranger\gameranger\gameranger.exe |
941. "UDP Query User{0C247AE7-A22E-4824-B318-88F9440C22A5}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
942. "UDP Query User{167A39C0-2FD2-496F-AEE7-BEDAD2A8C37A}Z:\games\demigod\bin\demigod.exe" = protocol=17 | dir=in | app=z:\games\demigod\bin\demigod.exe |
943. "UDP Query User{30AE8B07-DD90-4D1F-AD88-1F41492118E6}Z:\games\call of duty - world at war\codwaw.exe.exe" = protocol=17 | dir=in | app=z:\games\call of duty - world at war\codwaw.exe.exe |
944. "UDP Query User{350C8E35-26F0-4EB3-90B2-CBAFE84403A7}C:\program files (x86)\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
945. "UDP Query User{4AE6E279-293B-4B1A-8583-E1FCAEA55840}Z:\games\demigod 2\bin\demigod.exe" = protocol=17 | dir=in | app=z:\games\demigod 2\bin\demigod.exe |
946. "UDP Query User{5F7A65D4-C072-4484-8514-B1760472BABA}C:\program files (x86)\remote control server\remote control server.exe" = protocol=17 | dir=in | app=c:\program files (x86)\remote control server\remote control server.exe |
947. "UDP Query User{63F53865-A986-488B-9192-8A70EB0DB53A}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe |
948. "UDP Query User{76B2CD74-198D-4C99-9B5A-FD62D9FF40E7}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
949. "UDP Query User{8EF686FE-1FD4-4154-B3DF-6D8ADFFDF695}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
950. "UDP Query User{9C8156CC-9852-4AA4-9994-2D57932B5D3F}Z:\games\call of duty - world at war\codwaw.exe.exe" = protocol=17 | dir=in | app=z:\games\call of duty - world at war\codwaw.exe.exe |
951. "UDP Query User{A3429DC5-C7D3-4042-8DC5-B79F030CA6B3}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
952. "UDP Query User{E25A5D14-2A66-4914-8ABC-972283A77B67}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe |
953.  
954. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
955.  
956. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
957. "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
958. "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
959. "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
960. "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series" = Canon MG5100 series MP Drivers
961. "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
962. "{328CC232-CFDC-468B-A214-2E21300E4CB5}" = Apple Mobile Device Support
963. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
964. "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
965. "{8F790958-2107-48F2-88E0-B352A0C225AB}" = iTunes
966. "{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
967. "{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
968. "{90140000-0015-0409-1000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
969. "{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
970. "{90140000-0016-0409-1000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
971. "{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
972. "{90140000-0018-0409-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
973. "{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
974. "{90140000-0019-0409-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
975. "{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
976. "{90140000-001A-0409-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
977. "{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
978. "{90140000-001B-0409-1000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
979. "{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
980. "{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
981. "{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
982. "{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
983. "{90140000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
984. "{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
985. "{90140000-002C-0409-1000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
986. "{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
987. "{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
988. "{90140000-0043-0409-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (English) 2010
989. "{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
990. "{90140000-0044-0409-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
991. "{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
992. "{90140000-006E-0409-1000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
993. "{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
994. "{90140000-00A1-0409-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
995. "{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
996. "{90140000-00BA-0409-1000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
997. "{90140000-0115-0409-1000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
998. "{90140000-0117-0409-1000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
999. "{9ED333F8-3E6C-4A38-BAFA-728454121CDA}" = PDF-XChange Viewer
1000. "{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour
1001. "{BC84C1E9-F4D4-4B8E-B35C-C88EEA0A5201}" = O&O Defrag Professional
1002. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
1003. "{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
1004. "{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
1005. "{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD1}" = Paint.NET v3.5.5
1006. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
1007. "Lexmark Pro700 Series" = Lexmark Pro700 Series
1008. "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
1009. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
1010. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
1011. "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
1012. "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
1013. "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
1014. "NVIDIA Drivers" = NVIDIA Drivers
1015. "Office14.PROPLUS" = Microsoft Office Professional Plus 2010
1016. "Sandboxie" = Sandboxie 3.46 (64-bit)
1017. "TeamSpeak 3 Client" = TeamSpeak 3 Client
1018. "WinRAR archiver" = WinRAR
1019.  
