Seite 4 von 9 ErsteErste ... 23456 ... LetzteLetzte
Ergebnis 31 bis 40 von 90

Thema: Internet ist nach lan sehr langsam

  1. #31
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    Hbas geschafft
    Code:
    OTL logfile created on: 04.02.2012 15:56:58 - Run 5
    OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Niko\Desktop
    64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
     
    7,75 Gb Total Physical Memory | 5,62 Gb Available Physical Memory | 72,54% Memory free
    15,56 Gb Paging File | 13,32 Gb Available in Paging File | 85,62% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 341,80 Gb Total Space | 150,36 Gb Free Space | 43,99% Space Free | Partition Type: NTFS
    Drive D: | 356,83 Gb Total Space | 207,57 Gb Free Space | 58,17% Space Free | Partition Type: NTFS
    Drive E: | 521,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
     
    Computer Name: NIKOS-PC | User Name: Niko | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - C:\Users\Niko\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    PRC - C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
    PRC - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
    PRC - C:\Windows\SysWOW64\Ctxfihlp.exe (Creative Technology Ltd)
    PRC - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    PRC - C:\Gaming Mouse\Gaming Mouse.exe ()
    PRC - C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\t7bh0y7z.default\extensions\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\components\RadioWMPCoreGecko9.dll ()
    MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
    MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
    MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
    MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf ()
    MOD - C:\Gaming Mouse\Gaming Mouse.exe ()
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV:64bit: - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
    SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_e286960.dll ()
    SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
    SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
    SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    SRV - (LBTServ) -- C:\Programme\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
    SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
    SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    SRV - (Creative Media Toolbox 6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe (Creative Labs)
    SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs)
    SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs)
    SRV - (npggsvc) -- C:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.)
    SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
    SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    SRV - (CTAudSvcService) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
    SRV - (SBSDWSCService) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    SRV - (InterBaseServer) -- C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    SRV - (InterBaseGuardian) -- C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys (Duplex Secure Ltd.)
    DRV:64bit: - (avipbb) -- C:\Windows\SysNative\DRIVERS\avipbb.sys (Avira GmbH)
    DRV:64bit: - (LGVirHid) -- C:\Windows\SysNative\drivers\LGVirHid.sys (Logitech Inc.)
    DRV:64bit: - (JRAID) -- C:\Windows\SysNative\DRIVERS\jraid.sys (JMicron Technology Corp.)
    DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\DRIVERS\avgntflt.sys (Avira GmbH)
    DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\DRIVERS\avkmgr.sys (Avira GmbH)
    DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek                                            )
    DRV:64bit: - (atksgt) -- C:\Windows\SysNative\DRIVERS\atksgt.sys ()
    DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\DRIVERS\lirsgt.sys ()
    DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
    DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.)
    DRV:64bit: - (Gun) -- C:\Windows\SysNative\Gun64.sys ()
    DRV:64bit: - (tapoas) -- C:\Windows\SysNative\DRIVERS\tapoas.sys (The OpenVPN Project)
    DRV:64bit: - (ha20x22k) -- C:\Windows\SysNative\drivers\ha20x22k.sys (Creative Technology Ltd)
    DRV:64bit: - (ha20x2k) -- C:\Windows\SysNative\drivers\ha20x2k.sys (Creative Technology Ltd)
    DRV:64bit: - (emupia) -- C:\Windows\SysNative\drivers\emupia2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctsfm2k) -- C:\Windows\SysNative\drivers\ctsfm2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctprxy2k) -- C:\Windows\SysNative\drivers\ctprxy2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ossrv) -- C:\Windows\SysNative\drivers\ctoss2k.sys (Creative Technology Ltd.)
    DRV:64bit: - (ctaud2k) Creative Audio Driver (WDM) -- C:\Windows\SysNative\drivers\ctaud2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctac32k) -- C:\Windows\SysNative\drivers\ctac32k.sys (Creative Technology Ltd)
    DRV:64bit: - (CTEXFIFX.SYS) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTEXFIFX) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT.SYS) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT.SYS) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (ScreamBAudioSvc) -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys (Screaming Bee LLC)
    DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
    DRV:64bit: - (LGBusEnum) -- C:\Windows\SysNative\drivers\LGBusEnum.sys (Logitech Inc.)
    DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
    DRV:64bit: - (RMCAST) RMCAST (Pgm) -- C:\Windows\SysNative\DRIVERS\RMCAST.sys (Microsoft Corporation)
    DRV:64bit: - (hamachi) -- C:\Windows\SysNative\DRIVERS\hamachi.sys (LogMeIn, Inc.)
    DRV:64bit: - (FWLANUSB) -- C:\Windows\SysNative\DRIVERS\fwlanusb.sys (AVM GmbH)
    DRV:64bit: - (avmeject) -- C:\Windows\SysNative\drivers\avmeject.sys (AVM Berlin)
    DRV - (DrvAgent64) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS (Phoenix Technologies)
    DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (NPPTNT2) -- C:\Windows\SysWow64\npptNT2.sys (INCA Internet Co., Ltd.)
    DRV - (Asushwio) -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS ()
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
    IE - HKCU\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.startup.homepage: "Google.de"
     
     
    FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.2.1: C:\Windows\system32\npDeployJava1.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.2.0: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.01.26 21:14:15 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.01.25 17:57:52 | 000,000,000 | ---D | M]
     
    [2012.01.26 21:12:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions
    [2011.02.13 16:14:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions\net.openvpn.client
    [2012.02.04 01:52:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions
    [2012.02.04 01:52:34 | 000,000,000 | ---D | M] (uTorrentBar_DE Community Toolbar) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}
    [2012.01.26 21:14:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
    () (No name found) -- C:\USERS\NIKO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\T7BH0Y7Z.DEFAULT\EXTENSIONS\ADBLOCKPOPUPS@JESSEHAKANEN.NET.XPI
    [2011.12.21 08:42:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
    [2011.10.03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
    [2010.07.27 15:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll
    [2011.12.21 06:08:50 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
    [2011.09.28 14:58:19 | 000,002,288 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
    [2011.12.21 06:02:40 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
    [2011.12.21 06:08:50 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
    [2011.03.24 22:01:13 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
    [2011.12.21 06:08:50 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
    [2011.12.21 06:08:50 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
    [2011.12.21 06:08:50 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
     
    O1 HOSTS File: ([2011.04.23 20:09:42 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
    O1 - Hosts: 127.0.0.1       localhost
    O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
    O2 - BHO: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
    O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin)
    O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd)
    O4 - HKLM..\Run: [Gaming Mouse] C:\Gaming Mouse\Gaming Mouse.exe ()
    O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    O4 - HKCU..\Run: [bluebirds] C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    O4 - HKCU..\Run: [CtxfiReg] C:\Windows\SysWow64\CTxfiReg.exe (Creative Technology Ltd)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.0)
    O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
    O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2)
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/15118/CTPID.cab (Creative Software AutoUpdate Support Package)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7A9A9B0-3A9B-43EA-862A-E7823F07C035}: DhcpNameServer = 192.168.2.1
    O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
    O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
    O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2003.05.19 14:23:50 | 000,049,152 | R--- | M] () - E:\autoplay.exe -- [ CDFS ]
    O32 - AutoRun File - [2003.02.12 09:01:48 | 000,000,050 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2012.02.04 14:50:58 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 09:31:00 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\{459FC2C2-7181-4DCB-A85D-87136E582120}
    [2012.02.04 01:52:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
    [2012.02.04 01:52:31 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\Conduit
    [2012.02.04 01:52:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrentBar_DE
    [2012.02.04 01:14:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\wow-one.com
    [2012.02.04 00:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
    [2012.02.03 23:34:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard
    [2012.02.03 23:32:54 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
    [2012.01.28 12:56:56 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.28 01:40:19 | 000,000,000 | ---D | C] -- C:\_OTL
    [2012.01.27 21:00:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
    [2012.01.27 21:00:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PCSX2 0.9.8
    [2012.01.27 21:00:15 | 000,000,000 | ---D | C] -- C:\Users\Niko\Desktop\PCSX2 - CrazyJunkyGames
    [2012.01.27 20:23:33 | 000,000,000 | R--D | C] -- C:\Users\Niko\Desktop\drk-cld-fdm-sdm
    [2012.01.27 19:37:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\Documents\PCSX2
    [2012.01.27 19:35:45 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
    [2012.01.27 07:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
    [2012.01.26 23:31:38 | 000,263,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.26 23:31:29 | 000,000,000 | ---D | C] -- C:\Program Files\Java
    [2012.01.24 21:01:51 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\SUPERAntiSpyware.com
    [2012.01.24 20:59:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
    [2012.01.24 20:53:39 | 000,750,488 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.24 20:44:50 | 000,660,368 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.24 19:33:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
    [2012.01.23 18:51:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
    [2012.01.22 21:22:23 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\TuneUp Software
    [2012.01.22 21:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
    [2012.01.22 21:20:29 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    [2012.01.21 00:11:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    [2012.01.21 00:10:53 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
    [2012.01.21 00:10:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
    [2012.01.14 10:54:25 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\NationRed
    [2012.01.12 14:26:05 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
    [2012.01.12 14:26:05 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
    [2012.01.11 15:05:06 | 001,570,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
    [2012.01.11 15:05:06 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
    [2012.01.11 15:05:06 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
    [2012.01.11 15:05:06 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
    [2012.01.11 14:41:08 | 001,585,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
    [2012.01.11 14:41:01 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmm.dll
    [2012.01.11 14:41:01 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcicda.dll
    [2012.01.11 14:41:01 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciwave.dll
    [2012.01.11 14:41:01 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciseq.dll
    [2012.01.11 14:41:01 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciseq.dll
    [2012.01.11 14:41:00 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
    [2012.01.11 14:40:59 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
    [2012.01.11 14:40:59 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
    [2010.07.07 12:36:44 | 000,014,336 | ---- | C] ( ) -- C:\Windows\SysWow64\a3d.dll
    [2010.07.07 12:10:22 | 000,012,800 | ---- | C] ( ) -- C:\Windows\SysWow64\killapps.exe
    [6 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2012.02.04 16:24:59 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2012.02.04 15:48:29 | 010,812,938 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
    [2012.02.04 15:48:29 | 003,795,282 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2012.02.04 15:48:29 | 003,505,988 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
    [2012.02.04 15:48:29 | 003,057,628 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2012.02.04 15:48:29 | 000,006,808 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2012.02.04 15:42:26 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2012.02.04 15:42:04 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2012.02.04 15:42:04 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2012.02.04 15:41:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012.02.04 15:31:47 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:31:47 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:31:47 | 000,000,820 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:03:40 | 000,064,795 | ---- | M] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:58:16 | 000,000,607 | ---- | M] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:58:09 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:58:09 | 000,002,829 | ---- | M] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | M] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.03 21:13:31 | 000,001,005 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
    [2012.02.03 21:13:31 | 000,000,993 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | M] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.28 12:57:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.27 21:00:38 | 000,001,826 | ---- | M] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.27 20:30:14 | 000,564,792 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
    [2012.01.26 23:31:31 | 000,750,488 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.26 23:31:31 | 000,660,368 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.26 23:31:31 | 000,263,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.22 21:53:20 | 000,000,680 | ---- | M] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2012.01.21 21:25:07 | 000,000,201 | ---- | M] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 20:44:42 | 000,000,049 | ---- | M] () -- C:\Windows\NeroDigital.ini
    [2012.01.21 20:20:44 | 000,054,784 | ---- | M] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012.01.21 19:31:45 | 000,001,003 | ---- | M] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
    [2012.01.05 23:10:05 | 000,002,064 | ---- | M] () -- C:\Windows\SysNative\settingsbkup.sfm
    [2012.01.05 23:10:05 | 000,002,064 | ---- | M] () -- C:\Windows\SysNative\settings.sfm
    [6 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2012.02.04 14:58:16 | 000,000,607 | ---- | C] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:50:59 | 000,064,795 | ---- | C] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:50:58 | 000,002,829 | ---- | C] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | C] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | C] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.27 21:00:38 | 000,001,826 | ---- | C] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.26 21:14:16 | 000,000,900 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    [2012.01.21 21:25:07 | 000,000,201 | ---- | C] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 19:31:45 | 000,001,003 | ---- | C] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
    [2011.12.28 10:38:21 | 000,000,244 | ---- | C] () -- C:\Windows\ODBCINST.INI
    [2011.12.27 22:52:24 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1E9EDB16-9D0C-4B06-AF83-F608CB573B9E}
    [2011.12.13 19:07:41 | 000,000,680 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2011.10.29 18:54:35 | 000,281,656 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
    [2011.10.29 18:54:34 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
    [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
    [2011.09.28 15:05:00 | 000,000,544 | ---- | C] () -- C:\Users\Niko\AppData\Local\wise.fixer.torrent
    [2011.08.13 14:42:15 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{216E4FF7-27EE-44AE-B017-4AAD62D9B48B}
    [2011.08.13 14:42:11 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1761C58C-70BB-482D-9E79-6876CB4EC622}
    [2011.08.03 02:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
    [2011.07.25 12:53:46 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{F7A4D431-633E-488E-8D73-1D37AB71BF1F}
    [2011.07.08 22:15:33 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
    [2011.06.16 12:08:57 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{B3955FDF-F0F7-490E-94F0-4ED76375E944}
    [2011.05.31 07:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
    [2011.05.31 07:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
    [2011.04.25 00:20:03 | 000,000,067 | ---- | C] () -- C:\Users\Niko\AppData\Roaming\AVSMediaPlayer.m3u
    [2011.04.25 00:19:18 | 000,524,288 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
    [2011.04.25 00:19:18 | 000,139,264 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
    [2011.04.23 20:00:45 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
    [2011.04.23 20:00:45 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
    [2011.04.23 20:00:45 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
    [2011.04.23 20:00:45 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
    [2011.04.23 20:00:45 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
    [2011.04.19 10:03:47 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
    [2011.03.10 23:29:55 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
    [2011.02.24 16:07:45 | 000,835,440 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe
    [2011.02.18 17:54:26 | 000,230,752 | ---- | C] () -- C:\Windows\patchw32.dll
    [2011.02.18 17:54:26 | 000,118,176 | ---- | C] () -- C:\Windows\patchw.dll
    [2011.01.14 15:23:45 | 000,110,602 | ---- | C] () -- C:\Windows\SysWow64\xcdsfx32.bin
    [2011.01.13 13:34:35 | 000,000,964 | ---- | C] () -- C:\Windows\cm106.ini
    [2010.11.28 10:41:56 | 000,000,092 | ---- | C] () -- C:\Users\Niko\AppData\Local\fusioncache.dat
    [2010.11.28 10:40:21 | 000,006,994 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
    [2010.11.07 12:25:00 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
    [2010.11.07 12:24:40 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
    [2010.11.07 12:24:24 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2010.11.06 22:43:58 | 000,164,864 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
    [2010.11.06 22:43:58 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
    [2010.11.06 22:42:31 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIGER.DLL
    [2010.11.06 22:20:17 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
    [2010.11.06 21:17:31 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
    [2010.11.06 16:15:06 | 000,054,784 | ---- | C] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010.11.06 15:55:37 | 000,001,460 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps64.dat
    [2010.07.07 13:23:10 | 000,017,868 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini
    [2010.07.07 12:33:04 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CtxfiRes.dll
    [2010.07.07 12:21:00 | 000,051,787 | ---- | C] () -- C:\Windows\SysWow64\ctdlang.dat
    [2010.07.07 12:10:30 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\enlocstr.exe
    [2009.07.14 01:14:16 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini
    [2009.07.14 00:12:00 | 000,384,647 | ---- | C] () -- C:\Windows\SysWow64\ctdnlstr.dat
    [2009.05.26 12:12:38 | 000,000,285 | ---- | C] () -- C:\Windows\SysWow64\kill.ini
    [2008.01.21 03:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
    [2006.11.02 16:37:05 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2006.11.02 13:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2006.11.02 13:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2006.11.02 13:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
    [2006.11.02 10:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2000.03.29 15:17:42 | 000,005,824 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
    
