Google Suchergebnisse leiten falsch weiter

gitteo · 05.10.2011, 14:32

hallo,
ich habe das Problem das meine Browser (Mozilla und Internet Explorer) bei der Google Suche nicht auf die angezeigten urls, sondern falsche Werbeseiten weiterleiten. Links unten im Browserfenster steht beim Verbindungsaufbau meist 'verbinden mit www.honeygetdirrected.com'. Auch ist mein PC teilweise extremst langsam.
bitte um Hilfe

OTL logfile created on: 05.10.2011 10:42:44 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Dokumente und Einstellungen\gitte\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000C07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy

1022,42 Mb Total Physical Memory | 142,46 Mb Available Physical Memory | 13,93% Memory free
3,90 Gb Paging File | 3,17 Gb Available in Paging File | 81,24% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 114,20 Gb Total Space | 47,82 Gb Free Space | 41,87% Space Free | Partition Type: NTFS
Drive D: | 109,34 Gb Total Space | 50,07 Gb Free Space | 45,79% Space Free | Partition Type: NTFS
Drive E: | 9,33 Gb Total Space | 3,63 Gb Free Space | 38,92% Space Free | Partition Type: FAT32
Drive F: | 206,84 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 3,40 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive H: | 7,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: GITTIG2S1L8P5 | User Name: gitte | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.10.05 10:38:59 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\gitte\Desktop\OTL.exe
PRC - [2011.09.28 03:09:56 | 000,482,992 | ---- | M] (Crawler.com) -- C:\Programme\Spyware Terminator\st_rsser.exe
PRC - [2011.09.27 12:57:06 | 001,191,216 | ---- | M] (Lavasoft Limited) -- C:\Programme\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2011.09.27 12:57:04 | 002,151,640 | ---- | M] (Lavasoft Limited) -- C:\Programme\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011.06.29 10:52:31 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.04.29 22:12:46 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2010.11.25 09:56:50 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.01.14 23:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.02.27 15:26:12 | 000,296,400 | ---- | M] () -- C:\Programme\3DataManager\WTGService.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.07.11 16:57:42 | 000,880,640 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Programme\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2007.06.13 09:16:02 | 000,528,384 | R--- | M] () -- C:\Programme\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2007.05.15 18:20:12 | 000,079,400 | ---- | M] (Hewlett-Packard Company) -- C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
PRC - [2007.03.16 04:23:20 | 000,983,040 | R--- | M] (Teleca AB) -- C:\Programme\Gemeinsame Dateien\Teleca Shared\Generic.exe
PRC - [2006.11.08 14:27:54 | 000,222,208 | ---- | M] (Nokia) -- C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe
PRC - [2006.11.06 15:21:10 | 000,210,432 | ---- | M] (Nokia.) -- C:\Programme\PC Connectivity Solution\ServiceLayer.exe
PRC - [2006.04.27 16:47:14 | 000,065,536 | ---- | M] (Pinnacle Systems) -- C:\Programme\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
PRC - [2006.02.09 20:03:06 | 000,118,880 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
PRC - [2006.02.09 20:03:04 | 000,266,338 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
PRC - [2006.02.09 20:02:40 | 000,143,360 | ---- | M] (CyberLink Corp.) -- C:\Programme\Home Cinema\PowerCinema\PCMService.exe
PRC - [2006.02.09 20:02:12 | 001,073,152 | ---- | M] (Cyberlink) -- C:\Programme\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
PRC - [2006.01.19 10:22:20 | 000,049,152 | ---- | M] (Pinnacle Systems) -- C:\Programme\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
PRC - [2005.11.10 15:41:22 | 005,585,408 | ---- | M] (Chicony) -- C:\WINDOWS\CNYHKey.exe
PRC - [2005.10.12 15:44:08 | 000,241,664 | ---- | M] () -- C:\WINDOWS\system32\CmUCREye.exe
PRC - [2005.08.01 14:05:04 | 000,094,208 | ---- | M] (Lexmark International Inc.) -- C:\Programme\Lexmark 2300 Series\ezprint.exe
PRC - [2005.07.25 21:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe
PRC - [2005.07.21 08:07:38 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Programme\Lexmark 2300 Series\lxcgmon.exe
PRC - [2005.05.04 01:04:28 | 009,150,464 | ---- | M] (Microsoft Corporation) -- C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
PRC - [2004.12.08 18:57:36 | 000,550,912 | ---- | M] () -- C:\WINDOWS\mHotkey.exe
PRC - [2003.09.17 17:39:46 | 000,212,992 | ---- | M] (ACD Systems, Ltd.) -- C:\Programme\Gemeinsame Dateien\ACD Systems\EN\DevDetect.exe
PRC - [2001.11.12 14:31:48 | 000,020,480 | ---- | M] (X10) -- C:\Programme\Common Files\X10\Common\X10nets.exe

