Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows aus Sicherheitsgründe gesperrt - zahle € 50.-

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.12.2011, 20:32   #1
GALEAN
 
Windows aus Sicherheitsgründe gesperrt - zahle € 50.- - Standard

Windows aus Sicherheitsgründe gesperrt - zahle € 50.-



Hallo,

habe in einem anderen thread schon gelesen was i etwa zu tun ist,
habe im abgesicherten Modus mit Eingabeaufforderung die otl.exe kopiert, aber wie geht es jetzt weiter (..., Logs zurück auf den Stick und hier posten)...
wie geht das mit den Logs.

Sorry für die Frage, kenn mich nicht gaz so gut aus.

Aber hoffe auf Eure Unterstützung.

Vielen Dank!

Alt 12.12.2011, 21:25   #2
GALEAN
 
Windows aus Sicherheitsgründe gesperrt - zahle € 50.- - Standard

Windows aus Sicherheitsgründe gesperrt - zahle € 50.-



OTL logfileOTL Logfile:
Code:
ATTFilter
OTL logfile created on: 12.12.2011 22:02:48 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Dokumente und Einstellungen\Daniel
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,50 Gb Total Physical Memory | 1,25 Gb Available Physical Memory | 83,17% Memory free
2,36 Gb Paging File | 2,30 Gb Available in Paging File | 97,80% Paging File free
Paging file location(s): C:\pagefile.sys 1024 2000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74,55 Gb Total Space | 6,29 Gb Free Space | 8,44% Space Free | Partition Type: NTFS
Drive D: | 68,64 Gb Total Space | 17,83 Gb Free Space | 25,98% Space Free | Partition Type: NTFS
Drive E: | 5,85 Gb Total Space | 1,38 Gb Free Space | 23,60% Space Free | Partition Type: FAT32
Drive G: | 1,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive M: | 959,97 Mb Total Space | 950,20 Mb Free Space | 98,98% Space Free | Partition Type: FAT
 
Computer Name: NAME-T7VR1BO5TN | User Name: Daniel | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
PRC - [2008.04.14 03:22:38 | 000,401,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe
 