    < End of report >
    aber nur otl.txt
    wenn umbedingt nötig ist dieses extra sag bescheid versuch ich das nochmal damit
    mfg

  2. #32
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    hier hab ich nochmal beides gemacht
    Code:
    OTL logfile created on: 04.02.2012 18:53:52 - Run 6
    OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Niko\Desktop
    64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
     
    7,75 Gb Total Physical Memory | 5,56 Gb Available Physical Memory | 71,82% Memory free
    15,69 Gb Paging File | 13,38 Gb Available in Paging File | 85,26% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 341,80 Gb Total Space | 146,88 Gb Free Space | 42,97% Space Free | Partition Type: NTFS
    Drive D: | 356,83 Gb Total Space | 207,57 Gb Free Space | 58,17% Space Free | Partition Type: NTFS
    Drive E: | 521,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
     
    Computer Name: NIKOS-PC | User Name: Niko | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - C:\Users\Niko\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
    PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    PRC - C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
    PRC - C:\Windows\SysWOW64\Ctxfihlp.exe (Creative Technology Ltd)
    PRC - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    PRC - C:\Gaming Mouse\Gaming Mouse.exe ()
    PRC - C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    PRC - C:\Windows\SysWOW64\conime.exe (Microsoft Corporation)
    PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf ()
    MOD - C:\Gaming Mouse\Gaming Mouse.exe ()
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV:64bit: - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
    SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_e286960.dll ()
    SRV - (TeamViewer7) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
    SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
    SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
    SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    SRV - (LBTServ) -- C:\Programme\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
    SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
    SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    SRV - (Creative Media Toolbox 6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe (Creative Labs)
    SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs)
    SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs)
    SRV - (npggsvc) -- C:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.)
    SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
    SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    SRV - (CTAudSvcService) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
    SRV - (SBSDWSCService) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    SRV - (InterBaseServer) -- C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    SRV - (InterBaseGuardian) -- C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys (Duplex Secure Ltd.)
    DRV:64bit: - (avipbb) -- C:\Windows\SysNative\DRIVERS\avipbb.sys (Avira GmbH)
    DRV:64bit: - (LGVirHid) -- C:\Windows\SysNative\drivers\LGVirHid.sys (Logitech Inc.)
    DRV:64bit: - (JRAID) -- C:\Windows\SysNative\DRIVERS\jraid.sys (JMicron Technology Corp.)
    DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\DRIVERS\avgntflt.sys (Avira GmbH)
    DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\DRIVERS\avkmgr.sys (Avira GmbH)
    DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek                                            )
    DRV:64bit: - (atksgt) -- C:\Windows\SysNative\DRIVERS\atksgt.sys ()
    DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\DRIVERS\lirsgt.sys ()
    DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
    DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.)
    DRV:64bit: - (Gun) -- C:\Windows\SysNative\Gun64.sys ()
    DRV:64bit: - (tapoas) -- C:\Windows\SysNative\DRIVERS\tapoas.sys (The OpenVPN Project)
    DRV:64bit: - (ha20x22k) -- C:\Windows\SysNative\drivers\ha20x22k.sys (Creative Technology Ltd)
    DRV:64bit: - (ha20x2k) -- C:\Windows\SysNative\drivers\ha20x2k.sys (Creative Technology Ltd)
    DRV:64bit: - (emupia) -- C:\Windows\SysNative\drivers\emupia2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctsfm2k) -- C:\Windows\SysNative\drivers\ctsfm2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctprxy2k) -- C:\Windows\SysNative\drivers\ctprxy2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ossrv) -- C:\Windows\SysNative\drivers\ctoss2k.sys (Creative Technology Ltd.)
    DRV:64bit: - (ctaud2k) Creative Audio Driver (WDM) -- C:\Windows\SysNative\drivers\ctaud2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctac32k) -- C:\Windows\SysNative\drivers\ctac32k.sys (Creative Technology Ltd)
    DRV:64bit: - (CTEXFIFX.SYS) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTEXFIFX) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT.SYS) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT.SYS) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (ScreamBAudioSvc) -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys (Screaming Bee LLC)
    DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
    DRV:64bit: - (LGBusEnum) -- C:\Windows\SysNative\drivers\LGBusEnum.sys (Logitech Inc.)
    DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
    DRV:64bit: - (RMCAST) RMCAST (Pgm) -- C:\Windows\SysNative\DRIVERS\RMCAST.sys (Microsoft Corporation)
    DRV:64bit: - (hamachi) -- C:\Windows\SysNative\DRIVERS\hamachi.sys (LogMeIn, Inc.)
    DRV:64bit: - (FWLANUSB) -- C:\Windows\SysNative\DRIVERS\fwlanusb.sys (AVM GmbH)
    DRV:64bit: - (avmeject) -- C:\Windows\SysNative\drivers\avmeject.sys (AVM Berlin)
    DRV - (DrvAgent64) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS (Phoenix Technologies)
    DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (NPPTNT2) -- C:\Windows\SysWow64\npptNT2.sys (INCA Internet Co., Ltd.)
    DRV - (Asushwio) -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS ()
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
    IE - HKCU\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.startup.homepage: "Google.de"
     
     
    FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.2.1: C:\Windows\system32\npDeployJava1.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.2.0: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.01.26 21:14:15 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.01.25 17:57:52 | 000,000,000 | ---D | M]
     
    [2012.01.26 21:12:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions
    [2011.02.13 16:14:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions\net.openvpn.client
    [2012.02.04 01:52:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions
    [2012.02.04 01:52:34 | 000,000,000 | ---D | M] (uTorrentBar_DE Community Toolbar) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}
    [2012.01.26 21:14:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
    () (No name found) -- C:\USERS\NIKO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\T7BH0Y7Z.DEFAULT\EXTENSIONS\ADBLOCKPOPUPS@JESSEHAKANEN.NET.XPI
    [2011.12.21 08:42:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
    [2011.10.03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
    [2010.07.27 15:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll
    [2011.12.21 06:08:50 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
    [2011.09.28 14:58:19 | 000,002,288 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
    [2011.12.21 06:02:40 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
    [2011.12.21 06:08:50 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
    [2011.03.24 22:01:13 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
    [2011.12.21 06:08:50 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
    [2011.12.21 06:08:50 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
    [2011.12.21 06:08:50 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
     
    O1 HOSTS File: ([2011.04.23 20:09:42 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
    O1 - Hosts: 127.0.0.1       localhost
    O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
    O2 - BHO: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
    O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin)
    O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd)
    O4 - HKLM..\Run: [Gaming Mouse] C:\Gaming Mouse\Gaming Mouse.exe ()
    O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    O4 - HKCU..\Run: [bluebirds] C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    O4 - HKCU..\Run: [CtxfiReg] C:\Windows\SysWow64\CTxfiReg.exe (Creative Technology Ltd)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.0)
    O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
    O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2)
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/15118/CTPID.cab (Creative Software AutoUpdate Support Package)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7A9A9B0-3A9B-43EA-862A-E7823F07C035}: DhcpNameServer = 192.168.2.1
    O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
    O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
    O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2003.05.19 14:23:50 | 000,049,152 | R--- | M] () - E:\autoplay.exe -- [ CDFS ]
    O32 - AutoRun File - [2003.02.12 09:01:48 | 000,000,050 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2012.02.04 18:48:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
    [2012.02.04 14:50:58 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 09:31:00 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\{459FC2C2-7181-4DCB-A85D-87136E582120}
    [2012.02.04 01:52:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
    [2012.02.04 01:52:31 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\Conduit
    [2012.02.04 01:52:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrentBar_DE
    [2012.02.04 01:14:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\wow-one.com
    [2012.02.04 00:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
    [2012.02.03 23:34:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard
    [2012.02.03 23:32:54 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
    [2012.01.28 12:56:56 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.28 01:40:19 | 000,000,000 | ---D | C] -- C:\_OTL
    [2012.01.27 21:00:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
    [2012.01.27 21:00:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PCSX2 0.9.8
    [2012.01.27 21:00:15 | 000,000,000 | ---D | C] -- C:\Users\Niko\Desktop\PCSX2 - CrazyJunkyGames
    [2012.01.27 20:23:33 | 000,000,000 | R--D | C] -- C:\Users\Niko\Desktop\drk-cld-fdm-sdm
    [2012.01.27 19:37:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\Documents\PCSX2
    [2012.01.27 19:35:45 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
    [2012.01.27 07:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
    [2012.01.26 23:31:38 | 000,263,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.26 23:31:29 | 000,000,000 | ---D | C] -- C:\Program Files\Java
    [2012.01.24 21:01:51 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\SUPERAntiSpyware.com
    [2012.01.24 20:59:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
    [2012.01.24 20:53:39 | 000,750,488 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.24 20:44:50 | 000,660,368 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.24 19:33:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
    [2012.01.23 18:51:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
    [2012.01.22 21:22:23 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\TuneUp Software
    [2012.01.22 21:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
    [2012.01.22 21:20:29 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    [2012.01.21 00:11:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    [2012.01.21 00:10:53 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
    [2012.01.21 00:10:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
    [2012.01.14 10:54:25 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\NationRed
    [2012.01.12 14:26:05 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
    [2012.01.12 14:26:05 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
    [2012.01.11 15:05:06 | 001,570,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
    [2012.01.11 15:05:06 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
    [2012.01.11 15:05:06 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
    [2012.01.11 15:05:06 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
    [2012.01.11 14:41:08 | 001,585,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
    [2012.01.11 14:41:01 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmm.dll
    [2012.01.11 14:41:01 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcicda.dll
    [2012.01.11 14:41:01 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciwave.dll
    [2012.01.11 14:41:01 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciseq.dll
    [2012.01.11 14:41:01 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciseq.dll
    [2012.01.11 14:41:00 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
    [2012.01.11 14:40:59 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
    [2012.01.11 14:40:59 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
    [2010.07.07 12:36:44 | 000,014,336 | ---- | C] ( ) -- C:\Windows\SysWow64\a3d.dll
    [2010.07.07 12:10:22 | 000,012,800 | ---- | C] ( ) -- C:\Windows\SysWow64\killapps.exe
    [6 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2012.02.04 19:42:01 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2012.02.04 19:42:01 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2012.02.04 19:25:00 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2012.02.04 15:48:29 | 010,812,938 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
    [2012.02.04 15:48:29 | 003,795,282 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2012.02.04 15:48:29 | 003,505,988 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
    [2012.02.04 15:48:29 | 003,057,628 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2012.02.04 15:48:29 | 000,006,808 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2012.02.04 15:42:26 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2012.02.04 15:41:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012.02.04 15:31:47 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:31:47 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:31:47 | 000,000,820 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.04 15:03:40 | 000,064,795 | ---- | M] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:58:16 | 000,000,607 | ---- | M] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:58:09 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:58:09 | 000,002,829 | ---- | M] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | M] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.03 21:13:31 | 000,001,005 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
    [2012.02.03 21:13:31 | 000,000,993 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | M] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.28 12:57:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.27 21:00:38 | 000,001,826 | ---- | M] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.27 20:30:14 | 000,564,792 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
    [2012.01.26 23:31:31 | 000,750,488 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.26 23:31:31 | 000,660,368 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.26 23:31:31 | 000,263,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.22 21:53:20 | 000,000,680 | ---- | M] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2012.01.21 21:25:07 | 000,000,201 | ---- | M] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 20:44:42 | 000,000,049 | ---- | M] () -- C:\Windows\NeroDigital.ini
    [2012.01.21 20:20:44 | 000,054,784 | ---- | M] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012.01.21 19:31:45 | 000,001,003 | ---- | M] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
    [2012.01.05 23:10:05 | 000,002,064 | ---- | M] () -- C:\Windows\SysNative\settingsbkup.sfm
    [2012.01.05 23:10:05 | 000,002,064 | ---- | M] () -- C:\Windows\SysNative\settings.sfm
    [6 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2012.02.04 18:48:38 | 000,001,013 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
    [2012.02.04 14:58:16 | 000,000,607 | ---- | C] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:50:59 | 000,064,795 | ---- | C] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:50:58 | 000,002,829 | ---- | C] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | C] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | C] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.27 21:00:38 | 000,001,826 | ---- | C] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.26 21:14:16 | 000,000,900 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    [2012.01.21 21:25:07 | 000,000,201 | ---- | C] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 19:31:45 | 000,001,003 | ---- | C] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
    [2011.12.28 10:38:21 | 000,000,244 | ---- | C] () -- C:\Windows\ODBCINST.INI
    [2011.12.27 22:52:24 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1E9EDB16-9D0C-4B06-AF83-F608CB573B9E}
    [2011.12.13 19:07:41 | 000,000,680 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2011.10.29 18:54:35 | 000,281,656 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
    [2011.10.29 18:54:34 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
    [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
    [2011.09.28 15:05:00 | 000,000,544 | ---- | C] () -- C:\Users\Niko\AppData\Local\wise.fixer.torrent
    [2011.08.13 14:42:15 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{216E4FF7-27EE-44AE-B017-4AAD62D9B48B}
    [2011.08.13 14:42:11 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1761C58C-70BB-482D-9E79-6876CB4EC622}
    [2011.08.03 02:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
    [2011.07.25 12:53:46 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{F7A4D431-633E-488E-8D73-1D37AB71BF1F}
    [2011.07.08 22:15:33 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
    [2011.06.16 12:08:57 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{B3955FDF-F0F7-490E-94F0-4ED76375E944}
    [2011.05.31 07:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
    [2011.05.31 07:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
    [2011.04.25 00:20:03 | 000,000,067 | ---- | C] () -- C:\Users\Niko\AppData\Roaming\AVSMediaPlayer.m3u
    [2011.04.25 00:19:18 | 000,524,288 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
    [2011.04.25 00:19:18 | 000,139,264 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
    [2011.04.23 20:00:45 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
    [2011.04.23 20:00:45 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
    [2011.04.23 20:00:45 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
    [2011.04.23 20:00:45 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
    [2011.04.23 20:00:45 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
    [2011.04.19 10:03:47 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
    [2011.03.10 23:29:55 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
    [2011.02.24 16:07:45 | 000,835,440 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe
    [2011.02.18 17:54:26 | 000,230,752 | ---- | C] () -- C:\Windows\patchw32.dll
    [2011.02.18 17:54:26 | 000,118,176 | ---- | C] () -- C:\Windows\patchw.dll
    [2011.01.14 15:23:45 | 000,110,602 | ---- | C] () -- C:\Windows\SysWow64\xcdsfx32.bin
    [2011.01.13 13:34:35 | 000,000,964 | ---- | C] () -- C:\Windows\cm106.ini
    [2010.11.28 10:41:56 | 000,000,092 | ---- | C] () -- C:\Users\Niko\AppData\Local\fusioncache.dat
    [2010.11.28 10:40:21 | 000,006,994 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
    [2010.11.07 12:25:00 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
    [2010.11.07 12:24:40 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
    [2010.11.07 12:24:24 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2010.11.06 22:43:58 | 000,164,864 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
    [2010.11.06 22:43:58 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
    [2010.11.06 22:42:31 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIGER.DLL
    [2010.11.06 22:20:17 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
    [2010.11.06 21:17:31 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
    [2010.11.06 16:15:06 | 000,054,784 | ---- | C] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010.11.06 15:55:37 | 000,001,460 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps64.dat
    [2010.07.07 13:23:10 | 000,017,868 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini
    [2010.07.07 12:33:04 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CtxfiRes.dll
    [2010.07.07 12:21:00 | 000,051,787 | ---- | C] () -- C:\Windows\SysWow64\ctdlang.dat
    [2010.07.07 12:10:30 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\enlocstr.exe
    [2009.07.14 01:14:16 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini
    [2009.07.14 00:12:00 | 000,384,647 | ---- | C] () -- C:\Windows\SysWow64\ctdnlstr.dat
    [2009.05.26 12:12:38 | 000,000,285 | ---- | C] () -- C:\Windows\SysWow64\kill.ini
    [2008.01.21 03:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
    [2006.11.02 16:37:05 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2006.11.02 13:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2006.11.02 13:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2006.11.02 13:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
    [2006.11.02 10:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2000.03.29 15:17:42 | 000,005,824 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
    