========== Modules (No Company Name) ==========

MOD - [2011.09.27 12:57:37 | 000,430,568 | ---- | M] () -- C:\Programme\Lavasoft\Ad-Aware\VipreBridge.dll
MOD - [2011.09.27 12:57:31 | 000,589,184 | ---- | M] () -- C:\Programme\Lavasoft\Ad-Aware\RPAPI.dll
MOD - [2011.09.27 12:56:11 | 000,508,776 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft\Ad-Aware\Defs\thorax.aaw
MOD - [2011.09.20 16:06:04 | 000,193,904 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft\Ad-Aware\Defs\Extended\libMachoUniv.dll
MOD - [2011.09.20 16:06:02 | 000,210,288 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft\Ad-Aware\Defs\Extended\libBase64.dll
MOD - [2011.08.18 15:25:12 | 000,308,560 | ---- | M] () -- C:\Programme\Lavasoft\Ad-Aware\Vipre.dll
MOD - [2010.10.06 14:30:46 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_226e32af\mscorlib.dll
MOD - [2010.10.06 14:30:43 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_082a673f\system.drawing.dll
MOD - [2010.10.06 14:30:37 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_10e00551\system.xml.dll
MOD - [2010.10.06 14:30:31 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_b36eee61\system.windows.forms.dll
MOD - [2010.10.06 11:02:01 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_9a0bb039\system.dll
MOD - [2010.10.06 11:01:54 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2010.10.06 11:01:53 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2010.01.28 14:57:53 | 000,355,688 | ---- | M] () -- C:\Programme\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2009.02.27 15:26:12 | 000,296,400 | ---- | M] () -- C:\Programme\3DataManager\WTGService.exe
MOD - [2008.04.14 04:23:07 | 000,056,832 | ---- | M] () -- C:\WINDOWS\system32\msdvbnp.ax
MOD - [2008.04.14 04:23:07 | 000,033,280 | ---- | M] () -- C:\WINDOWS\system32\psisrndr.ax
MOD - [2008.04.14 04:22:23 | 000,363,520 | ---- | M] () -- C:\WINDOWS\system32\psisdecd.dll
MOD - [2008.04.14 04:22:16 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.06.13 09:16:02 | 000,528,384 | R--- | M] () -- C:\Programme\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
MOD - [2007.05.23 09:23:34 | 004,591,616 | R--- | M] () -- C:\Programme\Sony Ericsson\Mobile2\Application Launcher\Application LauncherBmp.dll
MOD - [2007.05.22 17:09:20 | 000,025,600 | R--- | M] () -- C:\Programme\Sony Ericsson\Mobile2\Application Launcher\Application LauncherLg.dll
MOD - [2006.04.27 16:47:10 | 000,094,208 | ---- | M] () -- c:\Programme\Pinnacle\Shared Files\Programs\MediaCenterService\Interop.PclePvrControlLib.dll
MOD - [2006.03.09 19:45:36 | 000,081,920 | R--- | M] () -- C:\Programme\Gemeinsame Dateien\Teleca Shared\boost_log-vc71-mt-1_33.dll
MOD - [2006.02.09 20:03:14 | 000,229,438 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSQLDBRec4.dll
MOD - [2006.02.09 20:03:14 | 000,209,000 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapEngine.dll
MOD - [2006.02.09 20:03:14 | 000,061,538 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSchMgr.dll
MOD - [2006.02.09 20:03:14 | 000,032,768 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapSvcps.dll
MOD - [2006.02.09 20:03:14 | 000,024,576 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSchedps.dll
MOD - [2006.02.09 20:03:06 | 000,118,880 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
MOD - [2006.02.09 20:03:04 | 000,266,338 | ---- | M] () -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
MOD - [2005.10.12 15:44:08 | 000,241,664 | ---- | M] () -- C:\WINDOWS\system32\CmUCREye.exe
MOD - [2005.10.10 21:49:00 | 001,466,368 | ---- | M] () -- C:\WINDOWS\system32\nview.dll
MOD - [2005.10.10 21:49:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2005.10.08 16:00:33 | 001,294,336 | ---- | M] () -- c:\windows\assembly\gac\system.data\1.0.5000.0__b77a5c561934e089\system.data.dll
MOD - [2005.10.08 16:00:33 | 000,126,976 | ---- | M] () -- c:\windows\assembly\gac\system.serviceprocess\1.0.5000.0__b03f5f7f11d50a3a\system.serviceprocess.dll
MOD - [2005.10.08 16:00:32 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2005.10.08 16:00:32 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2005.10.08 16:00:32 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2005.10.08 16:00:32 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2005.10.08 16:00:31 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2005.10.08 16:00:31 | 000,241,664 | ---- | M] () -- c:\windows\assembly\gac\system.enterpriseservices\1.0.5000.0__b03f5f7f11d50a3a\system.enterpriseservices.dll