 
========== Modules (No Company Name) ==========
 
 
========== Win32 Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] --  -- (VACompManService)
SRV - File not found [Auto | Stopped] --  -- (AppMgmt)
SRV - [2011.10.24 21:32:00 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2011.04.28 17:38:26 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.06.09 17:19:11 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.01.03 16:07:48 | 000,246,520 | ---- | M] () [Auto | Stopped] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2007.01.31 13:55:42 | 000,096,370 | ---- | M] (Canon Inc.) [Auto | Stopped] -- C:\Programme\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2005.11.14 00:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004.10.15 09:15:18 | 000,040,960 | ---- | M] (VeriSign, Inc.) [Auto | Stopped] -- C:\Programme\VeriSign\NAVI\naviagent.exe -- (navi)
SRV - [2003.07.28 11:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003.06.20 08:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe -- (MDM)
SRV - [2003.05.05 19:30:22 | 000,065,536 | ---- | M] (Brother Industries, Ltd.) [Auto | Stopped] -- C:\WINDOWS\System32\Brmfrmps.exe -- (brmfrmps)
SRV - [2002.09.20 15:41:02 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
SRV - [2002.09.20 15:29:30 | 000,053,248 | ---- | M] (Computer Associates) [Auto | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
SRV - [2002.09.20 15:27:06 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2011.06.30 23:19:36 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.06.30 23:19:36 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.05.10 07:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009.12.13 21:22:21 | 000,028,256 | ---- | M] (MusicMatch, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\MxlW2k.sys -- (MxlW2k)
DRV - [2009.05.11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009.05.11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007.02.08 11:56:20 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1unic.sys -- (sea1unic) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM)
DRV - [2007.02.08 11:56:06 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1obex.sys -- (sea1obex)
DRV - [2007.02.08 11:56:02 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1nd5.sys -- (sea1nd5) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS)
DRV - [2007.02.08 11:56:00 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mgmt.sys -- (sea1mgmt) Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM)
DRV - [2007.02.08 11:55:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdm.sys -- (sea1mdm)
DRV - [2007.02.08 11:55:50 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdfl.sys -- (sea1mdfl)
DRV - [2007.02.08 11:55:40 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1bus.sys -- (sea1bus) Sony Ericsson Device 0A1 driver (WDM)
DRV - [2007.02.02 21:03:25 | 001,975,296 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.02.27 06:46:20 | 000,081,408 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005.11.22 17:08:32 | 000,223,128 | ---- | M] (DT Soft Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi)
DRV - [2005.11.22 17:02:17 | 000,664,064 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2005.09.26 15:02:50 | 000,362,944 | ---- | M] (NETGEAR, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WPN111.sys -- (WPN111)
DRV - [2005.07.18 13:34:22 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial)
DRV - [2005.07.18 13:34:20 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus)
DRV - [2004.06.07 17:40:32 | 000,029,440 | ---- | M] (Siemens AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\actser.sys -- (actser)
DRV - [2004.01.20 22:52:00 | 000,051,493 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc53.sys -- (ctxc53)
DRV - [2004.01.20 22:51:32 | 001,086,853 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc51.sys -- (ctxc51)
DRV - [2004.01.20 22:50:36 | 000,619,369 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc52.sys -- (ctxc52)
DRV - [2004.01.20 22:49:56 | 000,031,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mohfilt.sys -- (mohfilt)
DRV - [2003.12.05 17:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.11.28 19:18:46 | 000,337,216 | R--- | M] (NETGEAR, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wg121nd5.sys -- (wg121)
DRV - [2003.07.24 11:10:34 | 000,017,149 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\DNINDIS5.sys -- (DNINDIS5)
DRV - [2003.06.12 08:47:42 | 000,024,704 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune)
DRV - [2003.06.05 08:04:22 | 000,350,752 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134) MEDION (7134)
DRV - [2003.06.02 15:28:02 | 000,040,060 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ulink.sys -- (Usblink)
DRV - [2001.08.17 14:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Kostenlose E-Mail - Free Mail - E-Cards - Arcor das Newsportal
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Search
IE - HKLM\..\URLSearchHook:  - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKLM\..\URLSearchHook: {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = hxxp://www.medion.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = Kostenlose E-Mail - Free Mail - E-Cards - Arcor das Newsportal
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
IE - HKCU\..\URLSearchHook:  - No CLSID value found
IE - HKCU\..\URLSearchHook: _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - No CLSID value found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13: C:\Programme\Google\Google Updater\2.4.1368.5602\npCIDetect13.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.10.835: C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1136: C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.847: C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Programme\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\System32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla 1.7.2\Extensions\\Components: C:\Programme\mozilla.org\Mozilla\Components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla 1.7.2\Extensions\\Plugins: C:\Programme\mozilla.org\Mozilla\Plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Programme\Mozilla Thunderbird\components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Programme\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla 1.7.2\Extensions\\Components: C:\Programme\mozilla.org\Mozilla\Components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla 1.7.2\Extensions\\Plugins: C:\Programme\mozilla.org\Mozilla\Plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
 