    < End of report >
    Code:
    OTL Extras logfile created on: 04.02.2012 18:53:52 - Run 6
    OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Niko\Desktop
    64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
     
    7,75 Gb Total Physical Memory | 5,56 Gb Available Physical Memory | 71,82% Memory free
    15,69 Gb Paging File | 13,38 Gb Available in Paging File | 85,26% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 341,80 Gb Total Space | 146,88 Gb Free Space | 42,97% Space Free | Partition Type: NTFS
    Drive D: | 356,83 Gb Total Space | 207,57 Gb Free Space | 58,17% Space Free | Partition Type: NTFS
    Drive E: | 521,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
     
    Computer Name: NIKOS-PC | User Name: Niko | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Extra Registry (SafeList) ==========
     
     
    ========== File Associations ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
     
    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
     
    ========== Shell Spawning ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
    InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
    InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
     
    ========== Security Center Settings ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0
    "VistaSp1" = 9F 9E 16 8C DC 5B C8 01  [binary data]
    "VistaSp2" = 11 E6 B8 F3 50 7F CB 01  [binary data]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "oobe_av" = 1
     
    ========== System Restore Settings ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0
     
    ========== Firewall Settings ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
    "DoNotAllowExceptions" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
    "DoNotAllowExceptions" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
     
    ========== Authorized Applications List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
    "D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
     
     
    ========== Vista Active Open Ports Exception List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{03F7F126-6C7A-4850-AA92-8C3A324B49D1}" = lport=137 | protocol=17 | dir=in | app=system | 
    "{0A9AAEC1-CE91-4E9E-B0C9-F4F133EBD009}" = rport=445 | protocol=6 | dir=out | app=system | 
    "{120294E4-0586-4A8D-B734-497A912217E9}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
    "{1C37C1E2-06B9-484F-89E6-FB4F500D8662}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
    "{3154C833-50FB-44D9-AE83-3D4068098465}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | 
    "{36FFCAA4-DC67-4ED9-B099-83900AF73F96}" = lport=8397 | protocol=6 | dir=in | name=league of legends launcher | 
    "{4214B9FC-3494-449D-A092-8E4B73270D32}" = lport=80 | protocol=17 | dir=in | name=fifa11 | 
    "{44CC6A59-F951-40D1-975F-5D750793D941}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | 
    "{452D62F3-8DCC-4E04-B3D2-5D4C6417118B}" = rport=138 | protocol=17 | dir=out | app=system | 
    "{47A5DB75-E6DD-45EC-9375-DFEB172EF147}" = lport=25565 | protocol=17 | dir=in | name=minecraft | 
    "{4AB63356-3E4A-43E4-9D8E-18079EE9D66B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
    "{523E7F47-A7C1-430B-AB03-3BAAF4F84823}" = rport=137 | protocol=17 | dir=out | app=system | 
    "{55942A7E-F132-4598-98C4-E0906E72F4A4}" = lport=138 | protocol=17 | dir=in | app=system | 
    "{5F5C19BD-FBBF-4EB1-AD08-0545D6FC8182}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
    "{67E4A1BD-7B53-4499-89A4-C19C7537C5F5}" = lport=25565 | protocol=6 | dir=in | name=minecraft | 
    "{6EAB5FD9-67A9-4ACF-ABA9-010BC66A0383}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | 
    "{77CBD5DF-CC16-4904-8777-266440E91F9D}" = lport=6932 | protocol=17 | dir=in | name=league of legends launcher | 
    "{83BEAD8C-B29C-4AC8-91A7-F09E083DFD51}" = lport=443 | protocol=6 | dir=in | name=fifa11 | 
    "{83D94A42-1D75-41AF-B1F3-9B4AFAE257CA}" = lport=445 | protocol=6 | dir=in | app=system | 
    "{92FCB172-A8D7-4EA1-B440-C6B80E981756}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | 
    "{93A21BF5-DBA5-435A-B383-D3615C5AB787}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
    "{9AD465E0-74FD-40CF-841E-F1C72C1A33E3}" = lport=6932 | protocol=6 | dir=in | name=league of legends launcher | 
    "{9E16A154-4B1B-4174-B807-C0DBE6CA658D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
    "{9EEA9633-9F71-4747-9097-D178A02FA956}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
    "{A190FDD7-5180-406D-B955-84168D7BB84E}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe | 
    "{A37D4D33-7515-46CF-BAA0-8A89BF06E423}" = lport=80 | protocol=6 | dir=in | name=fifa11 | 
    "{BA9786E2-AC4F-4A70-A768-EA7EE9BAAA01}" = rport=139 | protocol=6 | dir=out | app=system | 
    "{BD4497F4-FEA3-4DA7-9319-9BE50E5759C3}" = lport=3074 | protocol=17 | dir=in | name=blackops | 
    "{BE67DDD4-6D97-4AD3-AD67-210B16F43159}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
    "{BEB51B1E-1203-4D32-AA16-067209C96751}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
    "{C1469730-2E5C-4B6C-9B84-B6C5F0D53E0C}" = lport=443 | protocol=17 | dir=in | name=fifa11 | 
    "{C388F0FD-C19C-470A-85F1-3DE87613FF64}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
    "{DA84910F-81E0-4786-B050-A376F890ACB7}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | 
    "{DE0A03E3-B024-4ACE-9587-E9210B235ADB}" = lport=49159 | protocol=6 | dir=in | name=akamai netsession interface | 
    "{EA231A29-298E-423F-8437-FCBCD53B8788}" = lport=30440 | protocol=6 | dir=in | name=fifa11 | 
    "{EAB807E6-268C-4446-B4AB-63CEC576DEBF}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe | 
    "{EAE19D63-30F7-4A77-AE0E-53C16B18F065}" = lport=139 | protocol=6 | dir=in | app=system | 
    "{EE872A4C-4DA7-49B2-959D-2619E398A8A9}" = lport=30440 | protocol=17 | dir=in | name=fifa11 | 
    "{F5BF98A2-0E97-4D62-9421-8D6720E30CC7}" = lport=3074 | protocol=6 | dir=in | name=blackops | 
    "{FE4593B4-5054-4A4B-A677-1B0288AE3843}" = lport=8397 | protocol=17 | dir=in | name=league of legends launcher | 
     