1020. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
1021. "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
1022. "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
1023. "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
1024. "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
1025. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
1026. "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
1027. "{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
1028. "{3C630BB8-692D-4495-A0BD-40336CD51F99}" = ICM Trainer Light
1029. "{3C6F60BD-EDBF-4D45-A063-59261E6FD540}" = Media Add-ons für Acronis True Image Home 2010
1030. "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
1031. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
1032. "{4C556B5C-8EF7-47B4-AE05-FE71EEB2C25B}" = Plus Pack für Acronis True Image Home 2010
1033. "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
1034. "{67ED38A3-4882-448B-B44D-3428AB00D7D5}" = Acronis True Image Home
1035. "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
1036. "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
1037. "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
1038. "{755C6515-9FEA-490C-B15E-22BB6519E57E}" = Remote Control Server
1039. "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
1040. "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
1041. "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
1042. "{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
1043. "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
1044. "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
1045. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
1046. "{8A74DEFD-A224-49CC-AB80-4E88BC730125}" = LogMeIn Hamachi
1047. "{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
1048. "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
1049. "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
1050. "{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
1051. "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
1052. "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.5)
1053. "{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
1054. "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
1055. "{C9EAEE6B-741F-421D-B9CE-9FA300DA92AD}_is1" = Super Mario Bros. X version 1.2.2
1056. "{D2C5E510-BE6D-42CC-9F61-E4F939078474}" = Lexmark
1057. "{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
1058. "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
1059. "{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX
1060. "{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = Impulse
1061. "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
1062. "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
1063. "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
1064. "{FBB55C5E-2548-4511-A6F5-8CBCDE16484C}" = A1 Dashboard
1065. "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
1066. "A1 Dashboard" = A1 Dashboard
1067. "Adobe AIR" = Adobe AIR
1068. "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
1069. "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
1070. "Adobe Shockwave Player" = Adobe Shockwave Player 11.5
1071. "AP Tuner 3.08" = AP Tuner 3.08
1072. "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
1073. "Canon MG5100 series Benutzerregistrierung" = Canon MG5100 series Benutzerregistrierung
1074. "CanonMyPrinter" = Canon My Printer
1075. "CanonSolutionMenuEX" = Canon Solution Menu EX
1076. "EASEUS Partition Master Professional Edition_is1" = EASEUS Partition Master 6.0.1 Professional
1077. "Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
1078. "Fraps" = Fraps
1079. "Google Chrome" = Google Chrome
1080. "hon" = Heroes of Newerth
1081. "Impulse" = Impulse
1082. "IsoBuster_is1" = IsoBuster 2.8
1083. "Lanikai (64-bit) (3.1.1)" = Lanikai (64-bit) (3.1.1)
1084. "Logitech Vid" = Logitech Vid HD
1085. "LogMeIn Hamachi" = LogMeIn Hamachi
1086. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
1087. "Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
1088. "MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
1089. "Nero8Lite_is1" = Nero 8 Micro
1090. "Opera 12.02.1578" = Opera 12.02
1091. "PDF Blender" = PDF Blender
1092. "Poker 770" = Poker 770
1093. "PokerStars" = PokerStars
1094. "PokerStars.eu" = PokerStars.eu
1095. "SopCast" = SopCast 3.2.9
1096. "StarCraft II" = StarCraft II
1097. "Super Mario World_is1" = Super Mario World
1098. "Super Video Converter_is1" = Super Video Converter 5.8
1099. "TeamViewer 5" = TeamViewer 5
1100. "TuneUp Utilities" = TuneUp Utilities
1101. "uTorrent" = µTorrent
1102. "VirtualCloneDrive" = VirtualCloneDrive
1103. "VLC media player" = VLC media player 1.1.1
1104. "Xfire" = Xfire (remove only)
1105.  
1106. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
1107.  
1108. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
1109. "Dropbox" = Dropbox
1110. "GameRanger" = GameRanger
1111. "RockMelt" = RockMelt
1112.  
1113. [color=#E56717]========== Last 20 Event Log Errors ==========[/color]
1114.  
1115. [ Application Events ]
1116. Error - 24.03.2013 10:13:08 | Computer Name = Vyerabend | Source = Microsoft-Windows-CAPI2 | ID = 131083
1117. Description =
1118.  
1119. Error - 24.03.2013 10:13:17 | Computer Name = Vyerabend | Source = MsiInstaller | ID = 11714
1120. Description =
1121.  
1122. Error - 24.03.2013 10:13:24 | Computer Name = Vyerabend | Source = Microsoft-Windows-CAPI2 | ID = 131083
1123. Description =
1124.  
1125. Error - 24.03.2013 10:13:29 | Computer Name = Vyerabend | Source = MsiInstaller | ID = 11714
1126. Description =
1127.  