[2010.07.07 01:47:48 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Extensions
[2010.07.07 01:47:48 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011.12.07 10:42:10 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions
[2010.04.05 14:04:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.04.04 23:36:01 | 000,000,000 | ---D | M] (YouTube Downloader for Facebook) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{2122962a-1424-fffe-19af-bba2ef3eff4a}
[2010.04.01 21:34:25 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.05.21 18:29:11 | 000,000,000 | ---D | M] (FBFan) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA99}
[2010.06.28 17:41:06 | 000,000,000 | ---D | M] (QAssistant) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
[2011.12.07 10:42:10 | 000,000,000 | ---D | M] (Zynga Community Toolbar) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011.12.01 01:40:24 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.11.06 05:15:09 | 000,000,000 | ---D | M] (Feedback module) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
[2011.11.13 02:11:32 | 000,000,000 | ---D | M] (Cooliris) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\piclens@cooliris.com
[2011.07.07 18:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2007.06.13 03:16:29 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Programme\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.04.17 21:23:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.06.18 22:29:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.04.17 13:47:11 | 000,000,000 | ---D | M] (Long Titles) -- C:\PROGRAMME\HAUFE\IDESK\IDESKBROWSER\EXTENSIONS\{C24AECC7-7C95-507F-D71F-155CB86656DF}
[2011.09.04 06:50:59 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2011.05.04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll
[2011.09.04 06:50:53 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.09.04 06:50:53 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2011.09.04 06:50:53 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.04 06:50:53 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.04 06:50:53 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.04 06:50:53 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.07.06 23:23:15 | 000,412,104 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1	www.007guard.com
O1 - Hosts: 127.0.0.1	007guard.com
O1 - Hosts: 127.0.0.1	008i.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	010402.com
O1 - Hosts: 127.0.0.1	www.032439.com
O1 - Hosts: 127.0.0.1	032439.com
O1 - Hosts: 127.0.0.1	www.100888290cs.com
O1 - Hosts: 127.0.0.1	100888290cs.com
O1 - Hosts: 127.0.0.1	100sexlinks.com - Informationen zum Thema Sex links. Diese Website steht zum Verkauf!
O1 - Hosts: 127.0.0.1	100sexlinks.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	Index of /
O1 - Hosts: 127.0.0.1	123topsearch.com
O1 - Hosts: 127.0.0.1	132???
O1 - Hosts: 127.0.0.1	132.com
O1 - Hosts: 127.0.0.1	www.136136.net
O1 - Hosts: 127.0.0.1	136136.net
O1 - Hosts: 127.0.0.1	?,,?,?,,??,??,?,?
O1 - Hosts: 127.0.0.1	163ns.com
O1 - Hosts: 14238 more lines...
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (GdfrDUEn Class) - {A3CF7606-E683-4375-A372-96B75DA0AEF7} - C:\Programme\Get Styles\enlbrdr.dll (TODO: <Company name>)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (Google Inc.)
O2 - BHO: (i-Nav IDN Resolver) - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {0494D0D9-F8E0-41AD-92A3-14154ECE70AC} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Auto Run Software for Photo Frame]  File not found
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe (Chicony)
O4 - HKLM..\Run: [Cmaudio] C:\WINDOWS\CMICNFG.CPL (C-Media Corporation)
O4 - HKLM..\Run: [ControlCenter2.0] C:\Programme\Brother\ControlCenter2\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [Dit] C:\WINDOWS\Dit.exe ()
O4 - HKLM..\Run: [LexwareInfoService] C:\Programme\Gemeinsame Dateien\Lexware\Update Manager\LxUpdateManager.exe (Lexware GmbH & Co. KG)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [SetDefPrt] C:\Programme\Brother\Brmfl04a\BrStDvPt.exe (Brother Industories, Ltd.)
O4 - HKCU..\Run: [{8FD7FE32-FA60-11D8-BAF5-806D6172696F}] C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Microsoft\hostrun.exe (Auslogics)
O4 - HKCU..\Run: [{D54B024A-683B-377A-1493-995C8840137F}] "C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Tyryel\ugodp.exe" File not found
O4 - HKCU..\Run: [Alamandi tray notifier] C:\Programme\Intenium\Alamandi\TaskBarNotifier.exe File not found
O4 - HKCU..\Run: [Auto Run Software for Photo Frame]  File not found
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\NETGEAR WPN111 Smart Wizard.lnk = C:\Programme\NETGEAR\WPN111\WPN111.exe (NETGEAR)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &ICQ Toolbar Search - C:\Programme\ICQToolbar\toolbaru.dll (ICQ Inc.)
O8 - Extra context menu item: An vorhandenes PDF anfügen - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: In Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm ()
O9 - Extra 'Tools' menuitem : GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm ()
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O9 - Extra Button: Hilfe zu i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - hxxp://idn.verisign-grs.com/plug-in/support/index.jsp File not found