    ========== Vista Active Application Exception List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{0144A5CC-760F-4F24-80C7-AE90D5E1847C}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\anno5.exe | 
    "{04C1B735-4AE2-4133-A960-E0BFEBE00C03}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
    "{0518D942-0920-4062-BBAC-F3F14C9B4410}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{059996FA-B1F8-44F3-96A4-BA9FB3B2F44C}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{0A5D3597-E353-4276-A392-7D52D0EAC31B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
    "{0A69007A-96E2-40A0-BB43-8AFCD25F2006}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{0A9A8D05-F203-4486-9F77-FC4F65F6DFD2}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
    "{0D330334-CD47-4743-9952-799840499A82}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
    "{0ED532D1-12AD-4687-9D03-E9448877E5C7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\launcheflc.exe | 
    "{150B07DE-F980-4692-8246-515F1BA22745}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
    "{1550B4EB-3D70-4A41-8D6F-0EFF4E982EF7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe | 
    "{18344CAB-632A-4CFB-A2FD-9C113107F58E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops rcon\blackopsrcon.exe | 
    "{1D09C62E-D8B4-4F02-A2DD-F2FF0B833007}" = protocol=6 | dir=in | app=d:\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe | 
    "{1DA6F1F6-1554-460E-A1D4-41709292A06B}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe | 
    "{1F22AA96-2B48-41E6-9D10-62266683E8B4}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
    "{208D11E7-87FB-447D-AE03-0219F5717322}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackopsmp.exe | 
    "{2654A105-E2E4-43ED-8350-EA2BE48CD2E0}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\autopatcher.exe | 
    "{27E293AA-ED46-4CE9-9F5D-1A779F465ACE}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{2842696D-37F0-447E-A6DD-043644EBA2FB}" = protocol=6 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe | 
    "{2ABA5F09-1ECC-40F1-9726-99B9B5E8806C}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{2DC8856D-DAB5-4A59-8A3E-D7D107C6B598}" = protocol=6 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "{2E2C78C3-0AAA-4A93-A6FB-406DFE129DAA}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{2F210F2B-6071-4969-8A62-2C9976277BF4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{3151B27F-2C7F-42ED-BA12-CD577AB76990}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{3274DC5F-BE35-4CEA-9E11-B109816428B2}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | 
    "{3453ED22-89BE-48BF-9C16-454EACF13A01}" = protocol=6 | dir=in | app=d:\world of warcraft\launcher.exe | 
    "{346FDC88-D70F-4C70-8A76-0B621754EE9E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crimecraft\steamlauncher.exe | 
    "{3500AC15-7670-4179-B5C8-7CB9167ECBBD}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackopsmp.exe | 
    "{35FAB586-E4D8-44FA-BEEB-384334176F9D}" = protocol=17 | dir=in | app=d:\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe | 
    "{3C48325C-10F2-497E-B040-D4E36C77974C}" = protocol=17 | dir=in | app=d:\world of warcraft\launcher.exe | 
    "{432BAB11-0843-4981-9B1F-32B3DE747337}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\patcher.exe | 
    "{43D6B577-12DB-49A5-9D64-FF6623DF4A64}" = protocol=6 | dir=in | app=d:\steam\steam.exe | 
    "{443D904E-DBDF-4B10-BC3E-227D0316E85D}" = protocol=17 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe | 
    "{48D49C3F-1961-46D0-A1E8-47CC21464CFA}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\initengine.exe | 
    "{4D95027F-D204-478D-BA09-BCA9AB86B175}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
    "{5079E466-505F-47C1-B5C3-EF285AF824B3}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{511015CC-2AAE-4A13-912B-ED7A96856A04}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\anno5.exe | 
    "{51658FB6-A69C-40C5-9743-2B85C65D099A}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{51D28EA1-12FF-42C9-9022-E606B79772C6}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
    "{537F3A45-ACB0-4BC0-8E97-C779AE2C61F8}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe | 
    "{5AC86B4D-FBAC-42D2-9664-51F1A996C403}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{5CF07E82-746F-4361-A0C3-ECA771A006E7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crimecraft\steamlauncher.exe | 
    "{5DE3FBCD-C316-475D-A132-54D72AE15CDE}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{5EBCD7DD-3785-492C-AD3A-BB38A759734D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\launcheflc.exe | 
    "{6049F676-7420-4E89-BFB6-C6B8281279E7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe | 
    "{6255B760-E9E9-4260-86E0-05CC78D1634A}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | 
    "{64DCB906-02A0-4BA0-875B-95772CBFC2A2}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
    "{65CECB28-FF8D-455C-AE07-E77419C4BC8B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
    "{66D2AC09-A51F-4356-B80A-38DE3A12FA05}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | 
    "{6978EF8E-A2C9-4E3E-B1DC-B5F7BCD5AAE8}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\launcher.exe | 
    "{6CB18CCE-B263-4A83-BA71-4FD7BB07F90C}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{6E28A095-258A-44A7-9A62-3F6008A864A3}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\initengine.exe | 
    "{6E889338-859F-464B-B7F1-59D7BF667648}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe | 
    "{72088DCA-06F2-4442-9EB9-49C6B5F703F4}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\autopatcher.exe | 
    "{7293C45C-2027-4FD2-B735-952FF8E2AE74}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{72ECE5B8-7D55-4F38-ADDB-7AB2B3439CEA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
    "{7655BE35-735C-4E2E-882D-94ABF666D2C4}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
    "{77ED0B08-FB68-4399-BEE2-AD8AEC5459B3}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{7AC065CD-22E9-4AE0-BB7C-1CB3DD43443F}" = protocol=6 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\nmservice.exe | 
    "{7DDB0E2E-8B91-4936-B9FF-2AF8C085220A}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{7E34F102-F947-4BC5-B089-764CE8F3AA37}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
    "{7E91A941-9BDA-4E35-8E40-CE5FB98F0910}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\blackprophecy.exe | 
    "{7EBC4CDF-64D1-4C99-8FF1-A72B359E00CE}" = protocol=17 | dir=in | app=d:\steam\steam.exe | 
    "{8BD11E06-1504-4843-9292-8B8E216F5818}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{8DBCAAA8-65E1-4DA2-8F39-907F09922CC7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
    "{9482000B-8AD6-4FB9-A8B0-CE7A9410DA62}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{967826D4-E6B5-4844-8F45-715A15AFC119}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops rcon\blackopsrcon.exe | 
    "{992FC1FE-2E1B-440A-9D72-2BBC8284141D}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
    "{99FA4AF6-06EE-4204-BCA4-00E2039AC8B4}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | 
    "{9B589D77-DBB1-4971-A599-6BF24CAF97C5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
    "{A018741A-B45B-4AB6-B9C0-A45C85EFDA38}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackops.exe | 
    "{AB36F5BF-2C19-474F-8595-2E3A34F4587C}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
    "{AC8DDB7B-53A8-498F-A47E-3CC409AE91BE}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
    "{AD880693-A0D8-4D33-9C23-8C9C35197B0E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
    "{B16F9D57-1AF7-4724-BFCA-6D03E821F070}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{B1DA150B-7BA1-4424-A667-B7F32B4B3ACD}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
    "{B4D8B7B2-9182-4F1D-BE53-8C3BEF608E97}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{B7B26754-9014-4CE3-A2C8-C64F0E8366DC}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | 
    "{B94ACABC-85B3-43A3-894C-9DE9790D9A22}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
    "{BE1DC172-C238-40B7-B614-9BCBA89732C5}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
    "{C643D8D8-A987-4C36-AC0E-7DD35488ECFD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
    "{CAE6A38F-03A9-4909-8DFC-3730CFFD7028}" = protocol=17 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "{CCD1E449-299A-4D82-95FF-185EC02A0E12}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
    "{CE22DDA6-51B9-41E3-8F70-556FE777D7CE}" = protocol=17 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\nmservice.exe | 
    "{D1F49F3E-37B4-489E-A9EA-BE8603A1C6AD}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\blackprophecy.exe | 
    "{D92FE0DA-0FAD-42A9-AD93-2D2329A3E7D8}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{DA17D6B6-C36D-47CB-9E4F-EFD45C6CF8BB}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | 
    "{DC41BD13-F8CE-42B1-B909-7D4C238EB947}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{E04F1B91-D65F-4806-BB19-EB0D19DD77B4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
    "{E0C9CDDA-69AE-467C-BE01-F9A9D07EB752}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{E3365EF3-7D2B-49D9-AB1C-4F24BA6FDEE3}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
    "{E532A1E1-141C-4AD7-A715-D8C01DC54E78}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | 
    "{E6016D22-E7D4-49CD-A139-2A5A71590C83}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe | 
    "{E790C3A7-7E29-4D17-92F9-60ABE1D2C1BB}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\launcher.exe | 
    "{F1B13E73-3252-4404-A6C1-4EF49254F0E8}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{F7A47EF1-4E39-408E-B94B-8401025B4A88}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackops.exe | 
    "{F9574579-F760-4C79-A119-DB9DBED01B36}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\patcher.exe | 
    "{FDA417ED-D88F-4096-BABD-9DAB18AF9A16}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "TCP Query User{002FB05E-DDA3-48BA-9DBE-641D790CD6D1}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | 
    "TCP Query User{0BF0E67D-F043-4E5C-818D-7CC2E2F5A730}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | 
    "TCP Query User{0FA7701E-8A51-4DB8-A914-4F33CA38735D}C:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe | 
    "TCP Query User{15F5EB15-3FA4-4132-9782-62577DA38F4C}D:\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=6 | dir=in | app=d:\dungeon defenders\binaries\win32\dundefgame.exe | 
    "TCP Query User{1F1E2468-6F43-463C-B7DF-A74885ACEADC}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "TCP Query User{2D141D44-0266-4E9C-B5BA-E9B3635B56DE}C:\users\niko\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "TCP Query User{528468DE-63C1-4C46-926F-610BA30A4FB8}H:\niko\games\cod 4\iw3mp.exe" = protocol=6 | dir=in | app=h:\niko\games\cod 4\iw3mp.exe | 
    "TCP Query User{62B78DB4-9F2E-4FAE-9184-0547012FCA51}C:\users\niko\desktop\spiele\age of empires iii\age3.exe" = protocol=6 | dir=in | app=c:\users\niko\desktop\spiele\age of empires iii\age3.exe | 
    "TCP Query User{66F44A3E-CC2B-46C1-86F9-BF0DB25E809E}D:\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=d:\ea sports\fifa 11\game\fifa.exe | 
    "TCP Query User{67BEBAE5-308B-4BAD-B4F6-DD02F6CABF0A}D:\warcraft iii\war3.exe" = protocol=6 | dir=in | app=d:\warcraft iii\war3.exe | 
    "TCP Query User{768F1743-8A3D-4A99-9151-0348ECCCE650}C:\udk\udk-2010-12\binaries\win32\udkmobile.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udkmobile.exe | 
    "TCP Query User{8D930555-D4B5-4746-AF0D-436A33F4F9B6}C:\udk\udk-2010-12\binaries\win32\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udk.exe | 
    "TCP Query User{8FB59036-BB05-42F1-AB70-D36C44F1E9F5}D:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe | 
    "TCP Query User{AA4FC1BB-1774-4067-B3BD-2D9B9971F96A}D:\cod 4\iw3mp.exe" = protocol=6 | dir=in | app=d:\cod 4\iw3mp.exe | 
    "TCP Query User{BA1859B0-3B86-4AAA-84F4-DE98DF0353F6}C:\udk\udk-2010-12\binaries\win64\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win64\udk.exe | 
    "TCP Query User{C06D88C7-7BB6-4136-85F5-2F86936E7AC5}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "TCP Query User{C3FBA98B-F81C-45D3-8C1F-3A1456523985}D:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=d:\riot games\league of legends\lol.launcher.exe | 
    "TCP Query User{CD60F8D8-E7E9-48A7-B7DE-6D33F0144EE2}C:\program files (x86)\downvision\downvision.exe" = protocol=6 | dir=in | app=c:\program files (x86)\downvision\downvision.exe | 
    "TCP Query User{EAEB2744-7CA4-4873-8E79-57A1202371ED}C:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe | 
    "TCP Query User{EF2E7CA2-5F11-49AD-8388-88ED79B25840}D:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe" = protocol=6 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe | 
    "UDP Query User{0B2D151E-B918-401E-BB73-5F5BD4288AA9}C:\udk\udk-2010-12\binaries\win32\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udk.exe | 
    "UDP Query User{1F90139B-27D7-4DA7-8940-F3DFF90E6889}D:\cod 4\iw3mp.exe" = protocol=17 | dir=in | app=d:\cod 4\iw3mp.exe | 
    "UDP Query User{24220839-DB1C-45F4-97BD-118D43519D0B}C:\program files (x86)\downvision\downvision.exe" = protocol=17 | dir=in | app=c:\program files (x86)\downvision\downvision.exe | 
    "UDP Query User{333DAC06-5435-418C-9285-7D08953ABE5D}C:\udk\udk-2010-12\binaries\win32\udkmobile.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udkmobile.exe | 
    "UDP Query User{3DD6696C-E01F-4264-991E-DB3DA0B73B06}C:\users\niko\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "UDP Query User{3E33FA8B-BA18-447C-A0DC-DCF11FCBF86C}D:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe | 
    "UDP Query User{61786F16-952B-493B-9E96-76B1CE4E6750}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | 
    "UDP Query User{626CC131-8822-4C57-811B-9129D3E801E8}D:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=d:\riot games\league of legends\lol.launcher.exe | 
    "UDP Query User{64900DD6-2045-488B-9F38-99E5DC20B4AC}D:\warcraft iii\war3.exe" = protocol=17 | dir=in | app=d:\warcraft iii\war3.exe | 
    "UDP Query User{716FF5C0-CBC6-40C1-99BE-F89AF303D25E}D:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe" = protocol=17 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe | 
    "UDP Query User{90B1754C-3B79-4F48-95FD-04D372F7EFCD}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | 
    "UDP Query User{B1C7D67B-4CC2-4F55-A61E-E4220F37733B}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "UDP Query User{B3D81765-E331-4228-A682-0DEDF8500237}C:\udk\udk-2010-12\binaries\win64\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win64\udk.exe | 
    "UDP Query User{BA7695F4-07A6-47D5-81EF-6C0600ADF8E5}D:\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=17 | dir=in | app=d:\dungeon defenders\binaries\win32\dundefgame.exe | 
    "UDP Query User{D7FB0FCA-99E0-4C24-B81A-3B9E46C440EF}C:\users\niko\desktop\spiele\age of empires iii\age3.exe" = protocol=17 | dir=in | app=c:\users\niko\desktop\spiele\age of empires iii\age3.exe | 
    "UDP Query User{E529829E-018A-4962-B7BF-2EA7112DD815}D:\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=d:\ea sports\fifa 11\game\fifa.exe | 
    "UDP Query User{F23C1CA3-A99F-4813-9DA3-9C09B81FD15D}C:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe | 
    "UDP Query User{F4D3F1E5-DD99-4E39-93EA-569DA7DFC8F9}C:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe | 
    "UDP Query User{F6BCCC10-245C-4594-9472-4AF4219FFDBA}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "UDP Query User{F99A9C39-FE9F-469B-AA9A-475B7A70727C}H:\niko\games\cod 4\iw3mp.exe" = protocol=17 | dir=in | app=h:\niko\games\cod 4\iw3mp.exe | 
     
    ========== HKEY_LOCAL_MACHINE Uninstall List ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
    "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
    "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
    "{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
    "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
    "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
    "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
    "{26A24AE4-039D-4CA4-87B4-2F86417002FF}" = Java(TM) 7 Update 2 (64-bit)
    "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
    "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    "{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
    "{5E11C972-1E76-45FE-8F92-14E0D1140B1B}" = iTunes
    "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    "{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software 7.00
    "{6CC95B76-D380-46B2-9022-9353938E48BA}" = Logitech GamePanel Software 3.03.133
    "{6DD01FF3-63CE-436B-96DB-61363EAA4EB8}" = MobileMe Control Panel
    "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
    "{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
    "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    "{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
    "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
    "{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
    "{90140000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2010
    "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
    "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
    "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.4.28
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.2.23.3
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
    "{C71D49C0-11F5-11E0-B8FB-0013D3D69929}" = Vegas Pro 10.0 (64-bit)
    "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
    "{C9608300-11F5-11E0-A64B-0013D3D69929}" = MSVCRT Redists
    "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
    "{D1829BE5-F305-4576-9593-C66FC7E0B008}" = iCloud
    "{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
    "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
    "CCleaner" = CCleaner
    "DriverAgent.exe" = DriverAgent by eSupport.com
    "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
    "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
    "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
    "NVIDIA Drivers" = NVIDIA Drivers
    "sp6" = Logitech SetPoint 6.32
    "TeamSpeak 3 Client" = TeamSpeak 3 Client
    "UDK-01cc55ac-32de-4dbd-b2f2-2fa881c776e6" = Unreal Development Kit: 2010-12
    "WinRAR archiver" = WinRAR 4.00 (64-Bit)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{0A3A9522-EFA2-4C56-9138-101692C2A130}" = System Requirements Lab
    "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
    "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
    "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
    "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
    "{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
    "{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager
    "{29042B1C-0713-4575-B7CA-5C8E7B0899D4}" = MySQL Connector/ODBC 5.1
    "{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
    "{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
    "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
    "{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
    "{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
    "{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
    "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
    "{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
    "{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
    "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
    "{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
    "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
    "{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
    "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
    "{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser und SDK
    "{71929EC1-FDB2-4A67-AAAD-936E4539FA84}_is1" = Driver Sweeper 2.1.0
    "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
    "{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
    "{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
    "{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
    "{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
    "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    "{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
    "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8BBB5E4C-3F5E-4C07-BFBE-33B34600783A}" = LogMeIn Hamachi
    "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
    "{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
    "{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
    "{90140000-0015-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
    "{90140000-0016-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
    "{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
    "{90140000-0019-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
    "{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
    "{90140000-001B-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
    "{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
    "{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
    "{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
    "{90140000-001F-0410-0000-0000000FF1CE}_Office14.PROPLUS_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{594128C9-2CDF-43CE-8103-DC100CF013B6}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
    "{90140000-002C-0407-0000-0000000FF1CE}_Office14.PROPLUS_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
    "{90140000-0044-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
    "{90140000-006E-0407-0000-0000000FF1CE}_Office14.PROPLUS_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
    "{90140000-00A1-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
    "{90140000-00BA-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}" = REACTOR
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
    "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
    "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
    "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
    "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
    "{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe  1.4.136.1
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
    "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
    "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
    "{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Deutsch
    "{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
    "{B28B351F-1232-46EA-85EF-B8EA91641031}" = Nero 7 Essentials
    "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
    "{B48E264C-C8CD-4617-B0BE-46E977BAD694}" = ANNO 2070
    "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
    "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
    "{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
    "{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Die Sims™ 3
    "{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DA1B174B-4297-467C-9EF8-0AB8D4D5171E}" = Adobe After Effects CS5
    "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
    "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
    "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
    "{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
    "{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}" = Nexon Game Manager
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
    "{F1A14CB2-A048-45A6-AFDA-3571296E1D76}" = Creative Media Toolbox 6
    "{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
    "{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
    "{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "3DMIDI" = Creative 3DMIDI Player
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.5
    "Akamai" = Akamai NetSession Interface Service
    "ALchemy" = Creative ALchemy
    "AudioCS" = Creative Audio-Systemsteuerung
    "Avira AntiVir Desktop" = Avira Free Antivirus
    "AVMWLANCLI" = AVM FRITZ!WLAN
    "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
    "BandiMPEG1" = Bandisoft MPEG-1 Decoder
    "Black Prophecy_is1" = Black Prophecy
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
    "Console Launcher" = Creative Konsole Starter
    "Creative Software AutoUpdate" = Creative Software AutoUpdate
    "Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
    "Diagnostics 4_5" = Creative-Diagnose
    "Dolby Digital Live Pack" = Dolby Digital Live Pack
    "Driver Genius Professional Edition 2007_is1" = Driver Genius Professional Edition 2007
    "Driver Magician_is1" = Driver Magician 3.45
    "DTS Connect Pack" = DTS Connect Pack
    "Dungeon Defenders_is1" = Dungeon Defenders
    "ESET Online Scanner" = ESET Online Scanner v3
    "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
    "Fraps" = Fraps (remove only)
    "Game Booster_is1" = Game Booster 3
    "Gaming Mouse 3" = Gaming Mouse
    "InterBase" = InterBase 6.5
    "JDownloader" = JDownloader
    "LogMeIn Hamachi" = LogMeIn Hamachi
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.60.0.1800
    "Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
    "Mozilla Firefox 9.0.1 (x86 de)" = Mozilla Firefox 9.0.1 (x86 de)
    "NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
    "Office14.PROPLUS" = Microsoft Office Professional Plus 2010
    "OpenAL" = OpenAL
    "Origin" = Origin
    "pcsx2-r4600" = PCSX2 - Playstation 2 Emulator
    "PunkBusterSvc" = PunkBuster Services
    "Revo Uninstaller" = Revo Uninstaller 1.92
    "SFBM" = SoundFont-Bank-Manager
    "Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
    "Steam App 12220" = Grand Theft Auto: Episodes from Liberty City
    "Steam App 38830" = CrimeCraft GangWars
    "Steam App 42680" = Call of Duty: Modern Warfare 3
    "Steam App 42690" = Call of Duty: Modern Warfare 3 - Multiplayer
    "Steam App 42700" = Call of Duty: Black Ops
    "Steam App 42710" = Call of Duty: Black Ops - Multiplayer
    "Steam App 42720" = Call of Duty Black Ops - Remote Console
    "Steam App 42750" = Call of Duty: Modern Warfare 3 - Dedicated Server
    "TeamViewer 7" = TeamViewer 7
    "Uninstall_is1" = Uninstall 1.0.0.1
    "Uninstaller_B4736000_Creative Media Toolbox 6" = Creative Media Toolbox 6 (Shared Components)
    "uTorrentBar_DE Toolbar" = uTorrentBar_DE Toolbar
    "Vindictus EU" = Vindictus EU
    "Warcraft III" = Warcraft III
    "WaveStudio 7" = Creative WaveStudio 7
    "WinLiveSuite" = Windows Live Essentials
     
    ========== HKEY_CURRENT_USER Uninstall List ==========
     
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Akamai" = Akamai NetSession Interface
    "Warcraft III" = Warcraft III: All Products
     
    ========== Last 10 Event Log Errors ==========
     
    Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
     
    < End of report >
    mfg

  3. #33
    Moderator (global) Team-Mitglied Avatar von kira
    Registriert seit
    28.03.2006
    Ort
    Wien/Sprachen: Deutsch-Ungarisch
    Beiträge
    29.750

    AW: Internet ist nach lan sehr langsam

    1.
    Achtung wichtig!:
    Falls Du selber im Logfile Änderungen vorgenommen hast, musst Du durch die Originalbezeichnung ersetzen und so in Script einfügen! sonst funktioniert nicht!
    (Benutzerordner, dein Name oder sonstige Änderungen durch X, Stern oder andere Namen ersetzt)
    Fixen mit OTL
    • Starte die OTL.exe.
    • Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
    • Kopiere folgendes Skript (unverändert inkl. :OTL):
    Code:
    :OTL
    IE - HKLM\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    IE - HKCU\..\URLSearchHook: {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
    [2011.12.21 06:02:40 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
    [2011.03.24 22:01:13 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
    [2011.12.21 06:08:50 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
    O2 - BHO: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (uTorrentBar_DE Toolbar) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll (Conduit Ltd.)
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2003.05.19 14:23:50 | 000,049,152 | R--- | M] () - E:\autoplay.exe -- [ CDFS ]
    O32 - AutoRun File - [2003.02.12 09:01:48 | 000,000,050 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
    [2012.02.04 01:52:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
    [2012.02.04 01:52:31 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\Conduit
    [2012.02.04 01:52:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrentBar_DE
    [2012.02.04 16:24:59 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2012.02.04 15:42:26 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2011.09.28 15:05:00 | 000,000,544 | ---- | C] () -- C:\Users\Niko\AppData\Local\wise.fixer.torrent
    
    :Commands
    [purity]
    [emptytemp]
    • und füge es hier ein:
    • Schließe alle Programme.
    • Klicke auf den Fix Button.
    • Klick auf .
    • OTL verlangt einen Neustart. Bitte zulassen.
    • Nach dem Neustart findest Du ein Textdokument.
      Kopiere den Inhalt hier in Code-Tags in Deinen Thread.