MOD - [2005.10.08 16:00:31 | 000,131,072 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.serialization.formatters.soap\1.0.5000.0__b03f5f7f11d50a3a\system.runtime.serialization.formatters.soap.dll
MOD - [2005.10.08 16:00:31 | 000,066,560 | ---- | M] () -- c:\windows\assembly\gac\system.enterpriseservices\1.0.5000.0__b03f5f7f11d50a3a\system.enterpriseservices.thunk.dll
MOD - [2005.10.08 15:18:11 | 000,233,472 | ---- | M] () -- c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2005.10.08 15:18:11 | 000,122,880 | ---- | M] () -- c:\windows\assembly\gac\system.data.resources\1.0.5000.0_de_b77a5c561934e089\system.data.resources.dll
MOD - [2005.10.08 15:18:11 | 000,114,688 | ---- | M] () -- c:\windows\assembly\gac\system.xml.resources\1.0.5000.0_de_b77a5c561934e089\system.xml.resources.dll
MOD - [2005.10.08 15:18:11 | 000,040,960 | ---- | M] () -- c:\windows\assembly\gac\system.serviceprocess.resources\1.0.5000.0_de_b03f5f7f11d50a3a\system.serviceprocess.resources.dll
MOD - [2005.07.12 15:36:56 | 000,012,288 | ---- | M] () -- C:\WINDOWS\system32\LXPMONRC.DLL
MOD - [2005.07.12 15:33:44 | 000,032,768 | ---- | M] () -- C:\WINDOWS\system32\LXPRMON.DLL
MOD - [2005.07.11 16:36:34 | 000,118,784 | ---- | M] () -- C:\Programme\Lexmark 2300 Series\lxcgdrec.dll
MOD - [2005.06.13 21:04:22 | 000,192,512 | ---- | M] () -- C:\Programme\Lexmark 2300 Series\iptk.dll
MOD - [2005.03.13 20:32:14 | 000,061,440 | ---- | M] () -- C:\Programme\Lexmark 2300 Series\lxcgcnv4.dll
MOD - [2004.12.08 18:57:36 | 000,550,912 | ---- | M] () -- C:\WINDOWS\mHotkey.exe
MOD - [2003.06.16 21:13:22 | 000,049,152 | ---- | M] () -- C:\WINDOWS\CNYUSB.dll
MOD - [2003.05.16 21:09:32 | 000,011,776 | ---- | M] () -- C:\WINDOWS\HIDMNT.dll
MOD - [2002.09.26 04:07:02 | 000,005,120 | ---- | M] () -- C:\WINDOWS\HKCYDLL.dll
MOD - [2002.05.14 19:22:34 | 000,122,880 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll
MOD - [2001.07.02 21:36:30 | 000,024,576 | ---- | M] () -- C:\WINDOWS\HKNTDLL.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.09.28 03:09:56 | 000,482,992 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Programme\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2011.09.27 12:57:04 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Programme\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011.06.29 10:52:31 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.04.29 22:12:46 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009.02.27 15:26:12 | 000,296,400 | ---- | M] () [Auto | Running] -- C:\Programme\3DataManager\WTGService.exe -- (WTGService)
SRV - [2007.05.26 14:32:27 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2007.05.15 18:20:12 | 000,079,400 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2006.11.06 15:21:10 | 000,210,432 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Programme\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.02.09 20:03:06 | 000,118,880 | ---- | M] () [Auto | Running] -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2006.02.09 20:03:04 | 000,266,338 | ---- | M] () [Auto | Running] -- C:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2006.02.09 20:02:12 | 001,073,152 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Programme\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2006.01.19 10:22:20 | 000,049,152 | ---- | M] (Pinnacle Systems) [Auto | Running] -- C:\Programme\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe -- (PinnacleSys.MediaServer)
SRV - [2005.07.25 21:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\System32\lxcgcoms.exe -- (lxcg_device)
SRV - [2005.05.04 01:04:28 | 009,150,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe -- (MSSQL$PINNACLESYS)
SRV - [2005.05.03 22:42:56 | 000,323,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE -- (SQLAgent$PINNACLESYS)
SRV - [2003.07.28 12:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2001.11.12 14:31:48 | 000,020,480 | ---- | M] (X10) [Auto | Running] -- C:\Programme\Common Files\X10\Common\X10nets.exe -- (x10nets)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (xpsec)
DRV - File not found [Kernel | On_Demand | Running] -- -- (xcpip)