1128. Error - 24.03.2013 10:23:12 | Computer Name = Vyerabend | Source = Avira AntiVir | ID = 4118
1129. Description = AUSNAHMEFEHLER beim Aufruf der Funktion <Scan> für die Datei C:\Users\Public\LUMIXSimpleViewer
1130. Aegypten Diashow\03092010\P1000002.JPG. [ACCESS_VIOLATION Exception!! EIP = 0x1fc7462]
1131.  
1132. Bitte Avira informieren und die obige Datei übersenden!
1133.  
1134. Error - 24.03.2013 10:27:50 | Computer Name = Vyerabend | Source = Avira AntiVir | ID = 4118
1135. Description = AUSNAHMEFEHLER beim Aufruf der Funktion <Scan> für die Datei C:\Users\Public\LUMIXSimpleViewer
1136. Aegypten alle Bilder\26082010\P1130781.JPG. [ACCESS_VIOLATION Exception!! EIP =
1137. 0x1fc7462] Bitte Avira informieren und die obige Datei übersenden!
1138.  
1139. Error - 24.03.2013 10:33:19 | Computer Name = Vyerabend | Source = Avira AntiVir | ID = 4118
1140. Description = AUSNAHMEFEHLER beim Aufruf der Funktion <Scan> für die Datei C:\Users\Public\LUMIXSimpleViewer
1141. Aegypten alle Bilder\29082010\P1140249.JPG. [ACCESS_VIOLATION Exception!! EIP =
1142. 0x1fc7462] Bitte Avira informieren und die obige Datei übersenden!
1143.  
1144. Error - 24.03.2013 10:42:19 | Computer Name = Vyerabend | Source = Avira AntiVir | ID = 4118
1145. Description = AUSNAHMEFEHLER beim Aufruf der Funktion <Scan> für die Datei C:\Users\Public\LUMIXSimpleViewer
1146. Aegypten entwickeln\27082010\P1000186.JPG. [ACCESS_VIOLATION Exception!! EIP =
1147. 0x1fc7462] Bitte Avira informieren und die obige Datei übersenden!
1148.  
1149. Error - 24.03.2013 12:53:11 | Computer Name = Vyerabend | Source = WinMgmt | ID = 10
1150. Description =
1151.  
1152. Error - 24.03.2013 13:33:48 | Computer Name = Vyerabend | Source = Avira AntiVir | ID = 4118
1153. Description = AUSNAHMEFEHLER beim Aufruf der Funktion <Scan> für die Datei C:\Users\Public\LUMIXSimpleViewer
1154. Aegypten Diashow\31082010\P1000122.JPG. [ACCESS_VIOLATION Exception!! EIP = 0x19a7462]
1155.  
1156. Bitte Avira informieren und die obige Datei übersenden!
1157.  
1158. [ System Events ]
1159. Error - 24.03.2013 12:59:12 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1160. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1161. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1162. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1163. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1164.  
1165. Error - 24.03.2013 13:05:33 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1166. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1167. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1168. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1169. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1170.  
1171. Error - 24.03.2013 13:07:13 | Computer Name = Vyerabend | Source = Service Control Manager | ID = 7011
1172. Description =
1173.  
1174. Error - 24.03.2013 13:11:14 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1175. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1176. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1177. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1178. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1179.  
1180. Error - 24.03.2013 13:16:49 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1181. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1182. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1183. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1184. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1185.  
1186. Error - 24.03.2013 13:23:14 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1187. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1188. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1189. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1190. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1191.  
1192. Error - 24.03.2013 13:28:52 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1193. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1194. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1195. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1196. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1197.  
1198. Error - 24.03.2013 13:34:42 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1199. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1200. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1201. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1202. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1203.  
1204. Error - 24.03.2013 13:40:42 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1205. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1206. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1207. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1208. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1209.  
1210. Error - 24.03.2013 13:47:06 | Computer Name = Vyerabend | Source = Dhcp | ID = 1001
1211. Description = Diesem Computer konnte keine Netzwerkadresse durch den DHCP-Server
1212. für die Netzwerkkarte mit der Netzwerkadresse 0023C3EF8844 zugeteilt werden. Der
1213. folgende Fehler ist aufgetreten: %%121. Es wird weiterhin im Hintergrund versucht,
1214. eine Adresse vom Netzwerkadressserver (DHCP) zugeteilt zu bekommen.
1215.  
1216.  
1217. < End of report >