    2.
    Öffne CCleaner - Anleitung CCleaner
    • "Cleaner"->"Analysieren"->Klick auf den Button "Start CCleaner"
    • "Registry""Fehler suchen"-> "Fehler beheben"->"Alle beheben"
    • Starte dein System neu auf


    3.
    Systemreinigung und Prüfung:
    Anleitung:-> Grundreinigung mit SUPERAntiSpyware

    4.
    ♦ Schon seit langem gehört "Worm.Win32.Autorun" zu den beliebtesten Verbreitungswegen von Viren, sollte man daher, die auf dem Speichermedium gesicherten Daten (wie USB-Stick/Festplatte und andere) zeitweise prüfen lassen
    ♦ Also schließe jetzt alle externe Datenträgeran Deinen Rechner an, dabei die Hochstell-Taste [Shift-Taste] gedrückt halten, damit die Autorun-Funktion nicht ausgeführt wird. (So verhindest Du die Ausführung der AUTORUN-Funktion) - Man kann die AUTORUN-Funktion aber auch generell abschalten.►Anleitung

    5.
    ESET Online Scanner
    Achtung!:
    Keinen andere Virenscanner auf Deinem PC installieren, sondern dein PC NUR online scannen!!!
    ♦ Prüfe Deinen Rechner jetzt, auf Viren, Trojaner, Würmer und anderen Schadcode, mit dem kostenlosen Online Virenscanner von:
    Eset/Nod32 bitte auswählen!!!-> Link und Anleitung zum ESET/NOD32 online Scanner-> Kostenlose Online Scanner
    ♦ Poste bitte das Protokoll

    6.
    erneut einen Scan mit OTL: - ältere Logdateien löschen!
    • Doppelklick auf die OTL.exe
    • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
    • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
    • Unter Extra Registry, wähle bitte Use SafeList
    • Klicke nun auf Run Scan links oben
    • Wenn der Scan beendet wurde werden 2 Logfiles erstellt - OTL.txt und extra.txt
    • Poste die Logfiles in Code-Tags hier in den Thread.


    ► berichte erneut über den Zustand des Computers. Ob noch Probleme auftreten, wenn ja, welche?
    Warnung!:
    Vorsicht bei Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einem Verschlüsselungs-Trojaner infiziert sein!
    Anhang nicht öffnen, in unserem Forum erst nachfragen!

    Bitte diese Warnung weitergeben, wo Du nur kannst!
    Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten!
    Bitte diese Warnung weitergeben, wo Du nur kannst!

  4. #34
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    Code:
    All processes killed
    ========== OTL ==========
    Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{c840e246-6b95-475e-9bd7-caa1c7eca9f2} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\ not found.
    File C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{c840e246-6b95-475e-9bd7-caa1c7eca9f2} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\ not found.
    File C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll not found.
    HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
    C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
    File C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll not found.
    C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml moved successfully.
    C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml moved successfully.
    C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml moved successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\ not found.
    File C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{c840e246-6b95-475e-9bd7-caa1c7eca9f2} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}\ not found.
    File C:\Program Files (x86)\uTorrentBar_DE\prxtbuTor.dll not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
    Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
    File move failed. E:\autoplay.exe scheduled to be moved on reboot.
    File move failed. E:\autorun.inf scheduled to be moved on reboot.
    C:\Program Files (x86)\Conduit\Community Alerts folder moved successfully.
    C:\Program Files (x86)\Conduit folder moved successfully.
    C:\Users\Niko\AppData\Local\Conduit folder moved successfully.
    Folder C:\Program Files (x86)\uTorrentBar_DE\ not found.
    C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
    C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
    C:\Users\Niko\AppData\Local\wise.fixer.torrent moved successfully.
    ========== COMMANDS ==========
     
    [EMPTYTEMP]
     
    User: All Users
     
    User: AppData
    ->Temp folder emptied: 0 bytes
     
    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 56468 bytes
     
    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes
     
    User: Niko
    ->Temp folder emptied: 41682190 bytes
    ->Temporary Internet Files folder emptied: 3711089 bytes
    ->Java cache emptied: 4651106 bytes
    ->FireFox cache emptied: 76152833 bytes
    ->Flash cache emptied: 57527 bytes
     
    User: Public
    ->Temp folder emptied: 0 bytes
     
    User: UpdatusUser
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 56468 bytes
     
    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 667648 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 1538588 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 41098 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
    RecycleBin emptied: 1165307280 bytes
     
    Total Files Cleaned = 1.234,00 mb
     
     
    OTL by OldTimer - Version 3.2.31.0 log created on 02142012_140605
    
    Files\Folders moved on Reboot...
    File move failed. E:\autoplay.exe scheduled to be moved on reboot.
    File move failed. E:\autorun.inf scheduled to be moved on reboot.
    File move failed. C:\Windows\SysNative\SET1578.tmp scheduled to be moved on reboot.
    File move failed. C:\Windows\SysNative\SET3DEE.tmp scheduled to be moved on reboot.
    File move failed. C:\Windows\SysNative\SET7963.tmp scheduled to be moved on reboot.
    File move failed. C:\Windows\SysNative\SETB13.tmp scheduled to be moved on reboot.
    
    Registry entries deleted on Reboot...

  5. #35
    Moderator (global) Team-Mitglied Avatar von kira
    Registriert seit
    28.03.2006
    Ort
    Wien/Sprachen: Deutsch-Ungarisch
    Beiträge
    29.750

    AW: Internet ist nach lan sehr langsam

    machst Du noch weiter?
    Warnung!:
    Vorsicht bei Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einem Verschlüsselungs-Trojaner infiziert sein!
    Anhang nicht öffnen, in unserem Forum erst nachfragen!

    Bitte diese Warnung weitergeben, wo Du nur kannst!
    Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten!
    Bitte diese Warnung weitergeben, wo Du nur kannst!

  6. #36
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    ja klar gleich folgt der rest
    ///
    Code:
    OTL Extras logfile created on: 17.02.2012 12:41:35 - Run 7
    OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Niko\Desktop
    64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
     
    7,75 Gb Total Physical Memory | 5,94 Gb Available Physical Memory | 76,69% Memory free
    15,68 Gb Paging File | 13,72 Gb Available in Paging File | 87,49% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 341,80 Gb Total Space | 155,71 Gb Free Space | 45,56% Space Free | Partition Type: NTFS
    Drive D: | 356,83 Gb Total Space | 208,12 Gb Free Space | 58,33% Space Free | Partition Type: NTFS
    Drive E: | 521,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
     
    Computer Name: NIKOS-PC | User Name: Niko | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Extra Registry (SafeList) ==========
     
     
    ========== File Associations ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .html[@ = ChromeHTML] -- Reg Error: Key error. File not found
    .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .html [@ = ChromeHTML] -- Reg Error: Key error. File not found
     
    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
     
    ========== Shell Spawning ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    http [open] -- Reg Error: Value error.
    https [open] -- Reg Error: Value error.
    inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
    InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
    InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    http [open] -- Reg Error: Value error.
    https [open] -- Reg Error: Value error.
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
     
    ========== Security Center Settings ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0
    "VistaSp1" = 9F 9E 16 8C DC 5B C8 01  [binary data]
    "VistaSp2" = 11 E6 B8 F3 50 7F CB 01  [binary data]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "oobe_av" = 1
     
    ========== System Restore Settings ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0
     
    ========== Firewall Settings ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
    "DoNotAllowExceptions" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
    "DoNotAllowExceptions" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0
     
    ========== Authorized Applications List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
    "D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
     
     
    ========== Vista Active Open Ports Exception List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{03F7F126-6C7A-4850-AA92-8C3A324B49D1}" = lport=137 | protocol=17 | dir=in | app=system | 
    "{0A9AAEC1-CE91-4E9E-B0C9-F4F133EBD009}" = rport=445 | protocol=6 | dir=out | app=system | 
    "{120294E4-0586-4A8D-B734-497A912217E9}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
    "{1C37C1E2-06B9-484F-89E6-FB4F500D8662}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
    "{3154C833-50FB-44D9-AE83-3D4068098465}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | 
    "{36FFCAA4-DC67-4ED9-B099-83900AF73F96}" = lport=8397 | protocol=6 | dir=in | name=league of legends launcher | 
    "{4214B9FC-3494-449D-A092-8E4B73270D32}" = lport=80 | protocol=17 | dir=in | name=fifa11 | 
    "{44CC6A59-F951-40D1-975F-5D750793D941}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | 
    "{452D62F3-8DCC-4E04-B3D2-5D4C6417118B}" = rport=138 | protocol=17 | dir=out | app=system | 
    "{47A5DB75-E6DD-45EC-9375-DFEB172EF147}" = lport=25565 | protocol=17 | dir=in | name=minecraft | 
    "{4AB63356-3E4A-43E4-9D8E-18079EE9D66B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
    "{523E7F47-A7C1-430B-AB03-3BAAF4F84823}" = rport=137 | protocol=17 | dir=out | app=system | 
    "{55942A7E-F132-4598-98C4-E0906E72F4A4}" = lport=138 | protocol=17 | dir=in | app=system | 
    "{5F5C19BD-FBBF-4EB1-AD08-0545D6FC8182}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
    "{67E4A1BD-7B53-4499-89A4-C19C7537C5F5}" = lport=25565 | protocol=6 | dir=in | name=minecraft | 
    "{6EAB5FD9-67A9-4ACF-ABA9-010BC66A0383}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | 
    "{77CBD5DF-CC16-4904-8777-266440E91F9D}" = lport=6932 | protocol=17 | dir=in | name=league of legends launcher | 
    "{83BEAD8C-B29C-4AC8-91A7-F09E083DFD51}" = lport=443 | protocol=6 | dir=in | name=fifa11 | 
    "{83D94A42-1D75-41AF-B1F3-9B4AFAE257CA}" = lport=445 | protocol=6 | dir=in | app=system | 
    "{92FCB172-A8D7-4EA1-B440-C6B80E981756}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | 
    "{93A21BF5-DBA5-435A-B383-D3615C5AB787}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
    "{9AD465E0-74FD-40CF-841E-F1C72C1A33E3}" = lport=6932 | protocol=6 | dir=in | name=league of legends launcher | 
    "{9E16A154-4B1B-4174-B807-C0DBE6CA658D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
    "{9EEA9633-9F71-4747-9097-D178A02FA956}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
    "{A190FDD7-5180-406D-B955-84168D7BB84E}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe | 
    "{A37D4D33-7515-46CF-BAA0-8A89BF06E423}" = lport=80 | protocol=6 | dir=in | name=fifa11 | 
    "{BA9786E2-AC4F-4A70-A768-EA7EE9BAAA01}" = rport=139 | protocol=6 | dir=out | app=system | 
    "{BD4497F4-FEA3-4DA7-9319-9BE50E5759C3}" = lport=3074 | protocol=17 | dir=in | name=blackops | 
    "{BE67DDD4-6D97-4AD3-AD67-210B16F43159}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
    "{BEB51B1E-1203-4D32-AA16-067209C96751}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
    "{C1469730-2E5C-4B6C-9B84-B6C5F0D53E0C}" = lport=443 | protocol=17 | dir=in | name=fifa11 | 
    "{C388F0FD-C19C-470A-85F1-3DE87613FF64}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
    "{DA84910F-81E0-4786-B050-A376F890ACB7}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface | 
    "{DE0A03E3-B024-4ACE-9587-E9210B235ADB}" = lport=49159 | protocol=6 | dir=in | name=akamai netsession interface | 
    "{EA231A29-298E-423F-8437-FCBCD53B8788}" = lport=30440 | protocol=6 | dir=in | name=fifa11 | 
    "{EAB807E6-268C-4446-B4AB-63CEC576DEBF}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe | 
    "{EAE19D63-30F7-4A77-AE0E-53C16B18F065}" = lport=139 | protocol=6 | dir=in | app=system | 
    "{EE872A4C-4DA7-49B2-959D-2619E398A8A9}" = lport=30440 | protocol=17 | dir=in | name=fifa11 | 
    "{F5BF98A2-0E97-4D62-9421-8D6720E30CC7}" = lport=3074 | protocol=6 | dir=in | name=blackops | 
    "{FE4593B4-5054-4A4B-A677-1B0288AE3843}" = lport=8397 | protocol=17 | dir=in | name=league of legends launcher | 
     