DRV - [2011.08.18 15:25:12 | 000,064,512 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2011.08.18 15:25:12 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programme\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer)
DRV - [2011.06.29 10:52:33 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.06.29 10:52:33 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.06.21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.05.11 11:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.03.03 22:05:50 | 000,101,120 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009.02.20 16:27:08 | 000,018,816 | ---- | M] (Bytemobile, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\tcpipBM.sys -- (tcpipBM)
DRV - [2009.02.13 11:35:01 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.04.13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2007.04.24 12:33:46 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM)
DRV - [2007.04.24 12:33:46 | 000,098,696 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125obex.sys -- (s125obex)
DRV - [2007.04.24 12:33:44 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007.04.24 12:33:42 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007.04.24 12:33:34 | 000,083,336 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2006.02.08 15:12:00 | 000,217,216 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2006.02.08 15:12:00 | 000,017,792 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2006.01.13 18:13:18 | 004,137,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.01.05 08:53:32 | 000,029,184 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb2vcom.sys -- (usb2vcom)
DRV - [2005.12.06 12:16:00 | 000,826,752 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid)
DRV - [2005.11.01 18:33:00 | 000,020,736 | ---- | M] (Empia Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emAudio.sys -- (emAudio)
DRV - [2005.10.04 19:37:54 | 000,072,320 | ---- | M] (C-Media Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmiucr.SYS -- (CMISTOR)
DRV - [2005.07.14 20:58:38 | 000,241,536 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2500usb.sys -- (RT2500USB)
DRV - [2005.06.30 13:16:00 | 001,094,848 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2005.05.26 19:48:50 | 000,011,264 | ---- | M] (VOB Computersysteme GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
DRV - [2005.05.19 16:52:58 | 000,017,792 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\x10ufx2.sys -- (XUIF)
DRV - [2005.05.09 21:08:40 | 000,033,792 | ---- | M] (Team H2O) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cledx.sys -- (CLEDX)
DRV - [2004.08.03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) NT-Treiber für Realtek RTL8139(A/B/C)
DRV - [2004.07.30 13:02:56 | 000,017,245 | ---- | M] (Frontier Design Group) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\US224DL.sys -- (US224DL)
DRV - [2004.07.30 12:49:40 | 000,086,712 | ---- | M] (Frontier Design Group, LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\US224Wdm.sys -- (Us224WdmService)
DRV - [2004.07.30 12:49:14 | 000,237,368 | ---- | M] (Frontier Design Group, LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\US224.sys -- (US224)
DRV - [2003.09.25 11:12:04 | 000,014,604 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2002.12.17 11:36:22 | 000,730,880 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\WDMCAPI.sys -- (WDMCAPI)
DRV - [2002.12.09 11:21:28 | 000,026,112 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdmwanmp.sys -- (WDMWANMP)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.medion.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://feewa.core.at/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.forestle.org/"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906
FF - prefs.js..extensions.enabledItems: facebookcommentfixer@mattkruse.com:1.0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programme\Microsoft Silverlight\4.0.60129.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2240: C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2298: C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1348: C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ff-bmboc@bytemobile.com: C:\Programme\3-addons\addon [2010.04.07 17:24:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.09.08 09:15:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.05.12 00:10:00 | 000,000,000 | ---D | M]