O9 - Extra 'Tools' menuitem : Hilfe zu i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - hxxp://idn.verisign-grs.com/plug-in/support/index.jsp File not found
O9 - Extra 'Tools' menuitem : Optionen für i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains:   ([]msn in My Computer)
O15 - HKCU\..Trusted Ranges: me ([*] in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc.cab (Office Update Installation Engine)
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} hxxp://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab (SysData Class)
O16 - DPF: {4D054067-DE3A-48F9-B19B-BCD229B9AE8D} hxxp://www.samsungdp.com/printerhelp/ActiveX/DrPrinter.cab (PrinterHelpEtcActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1218780458468 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1219692653781 (MUWebControl Class)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38133.3977430556 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} Java Plug-in Technology (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2845E64-7497-46D5-A6F0-C64A6AF20814}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\haufereader - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\ -qflpmfvh: DllName - (C:\WINDOWS\System32\fawzbo.dll) -  File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\rlx5dom1: DllName - (rlx5dom1.dll) -  File not found
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: UseAlternatShell - 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.30 13:09:52 | 000,000,097 | R--- | M] () - G:\Autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.12.12 21:19:51 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
[2011.12.12 20:58:44 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\Desktop\OTL.exe
[2011.12.07 11:05:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Desktop\Unterlagen H&S
[2011.12.05 02:35:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\ran Boxen Felix Sturm
[2011.12.05 02:35:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\Wetten, dass
[2011.11.26 16:31:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\iTunes
[2011.11.26 16:30:11 | 000,000,000 | ---D | C] -- C:\Programme\iPod
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.12.12 21:18:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.12 21:16:27 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2011.12.12 21:16:17 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.12 20:59:47 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{CB4BF0D7-393D-4409-BB0D-32219D12CF7F}.job
[2011.12.12 20:57:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
[2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\Desktop\OTL.exe
[2011.12.07 16:11:02 | 000,001,214 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3688027282-1919446203-2092502414-1008UA.job
[2011.12.07 16:07:01 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.07 12:59:44 | 000,035,298 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\wklnhst.dat
[2011.12.01 18:11:00 | 000,001,162 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3688027282-1919446203-2092502414-1008Core.job
[2011.11.29 00:20:48 | 000,176,632 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Europcar2011.pdf
[2011.11.29 00:14:24 | 000,141,719 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Kreditkarte23112011.pdf
[2011.11.26 16:31:36 | 000,001,526 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\iTunes.lnk
[2011.11.22 23:29:26 | 000,187,109 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0718.jpg
[2011.11.22 22:51:46 | 000,061,813 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_6462.JPG
[2011.11.22 22:48:22 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.11.19 14:11:30 | 000,536,076 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0716.jpg
[2011.11.19 14:11:06 | 000,545,059 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0715.jpg
[2011.11.19 14:10:38 | 000,482,295 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0714.jpg
[2011.11.18 01:07:20 | 000,025,574 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\commerzbanking2.pdf
[2011.11.17 21:12:02 | 000,132,485 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\RV24Dokument[1].pdf
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.11.29 00:20:45 | 000,176,632 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Europcar2011.pdf
[2011.11.29 00:14:24 | 000,141,719 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Kreditkarte23112011.pdf
[2011.11.26 16:31:36 | 000,001,526 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\iTunes.lnk
[2011.11.22 22:51:43 | 000,061,813 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_6462.JPG
[2011.11.19 00:06:39 | 000,187,109 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0718.jpg
[2011.11.19 00:05:10 | 000,536,076 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0716.jpg
[2011.11.19 00:05:05 | 000,545,059 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0715.jpg
[2011.11.19 00:04:48 | 000,482,295 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0714.jpg
[2011.11.18 01:07:20 | 000,025,574 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\commerzbanking2.pdf
[2011.11.17 21:12:02 | 000,132,485 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\RV24Dokument[1].pdf