    ========== Vista Active Application Exception List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{0144A5CC-760F-4F24-80C7-AE90D5E1847C}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\anno5.exe | 
    "{04C1B735-4AE2-4133-A960-E0BFEBE00C03}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
    "{059996FA-B1F8-44F3-96A4-BA9FB3B2F44C}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{05B21059-2F70-4C34-B7E1-C6D44DA59558}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{0A5D3597-E353-4276-A392-7D52D0EAC31B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
    "{0A9A8D05-F203-4486-9F77-FC4F65F6DFD2}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
    "{0D330334-CD47-4743-9952-799840499A82}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\launcher\apblauncher.exe | 
    "{0ED532D1-12AD-4687-9D03-E9448877E5C7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\launcheflc.exe | 
    "{150B07DE-F980-4692-8246-515F1BA22745}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
    "{1550B4EB-3D70-4A41-8D6F-0EFF4E982EF7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe | 
    "{18344CAB-632A-4CFB-A2FD-9C113107F58E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops rcon\blackopsrcon.exe | 
    "{1D09C62E-D8B4-4F02-A2DD-F2FF0B833007}" = protocol=6 | dir=in | app=d:\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe | 
    "{1DA6F1F6-1554-460E-A1D4-41709292A06B}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe | 
    "{1F22AA96-2B48-41E6-9D10-62266683E8B4}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
    "{208D11E7-87FB-447D-AE03-0219F5717322}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackopsmp.exe | 
    "{2654A105-E2E4-43ED-8350-EA2BE48CD2E0}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\autopatcher.exe | 
    "{27E293AA-ED46-4CE9-9F5D-1A779F465ACE}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{2842696D-37F0-447E-A6DD-043644EBA2FB}" = protocol=6 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe | 
    "{2ABA5F09-1ECC-40F1-9726-99B9B5E8806C}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{2CB8C62D-E0F5-49AC-B1AE-FCBDDB0828F1}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{2DC8856D-DAB5-4A59-8A3E-D7D107C6B598}" = protocol=6 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "{3151B27F-2C7F-42ED-BA12-CD577AB76990}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{3274DC5F-BE35-4CEA-9E11-B109816428B2}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | 
    "{3453ED22-89BE-48BF-9C16-454EACF13A01}" = protocol=6 | dir=in | app=d:\world of warcraft\launcher.exe | 
    "{346FDC88-D70F-4C70-8A76-0B621754EE9E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crimecraft\steamlauncher.exe | 
    "{3500AC15-7670-4179-B5C8-7CB9167ECBBD}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackopsmp.exe | 
    "{35FAB586-E4D8-44FA-BEEB-384334176F9D}" = protocol=17 | dir=in | app=d:\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe | 
    "{3C48325C-10F2-497E-B040-D4E36C77974C}" = protocol=17 | dir=in | app=d:\world of warcraft\launcher.exe | 
    "{432BAB11-0843-4981-9B1F-32B3DE747337}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\patcher.exe | 
    "{43D6B577-12DB-49A5-9D64-FF6623DF4A64}" = protocol=6 | dir=in | app=d:\steam\steam.exe | 
    "{443D904E-DBDF-4B10-BC3E-227D0316E85D}" = protocol=17 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe | 
    "{48D49C3F-1961-46D0-A1E8-47CC21464CFA}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\initengine.exe | 
    "{4D95027F-D204-478D-BA09-BCA9AB86B175}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
    "{5079E466-505F-47C1-B5C3-EF285AF824B3}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{511015CC-2AAE-4A13-912B-ED7A96856A04}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\anno5.exe | 
    "{51658FB6-A69C-40C5-9743-2B85C65D099A}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{51D28EA1-12FF-42C9-9022-E606B79772C6}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
    "{537F3A45-ACB0-4BC0-8E97-C779AE2C61F8}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe | 
    "{5AC86B4D-FBAC-42D2-9664-51F1A996C403}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{5CF07E82-746F-4361-A0C3-ECA771A006E7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crimecraft\steamlauncher.exe | 
    "{5DE3FBCD-C316-475D-A132-54D72AE15CDE}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{5EBCD7DD-3785-492C-AD3A-BB38A759734D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\launcheflc.exe | 
    "{6049F676-7420-4E89-BFB6-C6B8281279E7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe | 
    "{6255B760-E9E9-4260-86E0-05CC78D1634A}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | 
    "{64DCB906-02A0-4BA0-875B-95772CBFC2A2}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
    "{65CECB28-FF8D-455C-AE07-E77419C4BC8B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
    "{66D2AC09-A51F-4356-B80A-38DE3A12FA05}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | 
    "{6978EF8E-A2C9-4E3E-B1DC-B5F7BCD5AAE8}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\launcher.exe | 
    "{6CB18CCE-B263-4A83-BA71-4FD7BB07F90C}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{6E28A095-258A-44A7-9A62-3F6008A864A3}" = protocol=17 | dir=in | app=d:\ubisoft\related designs\anno 2070\initengine.exe | 
    "{6E889338-859F-464B-B7F1-59D7BF667648}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe | 
    "{72088DCA-06F2-4442-9EB9-49C6B5F703F4}" = protocol=6 | dir=in | app=d:\ubisoft\related designs\anno 2070\autopatcher.exe | 
    "{72ECE5B8-7D55-4F38-ADDB-7AB2B3439CEA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
    "{7655BE35-735C-4E2E-882D-94ABF666D2C4}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\vivoxvoiceservice.exe | 
    "{77ED0B08-FB68-4399-BEE2-AD8AEC5459B3}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{7AC065CD-22E9-4AE0-BB7C-1CB3DD43443F}" = protocol=6 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\nmservice.exe | 
    "{7DDB0E2E-8B91-4936-B9FF-2AF8C085220A}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{7E34F102-F947-4BC5-B089-764CE8F3AA37}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
    "{7E91A941-9BDA-4E35-8E40-CE5FB98F0910}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\blackprophecy.exe | 
    "{7EBC4CDF-64D1-4C99-8FF1-A72B359E00CE}" = protocol=17 | dir=in | app=d:\steam\steam.exe | 
    "{814A781A-BB51-4403-B583-98F887732B34}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{8A05421E-47A7-45A6-97A1-6BFE1E5FA859}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{8BD11E06-1504-4843-9292-8B8E216F5818}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{8DBCAAA8-65E1-4DA2-8F39-907F09922CC7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
    "{9482000B-8AD6-4FB9-A8B0-CE7A9410DA62}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe | 
    "{967826D4-E6B5-4844-8F45-715A15AFC119}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops rcon\blackopsrcon.exe | 
    "{992FC1FE-2E1B-440A-9D72-2BBC8284141D}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
    "{99FA4AF6-06EE-4204-BCA4-00E2039AC8B4}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | 
    "{9B589D77-DBB1-4971-A599-6BF24CAF97C5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
    "{A018741A-B45B-4AB6-B9C0-A45C85EFDA38}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackops.exe | 
    "{AB36F5BF-2C19-474F-8595-2E3A34F4587C}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
    "{AC8DDB7B-53A8-498F-A47E-3CC409AE91BE}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | 
    "{AD880693-A0D8-4D33-9C23-8C9C35197B0E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
    "{B16F9D57-1AF7-4724-BFCA-6D03E821F070}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{B1DA150B-7BA1-4424-A667-B7F32B4B3ACD}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
    "{B4D8B7B2-9182-4F1D-BE53-8C3BEF608E97}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{B7B26754-9014-4CE3-A2C8-C64F0E8366DC}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | 
    "{B94ACABC-85B3-43A3-894C-9DE9790D9A22}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
    "{BE1DC172-C238-40B7-B614-9BCBA89732C5}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
    "{C643D8D8-A987-4C36-AC0E-7DD35488ECFD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
    "{CAE6A38F-03A9-4909-8DFC-3730CFFD7028}" = protocol=17 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "{CCD1E449-299A-4D82-95FF-185EC02A0E12}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
    "{CE22DDA6-51B9-41E3-8F70-556FE777D7CE}" = protocol=17 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\nmservice.exe | 
    "{D1F49F3E-37B4-489E-A9EA-BE8603A1C6AD}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\blackprophecy.exe | 
    "{D92FE0DA-0FAD-42A9-AD93-2D2329A3E7D8}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{DA17D6B6-C36D-47CB-9E4F-EFD45C6CF8BB}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | 
    "{DC41BD13-F8CE-42B1-B909-7D4C238EB947}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.6\icq.exe | 
    "{E04F1B91-D65F-4806-BB19-EB0D19DD77B4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\apb reloaded\binaries\apb.exe | 
    "{E05E04B4-080E-416A-AC3B-5692DDF0505C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe | 
    "{E0C9CDDA-69AE-467C-BE01-F9A9D07EB752}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{E23356BB-01EC-47D8-B0E4-0E5C297DB00C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe | 
    "{E3365EF3-7D2B-49D9-AB1C-4F24BA6FDEE3}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
    "{E532A1E1-141C-4AD7-A715-D8C01DC54E78}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | 
    "{E6016D22-E7D4-49CD-A139-2A5A71590C83}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe | 
    "{E790C3A7-7E29-4D17-92F9-60ABE1D2C1BB}" = protocol=6 | dir=in | app=d:\gamigo\black prophecy\bin\win32\launcher.exe | 
    "{F1B13E73-3252-4404-A6C1-4EF49254F0E8}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | 
    "{F7A47EF1-4E39-408E-B94B-8401025B4A88}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\call of duty black ops\blackops.exe | 
    "{F9574579-F760-4C79-A119-DB9DBED01B36}" = protocol=17 | dir=in | app=d:\gamigo\black prophecy\bin\win32\patcher.exe | 
    "TCP Query User{002FB05E-DDA3-48BA-9DBE-641D790CD6D1}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | 
    "TCP Query User{0BF0E67D-F043-4E5C-818D-7CC2E2F5A730}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | 
    "TCP Query User{0FA7701E-8A51-4DB8-A914-4F33CA38735D}C:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe | 
    "TCP Query User{15F5EB15-3FA4-4132-9782-62577DA38F4C}D:\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=6 | dir=in | app=d:\dungeon defenders\binaries\win32\dundefgame.exe | 
    "TCP Query User{1F1E2468-6F43-463C-B7DF-A74885ACEADC}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "TCP Query User{2D141D44-0266-4E9C-B5BA-E9B3635B56DE}C:\users\niko\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "TCP Query User{528468DE-63C1-4C46-926F-610BA30A4FB8}H:\niko\games\cod 4\iw3mp.exe" = protocol=6 | dir=in | app=h:\niko\games\cod 4\iw3mp.exe | 
    "TCP Query User{62B78DB4-9F2E-4FAE-9184-0547012FCA51}C:\users\niko\desktop\spiele\age of empires iii\age3.exe" = protocol=6 | dir=in | app=c:\users\niko\desktop\spiele\age of empires iii\age3.exe | 
    "TCP Query User{66F44A3E-CC2B-46C1-86F9-BF0DB25E809E}D:\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=d:\ea sports\fifa 11\game\fifa.exe | 
    "TCP Query User{67BEBAE5-308B-4BAD-B4F6-DD02F6CABF0A}D:\warcraft iii\war3.exe" = protocol=6 | dir=in | app=d:\warcraft iii\war3.exe | 
    "TCP Query User{768F1743-8A3D-4A99-9151-0348ECCCE650}C:\udk\udk-2010-12\binaries\win32\udkmobile.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udkmobile.exe | 
    "TCP Query User{8D930555-D4B5-4746-AF0D-436A33F4F9B6}C:\udk\udk-2010-12\binaries\win32\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udk.exe | 
    "TCP Query User{8FB59036-BB05-42F1-AB70-D36C44F1E9F5}D:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe | 
    "TCP Query User{A98ABAD2-33CB-4F2B-B5C2-3B17614FF47B}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
    "TCP Query User{AA4FC1BB-1774-4067-B3BD-2D9B9971F96A}D:\cod 4\iw3mp.exe" = protocol=6 | dir=in | app=d:\cod 4\iw3mp.exe | 
    "TCP Query User{BA1859B0-3B86-4AAA-84F4-DE98DF0353F6}C:\udk\udk-2010-12\binaries\win64\udk.exe" = protocol=6 | dir=in | app=c:\udk\udk-2010-12\binaries\win64\udk.exe | 
    "TCP Query User{C06D88C7-7BB6-4136-85F5-2F86936E7AC5}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "TCP Query User{C3FBA98B-F81C-45D3-8C1F-3A1456523985}D:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=d:\riot games\league of legends\lol.launcher.exe | 
    "TCP Query User{CD60F8D8-E7E9-48A7-B7DE-6D33F0144EE2}C:\program files (x86)\downvision\downvision.exe" = protocol=6 | dir=in | app=c:\program files (x86)\downvision\downvision.exe | 
    "TCP Query User{EAEB2744-7CA4-4873-8E79-57A1202371ED}C:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe | 
    "TCP Query User{EF2E7CA2-5F11-49AD-8388-88ED79B25840}D:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe" = protocol=6 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe | 
    "UDP Query User{0B2D151E-B918-401E-BB73-5F5BD4288AA9}C:\udk\udk-2010-12\binaries\win32\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udk.exe | 
    "UDP Query User{1F90139B-27D7-4DA7-8940-F3DFF90E6889}D:\cod 4\iw3mp.exe" = protocol=17 | dir=in | app=d:\cod 4\iw3mp.exe | 
    "UDP Query User{24220839-DB1C-45F4-97BD-118D43519D0B}C:\program files (x86)\downvision\downvision.exe" = protocol=17 | dir=in | app=c:\program files (x86)\downvision\downvision.exe | 
    "UDP Query User{333DAC06-5435-418C-9285-7D08953ABE5D}C:\udk\udk-2010-12\binaries\win32\udkmobile.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win32\udkmobile.exe | 
    "UDP Query User{3DD6696C-E01F-4264-991E-DB3DA0B73B06}C:\users\niko\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\niko\appdata\local\akamai\netsession_win.exe | 
    "UDP Query User{3E33FA8B-BA18-447C-A0DC-DCF11FCBF86C}D:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crimecraft\binaries\crimecraft.exe | 
    "UDP Query User{61786F16-952B-493B-9E96-76B1CE4E6750}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | 
    "UDP Query User{626CC131-8822-4C57-811B-9129D3E801E8}D:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=d:\riot games\league of legends\lol.launcher.exe | 
    "UDP Query User{64900DD6-2045-488B-9F38-99E5DC20B4AC}D:\warcraft iii\war3.exe" = protocol=17 | dir=in | app=d:\warcraft iii\war3.exe | 
    "UDP Query User{716FF5C0-CBC6-40C1-99BE-F89AF303D25E}D:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe" = protocol=17 | dir=in | app=d:\nexon\vindictus\vindictus eu\en-eu\vindictus.exe | 
    "UDP Query User{90B1754C-3B79-4F48-95FD-04D372F7EFCD}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | 
    "UDP Query User{B1C7D67B-4CC2-4F55-A61E-E4220F37733B}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "UDP Query User{B3D81765-E331-4228-A682-0DEDF8500237}C:\udk\udk-2010-12\binaries\win64\udk.exe" = protocol=17 | dir=in | app=c:\udk\udk-2010-12\binaries\win64\udk.exe | 
    "UDP Query User{BA7695F4-07A6-47D5-81EF-6C0600ADF8E5}D:\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=17 | dir=in | app=d:\dungeon defenders\binaries\win32\dundefgame.exe | 
    "UDP Query User{D7FB0FCA-99E0-4C24-B81A-3B9E46C440EF}C:\users\niko\desktop\spiele\age of empires iii\age3.exe" = protocol=17 | dir=in | app=c:\users\niko\desktop\spiele\age of empires iii\age3.exe | 
    "UDP Query User{E529829E-018A-4962-B7BF-2EA7112DD815}D:\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=d:\ea sports\fifa 11\game\fifa.exe | 
    "UDP Query User{ECE4CE94-4E44-4F58-B20E-CE8BED1BC733}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
    "UDP Query User{F23C1CA3-A99F-4813-9DA3-9C09B81FD15D}C:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\users\niko\desktop\spiele\borderlands\borderlands\binaries\borderlands.exe | 
    "UDP Query User{F4D3F1E5-DD99-4E39-93EA-569DA7DFC8F9}C:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2 digital deluxe edition\bfbc2game.exe | 
    "UDP Query User{F6BCCC10-245C-4594-9472-4AF4219FFDBA}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
    "UDP Query User{F99A9C39-FE9F-469B-AA9A-475B7A70727C}H:\niko\games\cod 4\iw3mp.exe" = protocol=17 | dir=in | app=h:\niko\games\cod 4\iw3mp.exe | 
     