[2009.03.02 23:22:42 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Mozilla\Extensions
[2011.05.11 22:30:29 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Mozilla\Firefox\Profiles\e3d5ma9f.default\extensions
[2011.03.25 13:14:31 | 000,000,000 | ---D | M] (Facebook Comment Fixer) -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Mozilla\Firefox\Profiles\e3d5ma9f.default\extensions\facebookcommentfixer@mattkruse.com
[2009.06.27 14:35:11 | 000,002,314 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Mozilla\Firefox\Profiles\e3d5ma9f.default\searchplugins\forestle-de.xml
[2011.05.11 22:30:29 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.09.27 11:23:35 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011.09.08 09:15:33 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2011.05.12 00:09:53 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.05.12 00:09:53 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2011.05.12 00:09:53 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2011.05.12 00:09:53 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.05.12 00:09:53 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.05.12 00:09:53 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe ()
O4 - HKLM..\Run: [CmUCRRun] C:\WINDOWS\system32\CmUCREye.exe ()
O4 - HKLM..\Run: [Device Detector] C:\Programme\Gemeinsame Dateien\ACD Systems\EN\DevDetect.exe (ACD Systems, Ltd.)
O4 - HKLM..\Run: [EzPrint] C:\Programme\Lexmark 2300 Series\ezprint.exe (Lexmark International Inc.)
O4 - HKLM..\Run: [FaxCenterServer] C:\Programme\Lexmark Fax Solutions\fm3032.exe ()
O4 - HKLM..\Run: [H2O] C:\Programme\Syncrosoft\POS\H2O\cledx.exe (Team H2O)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [InstantOn] C:\Program Files\CyberLink\PowerCinema Linux\ion_install.exe ()
O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [LXCGCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.DLL ()
O4 - HKLM..\Run: [lxcgmon.exe] C:\Programme\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PCMService] C:\Programme\Home Cinema\PowerCinema\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [PCSuiteTrayApplication] C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [Pinnacle WebUpdater] C:\Programme\Pinnacle\Shared Files\Programs\WebUpdater\WebUpdater.exe (Pinnacle Systems)
O4 - HKLM..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe ()
O4 - HKLM..\Run: [Showwnd] C:\WINDOWS\ShowWnd.exe ()
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Programme\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
O4 - HKCU..\Run: [PMCS] C:\Programme\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe (Pinnacle Systems)
O4 - Startup: C:\Dokumente und Einstellungen\gitte\Startmenü\Programme\Autostart\Adobe Gamma.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\gitte\Startmenü\Programme\Autostart\ZooskMessenger.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {15B782AF-55D8-11D1-B477-006097098764} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab (Macromedia Authorware Web Player Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc3.cab (Office Update Installation Engine)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1128778405937 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1140103532640 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab (MsnMessengerSetupDownloadControl Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Programme\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Programme\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\gitte\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\gitte\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005.10.09 14:46:45 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003.03.06 16:26:48 | 000,000,055 | RH-- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2007.07.04 00:04:10 | 000,106,496 | R--- | M] (Huawei Technologies Co., Ltd.) - H:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008.01.03 19:40:11 | 000,000,051 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{74b9567c-09bb-11de-ab38-0012bf638d51}\Shell - "" = AutoRun
O33 - MountPoints2\{74b9567c-09bb-11de-ab38-0012bf638d51}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{74b9567c-09bb-11de-ab38-0012bf638d51}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2007.07.04 00:04:10 | 000,106,496 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{bc70d712-0806-11de-ab33-0012bf638d51}\Shell - "" = AutoRun
O33 - MountPoints2\{bc70d712-0806-11de-ab33-0012bf638d51}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bc70d712-0806-11de-ab33-0012bf638d51}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2007.07.04 00:04:10 | 000,106,496 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{d63a4acc-9f15-11da-ba87-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{d63a4acc-9f15-11da-ba87-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d63a4acc-9f15-11da-ba87-806d6172696f}\Shell\AutoRun\command - "" = G:\Programs\nu2menu\nu2menu.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vektorgrafik-Rendering (VML)
ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Programme\Gemeinsame Dateien\LightScribe\LSRunOnce.exe"
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - Microsoft NetShow Player
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML-Datenbindung für Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offlinebrowsingpaket
ActiveX: {3B5262B9-203A-01DB-4C56-3F39B19144B6} - Themes Setup
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Erweitertes Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer-Hilfe
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsererweiterungen
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Zugang zu MSN Site
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Webordner
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {8937FCB2-2FC6-4FC3-9FB5-DE2C92DB9C38} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML-Datenbindung
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer-Hauptschriftarten
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Taskplaner
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML-Hilfe
ActiveX: {E78BFA60-5393-4C38-82AB-E8019E464EB4} - .NET Framework
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: Microsoft Base Smart Card Crypto Provider Package -