[2011.02.16 00:28:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2011.02.15 21:58:30 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2011.02.15 21:56:38 | 000,000,092 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2011.02.15 21:56:37 | 000,000,230 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2011.02.15 21:56:37 | 000,000,050 | ---- | C] () -- C:\WINDOWS\System32\BRIDF04A.dat
[2011.02.15 21:56:34 | 000,000,425 | ---- | C] () -- C:\WINDOWS\brwmark.ini
[2011.02.15 21:56:34 | 000,000,079 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2011.02.15 21:53:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\brdfxspd.dat
[2010.06.07 21:22:29 | 000,482,408 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2010.06.07 21:19:39 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\cl31cl3.dll
[2010.04.30 00:44:36 | 000,067,084 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.02.11 08:58:56 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\detoured.dll
[2009.08.27 21:35:15 | 000,149,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.bin
[2009.06.09 17:40:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2009.06.09 17:40:49 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2009.06.09 17:40:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2008.10.26 14:25:50 | 000,000,022 | ---- | C] () -- C:\WINDOWS\kodakpcd.Daniel.ini
[2008.08.26 15:39:13 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2007.12.09 07:06:56 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007.08.20 15:52:33 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\opnnt.bin
[2007.08.20 07:25:51 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\ksl48.bin
[2007.06.18 00:27:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\kernel32.exe
[2007.04.06 01:01:03 | 000,000,058 | ---- | C] () -- C:\WINDOWS\movexe.ini
[2007.03.03 00:09:17 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2007.03.03 00:08:57 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007.03.03 00:05:06 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2007.02.02 20:40:11 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2007.01.30 17:21:34 | 000,128,813 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2007.01.26 00:04:12 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.01.26 00:04:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2006.08.31 00:39:26 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2006.06.28 20:30:58 | 000,005,358 | ---- | C] () -- C:\WINDOWS\System32\drivers\M5633.bin
[2006.06.28 20:30:41 | 000,040,060 | ---- | C] () -- C:\WINDOWS\System32\drivers\ulink.sys
[2006.02.08 20:26:02 | 000,000,305 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\addr_file.html
[2006.02.03 06:50:57 | 000,457,568 | ---- | C] () -- C:\WINDOWS\System32\kkpgaenc.dat
[2006.02.03 06:50:43 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\efua9orh.dat
[2005.11.28 02:11:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\AUTORUN.INI
[2005.11.22 17:02:17 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd7565.sys
[2005.11.22 01:19:22 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\mlcrs0ft.dll
[2005.11.21 00:45:42 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.11.01 01:37:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mstse.exe
[2005.09.16 15:04:51 | 000,000,084 | ---- | C] () -- C:\WINDOWS\wints.ini
[2005.09.16 15:04:51 | 000,000,017 | ---- | C] () -- C:\WINDOWS\cds.ini
[2005.07.18 13:34:22 | 000,047,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\vserial.sys
[2005.07.18 13:34:20 | 000,015,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\vsb.sys
[2005.07.18 13:25:40 | 000,000,497 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2005.07.17 00:13:18 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\yorhn.dat
[2005.07.12 17:10:49 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\xwcrjs.dat
[2005.07.08 03:41:51 | 000,002,884 | ---- | C] () -- C:\WINDOWS\d.ini
[2005.07.08 03:41:19 | 000,000,232 | ---- | C] () -- C:\WINDOWS\System32\fawzboa.dll
[2005.06.08 22:24:03 | 000,147,592 | ---- | C] () -- C:\WINDOWS\System32\5b8jsjbu.dat
[2005.06.08 22:24:03 | 000,063,192 | ---- | C] () -- C:\WINDOWS\System32\lc5f5iam.dat
[2005.06.08 22:24:03 | 000,002,722 | ---- | C] () -- C:\WINDOWS\System32\4fq21h9v.dat
[2005.06.08 22:24:03 | 000,001,944 | ---- | C] () -- C:\WINDOWS\System32\4d1afiae.dat
[2005.06.08 22:24:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\keu6oh96.dat
[2005.06.08 22:23:59 | 000,004,391 | ---- | C] () -- C:\WINDOWS\System32\b82nscgp.ini
[2005.06.08 22:23:59 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\im232d58.ini
[2005.06.08 22:23:59 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\aj197umc.ini
[2005.05.30 20:30:32 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2004.09.14 16:27:35 | 000,000,280 | ---- | C] () -- C:\WINDOWS\hpovwr05.INI
[2004.09.14 02:56:16 | 000,000,121 | ---- | C] () -- C:\WINDOWS\telephon.ini
[2004.09.14 02:44:25 | 000,696,320 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\XCMHook.dll
[2004.09.14 02:44:25 | 000,024,576 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\XCPCMenu.exe
[2004.09.10 19:32:56 | 000,006,688 | ---- | C] () -- C:\WINDOWS\movexe.exe
[2004.09.10 19:28:09 | 000,149,504 | ---- | C] () -- C:\WINDOWS\Unwise32.exe
[2004.09.10 19:28:09 | 000,006,067 | ---- | C] () -- C:\WINDOWS\Unwise32.ini