    ========== HKEY_LOCAL_MACHINE Uninstall List ==========
     
    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
    "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
    "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
    "{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
    "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
    "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
    "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
    "{26A24AE4-039D-4CA4-87B4-2F86417002FF}" = Java(TM) 7 Update 2 (64-bit)
    "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
    "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    "{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
    "{5E11C972-1E76-45FE-8F92-14E0D1140B1B}" = iTunes
    "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    "{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software 7.00
    "{6CC95B76-D380-46B2-9022-9353938E48BA}" = Logitech GamePanel Software 3.03.133
    "{6DD01FF3-63CE-436B-96DB-61363EAA4EB8}" = MobileMe Control Panel
    "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
    "{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
    "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    "{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
    "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
    "{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
    "{90140000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2010
    "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
    "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
    "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 280.26
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.4.28
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.2.23.3
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
    "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
    "{C71D49C0-11F5-11E0-B8FB-0013D3D69929}" = Vegas Pro 10.0 (64-bit)
    "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
    "{C9608300-11F5-11E0-A64B-0013D3D69929}" = MSVCRT Redists
    "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
    "{D1829BE5-F305-4576-9593-C66FC7E0B008}" = iCloud
    "{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
    "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
    "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
    "CCleaner" = CCleaner
    "DriverAgent.exe" = DriverAgent by eSupport.com
    "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
    "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
    "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
    "NVIDIA Drivers" = NVIDIA Drivers
    "sp6" = Logitech SetPoint 6.32
    "TeamSpeak 3 Client" = TeamSpeak 3 Client
    "UDK-01cc55ac-32de-4dbd-b2f2-2fa881c776e6" = Unreal Development Kit: 2010-12
    "WinRAR archiver" = WinRAR 4.00 (64-Bit)
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{0A3A9522-EFA2-4C56-9138-101692C2A130}" = System Requirements Lab
    "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
    "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
    "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
    "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
    "{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
    "{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
    "{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager
    "{29042B1C-0713-4575-B7CA-5C8E7B0899D4}" = MySQL Connector/ODBC 5.1
    "{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
    "{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
    "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
    "{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
    "{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
    "{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
    "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
    "{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
    "{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
    "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
    "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
    "{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
    "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
    "{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser und SDK
    "{71929EC1-FDB2-4A67-AAAD-936E4539FA84}_is1" = Driver Sweeper 2.1.0
    "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
    "{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
    "{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
    "{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
    "{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
    "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    "{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
    "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8BBB5E4C-3F5E-4C07-BFBE-33B34600783A}" = LogMeIn Hamachi
    "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
    "{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
    "{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
    "{90140000-0015-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
    "{90140000-0016-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
    "{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
    "{90140000-0019-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
    "{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
    "{90140000-001B-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
    "{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
    "{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
    "{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
    "{90140000-001F-0410-0000-0000000FF1CE}_Office14.PROPLUS_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{594128C9-2CDF-43CE-8103-DC100CF013B6}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
    "{90140000-002C-0407-0000-0000000FF1CE}_Office14.PROPLUS_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
    "{90140000-0044-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
    "{90140000-006E-0407-0000-0000000FF1CE}_Office14.PROPLUS_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
    "{90140000-00A1-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
    "{90140000-00BA-0407-0000-0000000FF1CE}_Office14.PROPLUS_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}" = REACTOR
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
    "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
    "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
    "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
    "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
    "{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe  1.4.136.1
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
    "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
    "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
    "{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Deutsch
    "{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
    "{B28B351F-1232-46EA-85EF-B8EA91641031}" = Nero 7 Essentials
    "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
    "{B48E264C-C8CD-4617-B0BE-46E977BAD694}" = ANNO 2070
    "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
    "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
    "{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
    "{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Die Sims™ 3
    "{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DA1B174B-4297-467C-9EF8-0AB8D4D5171E}" = Adobe After Effects CS5
    "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
    "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
    "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
    "{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
    "{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}" = Nexon Game Manager
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
    "{F1A14CB2-A048-45A6-AFDA-3571296E1D76}" = Creative Media Toolbox 6
    "{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
    "{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
    "{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "3DMIDI" = Creative 3DMIDI Player
    "Adobe AIR" = Adobe AIR
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.5
    "Akamai" = Akamai NetSession Interface Service
    "ALchemy" = Creative ALchemy
    "AudioCS" = Creative Audio-Systemsteuerung
    "Avira AntiVir Desktop" = Avira Free Antivirus
    "AVMWLANCLI" = AVM FRITZ!WLAN
    "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
    "BandiMPEG1" = Bandisoft MPEG-1 Decoder
    "Black Prophecy_is1" = Black Prophecy
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
    "Console Launcher" = Creative Konsole Starter
    "Creative Software AutoUpdate" = Creative Software AutoUpdate
    "Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
    "DAEMON Tools Lite" = DAEMON Tools Lite
    "Diagnostics 4_5" = Creative-Diagnose
    "Dolby Digital Live Pack" = Dolby Digital Live Pack
    "Driver Genius Professional Edition 2007_is1" = Driver Genius Professional Edition 2007
    "Driver Magician_is1" = Driver Magician 3.45
    "DTS Connect Pack" = DTS Connect Pack
    "Dungeon Defenders_is1" = Dungeon Defenders
    "ESET Online Scanner" = ESET Online Scanner v3
    "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
    "Fraps" = Fraps (remove only)
    "Game Booster_is1" = Game Booster 3
    "Gaming Mouse 3" = Gaming Mouse
    "InterBase" = InterBase 6.5
    "JDownloader" = JDownloader
    "LogMeIn Hamachi" = LogMeIn Hamachi
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.60.0.1800
    "Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
    "Mozilla Firefox 10.0.1 (x86 de)" = Mozilla Firefox 10.0.1 (x86 de)
    "NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
    "Office14.PROPLUS" = Microsoft Office Professional Plus 2010
    "OpenAL" = OpenAL
    "Origin" = Origin
    "pcsx2-r4600" = PCSX2 - Playstation 2 Emulator
    "PunkBusterSvc" = PunkBuster Services
    "Revo Uninstaller" = Revo Uninstaller 1.92
    "SFBM" = SoundFont-Bank-Manager
    "Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
    "Steam App 12220" = Grand Theft Auto: Episodes from Liberty City
    "Steam App 38830" = CrimeCraft GangWars
    "Steam App 42680" = Call of Duty: Modern Warfare 3
    "Steam App 42690" = Call of Duty: Modern Warfare 3 - Multiplayer
    "Steam App 42700" = Call of Duty: Black Ops
    "Steam App 42710" = Call of Duty: Black Ops - Multiplayer
    "Steam App 42720" = Call of Duty Black Ops - Remote Console
    "Steam App 42750" = Call of Duty: Modern Warfare 3 - Dedicated Server
    "TeamViewer 7" = TeamViewer 7
    "Uninstall_is1" = Uninstall 1.0.0.1
    "Uninstaller_B4736000_Creative Media Toolbox 6" = Creative Media Toolbox 6 (Shared Components)
    "Vindictus EU" = Vindictus EU
    "Warcraft III" = Warcraft III
    "WaveStudio 7" = Creative WaveStudio 7
    "WinLiveSuite" = Windows Live Essentials
     
    ========== HKEY_CURRENT_USER Uninstall List ==========
     
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Akamai" = Akamai NetSession Interface
    "Warcraft III" = Warcraft III: All Products
     
    ========== Last 10 Event Log Errors ==========
     
    Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
     
    < End of report >
    Code:
    OTL logfile created on: 17.02.2012 12:41:35 - Run 7
    OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Niko\Desktop
    64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
     
    7,75 Gb Total Physical Memory | 5,94 Gb Available Physical Memory | 76,69% Memory free
    15,68 Gb Paging File | 13,72 Gb Available in Paging File | 87,49% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 341,80 Gb Total Space | 155,71 Gb Free Space | 45,56% Space Free | Partition Type: NTFS
    Drive D: | 356,83 Gb Total Space | 208,12 Gb Free Space | 58,33% Space Free | Partition Type: NTFS
    Drive E: | 521,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
     
    Computer Name: NIKOS-PC | User Name: Niko | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    PRC - C:\Users\Niko\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
    PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    PRC - C:\Windows\SysWOW64\Ctxfihlp.exe (Creative Technology Ltd)
    PRC - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    PRC - C:\Gaming Mouse\Gaming Mouse.exe ()
    PRC - C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    PRC - C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf ()
    MOD - C:\Gaming Mouse\Gaming Mouse.exe ()
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV:64bit: - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
    SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
    SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_7de0ed9.dll ()
    SRV - (TeamViewer7) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
    SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
    SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
    SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
    SRV - (LBTServ) -- C:\Programme\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
    SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
    SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
    SRV - (Creative Media Toolbox 6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe (Creative Labs)
    SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs)
    SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs)
    SRV - (npggsvc) -- C:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.)
    SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
    SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    SRV - (CTAudSvcService) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
    SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
    SRV - (SBSDWSCService) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
    SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
    SRV - (InterBaseServer) -- C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation)
    SRV - (InterBaseGuardian) -- C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys (Duplex Secure Ltd.)
    DRV:64bit: - (avipbb) -- C:\Windows\SysNative\DRIVERS\avipbb.sys (Avira GmbH)
    DRV:64bit: - (LGVirHid) -- C:\Windows\SysNative\drivers\LGVirHid.sys (Logitech Inc.)
    DRV:64bit: - (JRAID) -- C:\Windows\SysNative\DRIVERS\jraid.sys (JMicron Technology Corp.)
    DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\DRIVERS\avgntflt.sys (Avira GmbH)
    DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\DRIVERS\avkmgr.sys (Avira GmbH)
    DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek                                            )
    DRV:64bit: - (atksgt) -- C:\Windows\SysNative\DRIVERS\atksgt.sys ()
    DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\DRIVERS\lirsgt.sys ()
    DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
    DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.)
    DRV:64bit: - (Gun) -- C:\Windows\SysNative\Gun64.sys ()
    DRV:64bit: - (tapoas) -- C:\Windows\SysNative\DRIVERS\tapoas.sys (The OpenVPN Project)
    DRV:64bit: - (ha20x22k) -- C:\Windows\SysNative\drivers\ha20x22k.sys (Creative Technology Ltd)
    DRV:64bit: - (ha20x2k) -- C:\Windows\SysNative\drivers\ha20x2k.sys (Creative Technology Ltd)
    DRV:64bit: - (emupia) -- C:\Windows\SysNative\drivers\emupia2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctsfm2k) -- C:\Windows\SysNative\drivers\ctsfm2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctprxy2k) -- C:\Windows\SysNative\drivers\ctprxy2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ossrv) -- C:\Windows\SysNative\drivers\ctoss2k.sys (Creative Technology Ltd.)
    DRV:64bit: - (ctaud2k) Creative Audio Driver (WDM) -- C:\Windows\SysNative\drivers\ctaud2k.sys (Creative Technology Ltd)
    DRV:64bit: - (ctac32k) -- C:\Windows\SysNative\drivers\ctac32k.sys (Creative Technology Ltd)
    DRV:64bit: - (CTEXFIFX.SYS) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTEXFIFX) -- C:\Windows\SysNative\drivers\CTEXFIFX.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT.SYS) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CTHWIUT) -- C:\Windows\SysNative\drivers\CTHWIUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT.SYS) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (CT20XUT) -- C:\Windows\SysNative\drivers\CT20XUT.SYS (Creative Technology Ltd.)
    DRV:64bit: - (ScreamBAudioSvc) -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys (Screaming Bee LLC)
    DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
    DRV:64bit: - (LGBusEnum) -- C:\Windows\SysNative\drivers\LGBusEnum.sys (Logitech Inc.)
    DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
    DRV:64bit: - (RMCAST) RMCAST (Pgm) -- C:\Windows\SysNative\DRIVERS\RMCAST.sys (Microsoft Corporation)
    DRV:64bit: - (hamachi) -- C:\Windows\SysNative\DRIVERS\hamachi.sys (LogMeIn, Inc.)
    DRV:64bit: - (FWLANUSB) -- C:\Windows\SysNative\DRIVERS\fwlanusb.sys (AVM GmbH)
    DRV:64bit: - (avmeject) -- C:\Windows\SysNative\drivers\avmeject.sys (AVM Berlin)
    DRV - (DrvAgent64) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS (Phoenix Technologies)
    DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    DRV - (NPPTNT2) -- C:\Windows\SysWow64\npptNT2.sys (INCA Internet Co., Ltd.)
    DRV - (Asushwio) -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS ()
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.startup.homepage: "Google.de"
     
     
    FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.2.1: C:\Windows\system32\npDeployJava1.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.2.0: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.02.12 17:25:19 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.01.25 17:57:52 | 000,000,000 | ---D | M]
     
    [2012.01.26 21:12:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions
    [2011.02.13 16:14:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Extensions\net.openvpn.client
    [2012.02.04 01:52:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions
    [2012.02.04 01:52:34 | 000,000,000 | ---D | M] (uTorrentBar_DE Community Toolbar) -- C:\Users\Niko\AppData\Roaming\mozilla\Firefox\Profiles\t7bh0y7z.default\extensions\{c840e246-6b95-475e-9bd7-caa1c7eca9f2}
    [2012.02.13 17:25:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
    [2012.02.13 17:25:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
    () (No name found) -- C:\USERS\NIKO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\T7BH0Y7Z.DEFAULT\EXTENSIONS\ADBLOCKPOPUPS@JESSEHAKANEN.NET.XPI
    [2012.02.12 17:25:19 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
    [2012.02.13 17:25:29 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
    [2010.07.27 15:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll
    [2012.02.12 17:25:16 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
    [2011.09.28 14:58:19 | 000,002,288 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
    [2012.02.12 17:25:16 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
    [2012.02.12 17:25:16 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
    [2012.02.12 17:25:16 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
     