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011.10.05 10:38:54 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\gitte\Desktop\OTL.exe
[2011.10.05 08:52:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Spyware Terminator
[2011.10.05 08:52:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spyware Terminator
[2011.10.05 08:52:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spyware Terminator 2012
[2011.10.05 08:49:36 | 000,000,000 | ---D | C] -- C:\Programme\Spyware Terminator
[2011.09.13 21:36:10 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\X10 Commander
[2011.09.12 15:35:55 | 000,064,512 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2011.09.12 15:35:46 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lavasoft
[2011.09.11 20:14:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\gitte\Startmenü\Programme\XP-Clean
[2011.09.11 20:14:20 | 000,000,000 | ---D | C] -- C:\Programme\XPcleanv5
[2005.10.09 12:04:35 | 000,009,216 | ---- | C] ( ) -- C:\WINDOWS\System32\capi2032.dll
[2005.07.25 21:31:30 | 001,183,744 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgserv.dll
[2005.07.25 21:27:22 | 000,483,328 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcglmpm.dll
[2005.07.25 21:26:58 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomm.dll
[2005.07.25 21:25:40 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgih.exe
[2005.07.25 21:25:26 | 000,114,688 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgpplc.dll
[2005.07.25 21:25:18 | 000,491,520 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcoms.exe
[2005.07.25 21:24:46 | 000,704,512 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomc.dll
[2005.07.25 21:24:14 | 000,155,648 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgprox.dll
[2005.07.25 21:19:36 | 001,134,592 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgusb1.dll
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.10.05 10:38:59 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\gitte\Desktop\OTL.exe
[2011.10.05 10:35:18 | 000,049,152 | ---- | M] ( ) -- C:\Dokumente und Einstellungen\gitte\CompiledAdapter
[2011.10.05 10:34:48 | 000,000,349 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Dokumente\PCLECHAL.INI
[2011.10.05 10:34:23 | 000,000,484 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011.10.05 10:33:48 | 000,039,291 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011.10.05 10:33:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.10.05 10:33:06 | 1072,156,672 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.05 09:38:21 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\defogger_reenable
[2011.10.05 09:31:47 | 000,050,477 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Desktop\Defogger.exe
[2011.10.05 08:52:15 | 000,000,709 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Spyware Terminator 2012.lnk
[2011.10.04 13:44:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.10.03 08:45:01 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.10.03 08:45:01 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.09.29 10:00:08 | 000,002,241 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2011.09.28 09:50:59 | 000,021,556 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\wklnhst.dat
[2011.09.27 17:38:36 | 000,111,103 | ---- | M] () -- C:\WINDOWS\Run32A50.mch
[2011.09.27 17:19:46 | 000,000,035 | ---- | M] () -- C:\WINDOWS\A5W.INI
[2011.09.27 12:57:42 | 000,016,432 | ---- | M] () -- C:\WINDOWS\System32\lsdelete.exe
[2011.09.27 11:46:24 | 000,081,853 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Eigene Dateien\bookmarks 2008-2011.html
[2011.09.27 09:15:43 | 000,002,503 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ACDSee 6.0.lnk
[2011.09.26 18:43:44 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.09.22 14:00:09 | 000,098,304 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.19 12:00:01 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011.09.12 15:35:56 | 000,000,781 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Ad-Aware.lnk
[2011.09.11 20:15:04 | 000,002,243 | ---- | M] () -- C:\Dokumente und Einstellungen\gitte\Desktop\XPclean.lnk
[2011.09.09 11:11:02 | 000,002,667 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Sony Ericsson PC Suite.lnk
[2011.09.05 14:30:02 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.10.05 09:38:21 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\defogger_reenable
[2011.10.05 09:31:47 | 000,050,477 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Desktop\Defogger.exe
[2011.10.05 08:52:21 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2011.10.05 08:52:15 | 000,000,709 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Spyware Terminator 2012.lnk
[2011.09.27 17:28:53 | 000,016,432 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2011.09.27 11:46:24 | 000,081,853 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Eigene Dateien\bookmarks 2008-2011.html
[2011.09.12 15:35:56 | 000,000,781 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Ad-Aware.lnk
[2011.09.11 20:14:44 | 000,002,243 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Desktop\XPclean.lnk
[2011.05.09 21:00:32 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.05.09 21:00:32 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.04.16 09:58:56 | 000,000,035 | ---- | C] () -- C:\WINDOWS\A5W.INI
[2011.01.13 20:30:27 | 000,406,016 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.exe
[2011.01.13 20:26:56 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
[2011.01.13 20:26:56 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
[2011.01.13 20:26:56 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
[2011.01.13 20:26:56 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
[2011.01.13 20:26:56 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
[2011.01.13 20:26:24 | 000,166,912 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2009.08.17 15:16:37 | 000,109,782 | ---- | C] () -- C:\WINDOWS\CopernicAgentUninstall.exe
[2009.03.16 12:08:18 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2009.03.16 12:08:18 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2009.03.16 12:08:18 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\LXPMONRC.DLL
[2009.03.07 09:35:37 | 000,001,637 | ---- | C] () -- C:\WINDOWS\cftppro.INI
[2008.02.09 01:34:47 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\94DE467463.sys
[2008.02.09 00:37:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PhotoNow.INI
[2007.12.01 20:49:59 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\pxhpinst.exe
[2007.09.01 10:34:45 | 000,001,953 | ---- | C] () -- C:\WINDOWS\GIFCON.INI
[2007.06.24 18:14:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CDPlayer.INI
[2007.04.14 23:24:23 | 000,029,184 | R--- | C] () -- C:\WINDOWS\System32\drivers\usb2vcom.sys
[2007.01.21 12:47:32 | 000,000,738 | ---- | C] () -- C:\WINDOWS\XMLEditor3.INI
[2006.08.31 13:57:24 | 000,373,248 | ---- | C] () -- C:\WINDOWS\EyeCand3.INI
[2006.08.31 13:53:18 | 000,000,527 | ---- | C] () -- C:\WINDOWS\rsagent.ini
[2006.08.22 15:58:40 | 000,000,105 | ---- | C] () -- C:\WINDOWS\muveeapp.INI