[2004.09.09 14:08:36 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\FTPStubInstUtils.dll
[2004.09.07 14:07:44 | 000,000,232 | ---- | C] () -- C:\WINDOWS\HPODJC05.INI
[2004.09.07 14:07:41 | 000,001,949 | ---- | C] () -- C:\WINDOWS\HPOCSS05.INI
[2004.09.07 14:07:41 | 000,000,555 | ---- | C] () -- C:\WINDOWS\HPOTBX05.INI
[2004.09.07 14:06:05 | 000,000,065 | ---- | C] () -- C:\WINDOWS\opleinst.ini
[2004.09.06 16:52:52 | 000,105,168 | ---- | C] () -- C:\WINDOWS\MozillaUninstall.exe
[2004.09.06 16:52:46 | 000,105,168 | ---- | C] () -- C:\WINDOWS\GREUninstall.exe
[2004.09.06 16:52:45 | 000,008,825 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2004.09.03 17:36:12 | 000,035,298 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\wklnhst.dat
[2004.08.30 09:52:31 | 000,043,008 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004.08.30 09:52:31 | 000,000,139 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2004.05.28 21:10:16 | 000,000,135 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2004.05.28 20:08:03 | 000,000,574 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004.05.28 14:24:31 | 000,000,006 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2004.05.27 15:51:13 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004.05.27 12:08:06 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2004.05.27 12:08:06 | 000,000,491 | ---- | C] () -- C:\WINDOWS\Instit.ini
[2004.05.27 07:42:41 | 004,142,932 | ---- | C] () -- C:\WINDOWS\System32\DETour.exe
[2004.05.26 18:01:30 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2004.05.26 17:51:05 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2004.05.26 17:34:30 | 000,003,776 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004.05.26 17:21:16 | 000,000,047 | ---- | C] () -- C:\WINDOWS\InoSetup.ini
[2004.05.26 17:01:56 | 000,073,728 | ---- | C] () -- C:\WINDOWS\Dit.exe
[2004.05.26 17:01:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\DitExp.exe
[2004.05.26 17:01:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\Dit.DLL
[2004.05.26 17:01:56 | 000,000,208 | ---- | C] () -- C:\WINDOWS\Dit.INI
[2004.05.26 16:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004.05.26 16:55:38 | 000,317,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004.05.26 16:28:52 | 000,233,472 | ---- | C] () -- C:\WINDOWS\CMIRMDRV.EXE
[2004.05.26 16:28:52 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRMDRV.DLL
[2004.05.26 16:28:52 | 000,003,424 | ---- | C] () -- C:\WINDOWS\cmiainfo.sys
[2004.05.26 16:28:52 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2004.05.26 16:28:52 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2004.05.26 16:28:50 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2004.05.26 16:28:50 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2004.05.26 16:28:50 | 000,000,284 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2004.05.26 16:28:49 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2004.05.26 16:28:49 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2004.05.26 16:28:49 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2004.05.26 16:08:21 | 000,000,863 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004.05.26 16:03:17 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004.05.26 16:00:19 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004.05.26 15:51:27 | 000,000,970 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004.05.26 15:51:19 | 000,472,418 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2004.05.26 15:51:19 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2004.05.26 15:51:19 | 000,091,096 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2004.05.26 15:51:19 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2004.05.26 15:51:04 | 000,455,048 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.05.26 15:51:04 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.05.26 15:51:04 | 000,077,882 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.05.26 15:51:04 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.05.26 15:51:03 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.05.26 15:51:03 | 000,004,518 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.05.26 15:51:01 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004.05.26 15:50:57 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.05.26 15:50:57 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.05.26 15:50:52 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.05.26 15:50:43 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002.09.17 23:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2002.05.23 18:40:44 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\mpfilecom.dll
[2001.10.25 14:22:52 | 000,005,361 | ---- | C] () -- C:\WINDOWS\System32\hpolnk05.ini
[2001.10.25 14:22:50 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\hpomon05.dll
[2001.10.10 08:57:58 | 000,073,786 | ---- | C] () -- C:\WINDOWS\System32\dntvmc23.dll
[2001.10.10 08:57:58 | 000,061,497 | ---- | C] () -- C:\WINDOWS\System32\dntvm23.dll
[2001.03.07 08:02:30 | 000,229,431 | ---- | C] () -- C:\WINDOWS\System32\dnt23.dll
[2000.04.14 15:50:02 | 000,343,040 | ---- | C] () -- C:\WINDOWS\System32\Lffpx7.dll
[1998.06.11 13:08:06 | 000,095,232 | ---- | C] () -- C:\WINDOWS\System32\Lfkodak.dll