    ========== Chrome  ==========
     
     
    O1 HOSTS File: ([2011.04.23 20:09:42 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
    O1 - Hosts: 127.0.0.1       localhost
    O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C840E246-6B95-475E-9BD7-CAA1C7ECA9F2} - No CLSID value found.
    O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
    O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin)
    O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd)
    O4 - HKLM..\Run: [Gaming Mouse] C:\Gaming Mouse\Gaming Mouse.exe ()
    O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Niko\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    O4 - HKCU..\Run: [bluebirds] C:\Users\Niko\Bluebirds\BlueBirds.exe (LG Electronics)
    O4 - HKCU..\Run: [CtxfiReg] C:\Windows\SysWow64\CTxfiReg.exe (Creative Technology Ltd)
    O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 File not found
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
    O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 File not found
    O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
    O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
    O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.0)
    O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02)
    O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
    O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2)
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/15118/CTPID.cab (Creative Software AutoUpdate Support Package)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7A9A9B0-3A9B-43EA-862A-E7823F07C035}: DhcpNameServer = 192.168.2.1
    O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
    O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
    O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Niko\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
    O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
    O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2003.05.19 14:23:50 | 000,049,152 | R--- | M] () - E:\autoplay.exe -- [ CDFS ]
    O32 - AutoRun File - [2003.02.12 09:01:48 | 000,000,050 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2012.02.15 15:01:04 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
    [2012.02.15 15:01:04 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
    [2012.02.15 15:01:02 | 002,308,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
    [2012.02.15 15:01:02 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
    [2012.02.15 15:01:01 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
    [2012.02.15 15:01:01 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
    [2012.02.15 15:01:01 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
    [2012.02.15 15:01:01 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
    [2012.02.15 15:01:01 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
    [2012.02.15 15:01:00 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
    [2012.02.15 15:01:00 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
    [2012.02.15 14:26:17 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
    [2012.02.14 18:22:04 | 003,587,688 | ---- | C] (Piriform Ltd) -- C:\Users\Niko\Desktop\ccsetup315.exe
    [2012.02.13 17:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
    [2012.02.13 17:25:38 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
    [2012.02.13 17:25:38 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
    [2012.02.13 17:25:38 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
    [2012.02.12 14:28:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
    [2012.02.12 14:28:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
    [2012.02.12 14:27:48 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
    [2012.02.04 18:48:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
    [2012.02.04 14:50:58 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 14:50:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
    [2012.02.04 09:31:00 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\{459FC2C2-7181-4DCB-A85D-87136E582120}
    [2012.02.04 01:14:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Local\wow-one.com
    [2012.02.04 00:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
    [2012.02.03 23:34:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard
    [2012.02.03 23:32:54 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
    [2012.01.28 12:56:56 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.28 01:40:19 | 000,000,000 | ---D | C] -- C:\_OTL
    [2012.01.27 21:00:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
    [2012.01.27 21:00:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PCSX2 0.9.8
    [2012.01.27 21:00:15 | 000,000,000 | ---D | C] -- C:\Users\Niko\Desktop\PCSX2 - CrazyJunkyGames
    [2012.01.27 20:23:33 | 000,000,000 | R--D | C] -- C:\Users\Niko\Desktop\drk-cld-fdm-sdm
    [2012.01.27 19:37:21 | 000,000,000 | ---D | C] -- C:\Users\Niko\Documents\PCSX2
    [2012.01.27 19:35:45 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
    [2012.01.27 07:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
    [2012.01.26 23:31:38 | 000,263,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:38 | 000,188,808 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.26 23:31:29 | 000,000,000 | ---D | C] -- C:\Program Files\Java
    [2012.01.24 21:01:51 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\SUPERAntiSpyware.com
    [2012.01.24 20:59:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
    [2012.01.24 20:59:50 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
    [2012.01.24 20:53:39 | 000,750,488 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.24 20:44:50 | 000,660,368 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.24 19:33:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
    [2012.01.23 18:51:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
    [2012.01.22 21:22:23 | 000,000,000 | ---D | C] -- C:\Users\Niko\AppData\Roaming\TuneUp Software
    [2012.01.22 21:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
    [2012.01.22 21:20:29 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    [2012.01.21 00:11:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    [2012.01.21 00:10:53 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
    [2012.01.21 00:10:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
    [2010.07.07 12:36:44 | 000,014,336 | ---- | C] ( ) -- C:\Windows\SysWow64\a3d.dll
    [2010.07.07 12:10:22 | 000,012,800 | ---- | C] ( ) -- C:\Windows\SysWow64\killapps.exe
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2012.02.17 12:19:28 | 011,138,942 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
    [2012.02.17 12:19:28 | 003,897,426 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2012.02.17 12:19:28 | 003,613,004 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
    [2012.02.17 12:19:28 | 003,155,740 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2012.02.17 12:19:28 | 000,006,808 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2012.02.17 12:13:07 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2012.02.17 12:13:07 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2012.02.17 12:13:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012.02.16 22:26:55 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.16 22:26:55 | 000,062,212 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.16 22:26:55 | 000,000,820 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000009-00000000-00000000-00001102-0000000B-00431102}.rfx
    [2012.02.16 22:02:56 | 000,174,681 | ---- | M] () -- C:\Users\Niko\Desktop\trinkspiel.JPG
    [2012.02.15 17:35:10 | 004,960,240 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
    [2012.02.14 18:24:52 | 000,000,770 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
    [2012.02.14 18:22:08 | 003,587,688 | ---- | M] (Piriform Ltd) -- C:\Users\Niko\Desktop\ccsetup315.exe
    [2012.02.13 17:25:29 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
    [2012.02.13 17:25:29 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
    [2012.02.13 17:25:29 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
    [2012.02.13 17:25:29 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
    [2012.02.12 14:29:02 | 000,001,797 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
    [2012.02.11 20:12:48 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    [2012.02.04 15:03:40 | 000,064,795 | ---- | M] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:58:16 | 000,000,607 | ---- | M] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:58:09 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
    [2012.02.04 14:58:09 | 000,002,829 | ---- | M] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | M] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.03 21:13:31 | 000,001,005 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
    [2012.02.03 21:13:31 | 000,000,993 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | M] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.28 12:57:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Niko\Desktop\OTL.exe
    [2012.01.27 21:00:38 | 000,001,826 | ---- | M] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.27 20:30:14 | 000,564,792 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
    [2012.01.26 23:31:31 | 000,750,488 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
    [2012.01.26 23:31:31 | 000,660,368 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
    [2012.01.26 23:31:31 | 000,263,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
    [2012.01.26 23:31:31 | 000,188,808 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
    [2012.01.22 21:53:20 | 000,000,680 | ---- | M] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2012.01.21 21:25:07 | 000,000,201 | ---- | M] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 20:44:42 | 000,000,049 | ---- | M] () -- C:\Windows\NeroDigital.ini
    [2012.01.21 20:20:44 | 000,054,784 | ---- | M] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012.01.21 19:31:45 | 000,001,003 | ---- | M] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
    [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2012.02.16 22:02:26 | 000,174,681 | ---- | C] () -- C:\Users\Niko\Desktop\trinkspiel.JPG
    [2012.02.14 18:24:52 | 000,000,770 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
    [2012.02.12 14:29:02 | 000,001,797 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
    [2012.02.04 18:48:38 | 000,001,013 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
    [2012.02.04 14:58:16 | 000,000,607 | ---- | C] () -- C:\Users\Niko\Desktop\Frozen Throne.lnk
    [2012.02.04 14:50:59 | 000,064,795 | ---- | C] () -- C:\Windows\War3Unin.dat
    [2012.02.04 14:50:58 | 000,002,829 | ---- | C] () -- C:\Windows\War3Unin.pif
    [2012.02.04 01:13:49 | 000,000,541 | ---- | C] () -- C:\Users\Niko\Desktop\Feenix.exe - Verknüpfung.lnk
    [2012.02.02 20:10:04 | 000,001,018 | ---- | C] () -- C:\Users\Niko\Desktop\HiJackThis.exe - Verknüpfung.lnk
    [2012.01.27 21:00:38 | 000,001,826 | ---- | C] () -- C:\Users\Public\Desktop\PCSX2 0.9.8 (r4600).lnk
    [2012.01.26 21:14:16 | 000,000,900 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    [2012.01.21 21:25:07 | 000,000,201 | ---- | C] () -- C:\Users\Niko\Desktop\CrimeCraft GangWars.url
    [2012.01.21 19:31:45 | 000,001,003 | ---- | C] () -- C:\Users\Niko\Desktop\Perfect World International.lnk
    [2012.01.21 00:11:30 | 000,001,694 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
    [2011.12.28 10:38:21 | 000,000,244 | ---- | C] () -- C:\Windows\ODBCINST.INI
    [2011.12.27 22:52:24 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1E9EDB16-9D0C-4B06-AF83-F608CB573B9E}
    [2011.12.13 19:07:41 | 000,000,680 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps.dat
    [2011.10.29 18:54:35 | 000,281,656 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
    [2011.10.29 18:54:34 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
    [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
    [2011.08.13 14:42:15 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{216E4FF7-27EE-44AE-B017-4AAD62D9B48B}
    [2011.08.13 14:42:11 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{1761C58C-70BB-482D-9E79-6876CB4EC622}
    [2011.08.03 02:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
    [2011.07.25 12:53:46 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{F7A4D431-633E-488E-8D73-1D37AB71BF1F}
    [2011.07.08 22:15:33 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
    [2011.06.16 12:08:57 | 000,000,000 | ---- | C] () -- C:\Users\Niko\AppData\Local\{B3955FDF-F0F7-490E-94F0-4ED76375E944}
    [2011.05.31 07:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
    [2011.05.31 07:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
    [2011.04.25 00:20:03 | 000,000,067 | ---- | C] () -- C:\Users\Niko\AppData\Roaming\AVSMediaPlayer.m3u
    [2011.04.25 00:19:18 | 000,524,288 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
    [2011.04.25 00:19:18 | 000,139,264 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
    [2011.04.23 20:00:45 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
    [2011.04.23 20:00:45 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
    [2011.04.23 20:00:45 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
    [2011.04.23 20:00:45 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
    [2011.04.23 20:00:45 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
    [2011.04.19 10:03:47 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
    [2011.03.10 23:29:55 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
    [2011.02.24 16:07:45 | 000,835,440 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe
    [2011.02.18 17:54:26 | 000,230,752 | ---- | C] () -- C:\Windows\patchw32.dll
    [2011.02.18 17:54:26 | 000,118,176 | ---- | C] () -- C:\Windows\patchw.dll
    [2011.01.14 15:23:45 | 000,110,602 | ---- | C] () -- C:\Windows\SysWow64\xcdsfx32.bin
    [2011.01.13 13:34:35 | 000,000,964 | ---- | C] () -- C:\Windows\cm106.ini
    [2010.11.28 10:41:56 | 000,000,092 | ---- | C] () -- C:\Users\Niko\AppData\Local\fusioncache.dat
    [2010.11.28 10:40:21 | 000,006,994 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
    [2010.11.07 12:25:00 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
    [2010.11.07 12:24:40 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
    [2010.11.07 12:24:24 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2010.11.06 22:43:58 | 000,164,864 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
    [2010.11.06 22:43:58 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
    [2010.11.06 22:42:31 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIGER.DLL
    [2010.11.06 22:20:17 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
    [2010.11.06 21:17:31 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
    [2010.11.06 16:15:06 | 000,054,784 | ---- | C] () -- C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010.11.06 15:55:37 | 000,001,460 | ---- | C] () -- C:\Users\Niko\AppData\Local\d3d9caps64.dat
    [2010.07.07 13:23:10 | 000,017,868 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini
    [2010.07.07 12:33:04 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CtxfiRes.dll
    [2010.07.07 12:21:00 | 000,051,787 | ---- | C] () -- C:\Windows\SysWow64\ctdlang.dat
    [2010.07.07 12:10:30 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\enlocstr.exe
    [2009.07.14 01:14:16 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini
    [2009.07.14 00:12:00 | 000,384,647 | ---- | C] () -- C:\Windows\SysWow64\ctdnlstr.dat
    [2009.05.26 12:12:38 | 000,000,285 | ---- | C] () -- C:\Windows\SysWow64\kill.ini
    [2008.01.21 03:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
    [2006.11.02 16:37:05 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2006.11.02 13:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2006.11.02 13:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2006.11.02 13:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
    [2006.11.02 10:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2000.03.29 15:17:42 | 000,005,824 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
    
    < End of report >
    Problem bleibt weiterhin bestehen :/
    außerdem bleibt manchmal alles stehen nachdem ich den pc starte also ich seh alles aber kann die maus nicht mehr bewegen und start und taskmanager funktioniert auch nicht mehr dann. kommt aber selten vor.
    Ehm was ich vllt noch nciht erwähnt hatte wenn ich auf google links klicke zb ich suche wikipedia dann klicke ich auf den link und werde auf irgend einen shop oder anderes weitergeleitet. Was ich mir merken konnte von den seiten ist bigpoint kommt und sportcheck. Das mit Wikipedia war nur ein beispiel! tritt nicht nur dabei auf.
    Geändert von N3oZ (17.02.2012 um 14:19 Uhr)

  7. #37
    Moderator (global) Team-Mitglied Avatar von kira
    Registriert seit
    28.03.2006
    Ort
    Wien/Sprachen: Deutsch-Ungarisch
    Beiträge
    29.750

    AW: Internet ist nach lan sehr langsam

    Alle Schritte von hier bitte erledigen!:-> http://www.hijackthis-forum.de/hijac...tml#post384623
    danach berichte mir erneut über den Zustand des Computers. Ob noch Probleme auftreten, wenn ja, welche?
    Warnung!:
    Vorsicht bei Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einem Verschlüsselungs-Trojaner infiziert sein!
    Anhang nicht öffnen, in unserem Forum erst nachfragen!

    Bitte diese Warnung weitergeben, wo Du nur kannst!
    Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten!
    Bitte diese Warnung weitergeben, wo Du nur kannst!

  8. #38
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    ist das normal das ich schon seitanfang an immer voll oft wieder das gleiche machen muss ???????
    was bringt das wenn der scanner vorhin nichts fand findet der jezt doch uach nichts oder nicht????
    und sag mir mal warum der online scanner mir kein protokoll ausspuckt

  9. #39
    Moderator (global) Team-Mitglied Avatar von kira
    Registriert seit
    28.03.2006
    Ort
    Wien/Sprachen: Deutsch-Ungarisch
    Beiträge
    29.750

    AW: Internet ist nach lan sehr langsam

    Zitat Zitat von N3oZ Beitrag anzeigen
    ist das normal das ich schon seitanfang an immer voll oft wieder das gleiche machen muss ???????
    Zumbeispiel?????? nenne bitte genau, was meinst mit "gleiche"?!
    Warnung!:
    Vorsicht bei Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einem Verschlüsselungs-Trojaner infiziert sein!
    Anhang nicht öffnen, in unserem Forum erst nachfragen!

    Bitte diese Warnung weitergeben, wo Du nur kannst!
    Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten!
    Bitte diese Warnung weitergeben, wo Du nur kannst!

  10. #40
    Forenbenutzer
    Registriert seit
    22.01.2012
    Beiträge
    53

    AW: Internet ist nach lan sehr langsam

    hmm kam mir dann doch nur so vor hab alles durchgeguckt war wohl doch nicht so sry ....
    ich bin dran weiter zu machen

Seite 4 von 9 ErsteErste ... 23456 ... LetzteLetzte

Aktive Benutzer

Aktive Benutzer

Aktive Benutzer in diesem Thema: 1 (Registrierte Benutzer: 0, Gäste: 1)

Ähnliche Themen

  1. Internet Explorer ist sehr langsam
    Von cptn64 im Forum Archiv
    Antworten: 9
    Letzter Beitrag: 21.12.2011, 18:25
  2. Internet sehr langsam nach absturz eines Dls.
    Von Yougo81 im Forum Archiv
    Antworten: 0
    Letzter Beitrag: 09.09.2010, 22:03
  3. Mein Internet ist sehr langsam geworden.
    Von Robinb im Forum Archiv
    Antworten: 2
    Letzter Beitrag: 04.08.2010, 00:13
  4. Internet ist sehr langsam
    Von dahool im Forum Archiv
    Antworten: 1
    Letzter Beitrag: 01.08.2010, 14:50
  5. Computer ist sehr langsam nach dem einschalten
    Von DikkenMobby im Forum Archiv
    Antworten: 14
    Letzter Beitrag: 17.08.2009, 23:27

Berechtigungen

  • Neue Themen erstellen: Nein
  • Themen beantworten: Nein
  • Anhänge hochladen: Nein
  • Beiträge bearbeiten: Nein
  •