[2006.06.10 14:26:55 | 000,098,304 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006.06.10 14:26:55 | 000,021,556 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\wklnhst.dat
[2006.06.10 14:26:55 | 000,000,138 | ---- | C] () -- C:\Dokumente und Einstellungen\gitte\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2006.02.16 17:04:25 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.02.16 14:58:46 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\1CAFCFA15B.sys
[2006.02.16 14:44:11 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006.02.16 14:44:11 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2006.02.16 14:40:02 | 000,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini
[2006.02.16 14:40:01 | 000,550,912 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2006.02.16 14:40:01 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2006.02.16 14:40:01 | 000,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll
[2006.02.16 14:40:01 | 000,036,864 | ---- | C] () -- C:\WINDOWS\ShowWnd.exe
[2006.02.16 14:40:01 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2006.02.16 14:40:01 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
[2006.02.16 14:40:01 | 000,005,120 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll
[2006.02.16 14:37:37 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\CmUCREye.exe
[2006.02.16 12:49:29 | 000,000,872 | ---- | C] () -- C:\WINDOWS\uninst.ini
[2005.12.07 12:31:00 | 000,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2005.10.18 15:01:47 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll
[2005.10.16 16:35:01 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.10.16 14:47:59 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll
[2005.10.12 11:48:49 | 000,038,912 | ---- | C] () -- C:\WINDOWS\System32\mgxasio.dll
[2005.10.12 11:32:12 | 000,000,024 | ---- | C] () -- C:\WINDOWS\magix.ini
[2005.10.12 08:39:03 | 000,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2005.10.09 14:55:21 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2005.10.09 14:55:19 | 000,001,208 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2005.10.09 14:27:44 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005.10.09 13:48:36 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.10.09 12:27:54 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005.10.09 12:25:40 | 000,000,008 | RHS- | C] () -- C:\WINDOWS\System32\A3DA537E26.sys
[2005.10.09 12:11:51 | 000,127,184 | ---- | C] () -- C:\WINDOWS\Unwise.exe
[2005.10.09 12:04:35 | 000,730,880 | ---- | C] () -- C:\WINDOWS\System32\drivers\WDMCAPI.sys
[2005.10.09 12:04:35 | 000,041,243 | ---- | C] () -- C:\WINDOWS\System32\isdncoin.dll
[2005.10.09 12:04:35 | 000,026,112 | ---- | C] () -- C:\WINDOWS\System32\drivers\wdmwanmp.sys
[2005.10.09 12:04:35 | 000,008,976 | ---- | C] () -- C:\WINDOWS\System32\capi20.dll
[2005.10.09 12:04:35 | 000,003,584 | ---- | C] () -- C:\WINDOWS\System32\capitask.exe
[2005.10.09 11:53:16 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\Install2500USB.dll
[2005.10.09 11:53:16 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\DEDriverDLL.dll
[2005.10.09 11:53:16 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\WRLSetup.exe
[2005.10.09 07:47:00 | 000,002,724 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.10.09 07:46:56 | 000,428,358 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2005.10.09 07:46:56 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2005.10.09 07:46:56 | 000,081,204 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2005.10.09 07:46:56 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2005.10.09 07:46:50 | 000,414,086 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005.10.09 07:46:50 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005.10.09 07:46:50 | 000,068,536 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005.10.09 07:46:50 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005.10.09 07:46:50 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005.10.09 07:46:50 | 000,004,518 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005.10.09 07:46:49 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005.10.09 07:46:48 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005.10.09 07:46:47 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005.10.09 07:46:47 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005.10.09 07:46:45 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005.10.09 07:46:43 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2005.10.08 23:52:15 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005.10.08 23:51:38 | 000,380,832 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005.10.08 22:59:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005.10.08 22:56:19 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005.10.08 15:40:15 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\CmUCRRm.exe
[2005.10.08 15:40:15 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\CmUCRRm.Dll
[2005.10.08 15:40:15 | 000,024,576 | ---- | C] () -- C:\WINDOWS\CmiUCRUninstall.exe
[2005.10.08 15:40:15 | 000,000,052 | ---- | C] () -- C:\WINDOWS\CMICARDREADER.INI
[2005.10.08 15:30:55 | 000,003,776 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005.10.08 15:18:30 | 000,000,863 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2005.09.23 00:21:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2005.09.23 00:21:00 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2005.09.23 00:21:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2005.09.23 00:21:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2005.09.23 00:21:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2005.09.23 00:21:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2005.09.23 00:21:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2005.09.23 00:21:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2005.08.10 00:13:59 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\DivXsm.exe
[2005.08.10 00:13:31 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2005.08.10 00:13:31 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2005.08.10 00:12:28 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.08.09 07:06:54 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\lxcginsr.dll
[2005.08.09 07:06:50 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxcgcur.dll
[2005.08.09 07:06:36 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\lxcgjswr.dll
[2005.07.07 11:12:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcgvs.dll
[2005.02.23 18:57:35 | 000,971,776 | ---- | C] () -- C:\WINDOWS\System32\SSCProt.dll
[2004.09.28 23:54:30 | 003,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll
[2002.03.21 15:39:02 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL
[2002.03.20 22:01:06 | 000,006,688 | R--- | C] () -- C:\WINDOWS\System32\Digita.sys
[2002.03.20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportUSB.dll
[2002.03.20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportSerial.dll
[2002.03.20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrDA.dll
[2002.03.20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrCOMM.dll
[2000.11.29 10:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll

========== LOP Check ==========

[2006.08.31 03:55:38 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ACD Systems
[2011.03.05 11:58:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BVRP Software
[2007.11.30 21:50:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\LightScribe
[2005.10.09 14:46:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\muvee Technologies
[2006.12.22 20:26:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC Suite
[2011.01.13 20:25:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Pinnacle
[2011.10.05 08:52:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spyware Terminator
[2011.03.05 14:19:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Teleca
[2006.02.16 15:18:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\X10 Settings
[2011.10.04 13:59:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\3DataManager
[2006.08.31 04:13:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\ACD Systems
[2010.08.30 16:09:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\avidemux
[2010.04.12 20:01:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
[2009.08.17 15:16:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Copernic
[2007.04.14 23:51:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Datalayer
[2009.03.07 09:35:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\GlobalSCAPE
[2010.04.05 20:06:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\main.C1AFEBAC54C1C009ADB52063D53614157A80A978.1
[2010.08.30 23:58:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\MPEG Streamclip
[2011.03.05 15:09:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\MyPhoneExplorer
[2009.05.16 20:47:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Nokia
[2009.05.19 21:59:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Nokia Multimedia Player
[2011.08.18 15:05:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\OpenCandy
[2007.04.14 23:39:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\PC Suite
[2011.01.15 20:12:38 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Pinnacle Systems
[2010.04.07 17:24:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Programme
[2011.10.05 08:52:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Spyware Terminator
[2006.11.24 03:05:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Steinberg
[2011.03.05 14:48:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Teleca
[2007.08.22 17:43:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Template
[2011.01.16 19:37:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\gitte\Anwendungsdaten\Youtube Downloader HD
[2011.10.05 10:34:23 | 000,000,484 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*. >
[2011.09.27 11:23:40 | 000,000,000 | ---D | M] -- C:\Config.Msi
[2009.05.21 10:26:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen
[2009.04.09 10:44:26 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2006.06.10 14:27:01 | 000,000,000 | ---D | M] -- C:\PCM
[2011.04.16 10:10:48 | 000,000,000 | ---D | M] -- C:\PC_Play&Learn
[2007.05.26 15:46:36 | 000,000,000 | ---D | M] -- C:\Program Files
[2011.10.05 08:49:36 | 000,000,000 | R--D | M] -- C:\Programme
[2006.08.22 21:10:13 | 000,000,000 | -HSD | M] -- C:\RECYCLER
[2010.12.19 21:25:38 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2011.09.26 21:34:28 | 000,000,000 | ---D | M] -- C:\Temp
[2011.10.05 10:34:22 | 000,000,000 | ---D | M] -- C:\WINDOWS

< %PROGRAMFILES%\*.exe >

Invalid Environment Variable: LOCALAPPDATA

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.manifest /3 >
[4 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< MD5 for: EXPLORER.EXE >
[2004.08.04 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) MD5=22FE1BE02EADDE1632E478E4125639E0 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) MD5=418045A93CD87A352098AB7DABE1B53E -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) MD5=418045A93CD87A352098AB7DABE1B53E -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe

< MD5 for: REGEDIT.EXE >
[2004.08.04 14:00:00 | 000,153,600 | ---- | M] (Microsoft Corporation) MD5=8193CE5FB09E83F2699FD65BBCBE2FD2 -- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe
[2004.08.04 14:00:00 | 000,153,600 | ---- | M] (Microsoft Corporation) MD5=8193CE5FB09E83F2699FD65BBCBE2FD2 -- C:\WINDOWS\I386\REGEDIT.EXE
[2008.04.14 04:22:58 | 000,153,600 | ---- | M] (Microsoft Corporation) MD5=AD9226BF3CED13636083BB9C76E9D2A2 -- C:\WINDOWS\regedit.exe
[2008.04.14 04:22:58 | 000,153,600 | ---- | M] (Microsoft Corporation) MD5=AD9226BF3CED13636083BB9C76E9D2A2 -- C:\WINDOWS\ServicePackFiles\i386\regedit.exe

< MD5 for: USERINIT.EXE >
[2008.04.14 04:23:03 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:23:03 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\WINDOWS\system32\userinit.exe
[2004.08.04 14:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D1E53DC57143F2584B1DD53B036C0633 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.04 14:00:00 | 000,507,392 | ---- | M] (Microsoft Corporation) MD5=2B6A0BAF33A9918F09442D873848FF72 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:23:05 | 000,513,024 | ---- | M] (Microsoft Corporation) MD5=F09A527B422E25C478E38CAA0E44417A -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:23:05 | 000,513,024 | ---- | M] (Microsoft Corporation) MD5=F09A527B422E25C478E38CAA0E44417A -- C:\WINDOWS\system32\winlogon.exe

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-10-04 18:15:15

< >

========== Files - Unicode (All) ==========
[2009.03.29 02:10:11 | 000,019,968 | ---- | M] ()(C:\Dokumente und Einstellungen\gitte\Eigene Dateien\?? ?????.doc) -- C:\Dokumente und Einstellungen\gitte\Eigene Dateien\ты жжошь.doc
[2009.03.29 02:10:11 | 000,019,968 | ---- | C] ()(C:\Dokumente und Einstellungen\gitte\Eigene Dateien\?? ?????.doc) -- C:\Dokumente und Einstellungen\gitte\Eigene Dateien\ты жжошь.doc

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\PC-Gebrauchsanweisung.pdf:SummaryInformation

< End of report >

Google Suchergebnisse leiten falsch weiter

Log-Analyse und Auswertung: Google Suchergebnisse leiten falsch weiter

Google Suchergebnisse leiten falsch weiter

Ähnliche Themen: Google Suchergebnisse leiten falsch weiter