< End of report >
         
--- --- ---
__________________


Alt 12.12.2011, 21:27   #3
GALEAN
 
Windows aus Sicherheitsgründe gesperrt - zahle € 50.- - Standard

Windows aus Sicherheitsgründe gesperrt - zahle € 50.-



OTL logfileOTL Logfile:
Code:
ATTFilter
OTL logfile created on: 12.12.2011 22:02:48 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Dokumente und Einstellungen\Daniel
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,50 Gb Total Physical Memory | 1,25 Gb Available Physical Memory | 83,17% Memory free
2,36 Gb Paging File | 2,30 Gb Available in Paging File | 97,80% Paging File free
Paging file location(s): C:\pagefile.sys 1024 2000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74,55 Gb Total Space | 6,29 Gb Free Space | 8,44% Space Free | Partition Type: NTFS
Drive D: | 68,64 Gb Total Space | 17,83 Gb Free Space | 25,98% Space Free | Partition Type: NTFS
Drive E: | 5,85 Gb Total Space | 1,38 Gb Free Space | 23,60% Space Free | Partition Type: FAT32
Drive G: | 1,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive M: | 959,97 Mb Total Space | 950,20 Mb Free Space | 98,98% Space Free | Partition Type: FAT
 
Computer Name: NAME-T7VR1BO5TN | User Name: Daniel | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
PRC - [2008.04.14 03:22:38 | 000,401,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe
 
 
========== Modules (No Company Name) ==========
 
 
========== Win32 Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] --  -- (VACompManService)
SRV - File not found [Auto | Stopped] --  -- (AppMgmt)
SRV - [2011.10.24 21:32:00 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2011.04.28 17:38:26 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.06.09 17:19:11 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.01.03 16:07:48 | 000,246,520 | ---- | M] () [Auto | Stopped] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2007.01.31 13:55:42 | 000,096,370 | ---- | M] (Canon Inc.) [Auto | Stopped] -- C:\Programme\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2005.11.14 00:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004.10.15 09:15:18 | 000,040,960 | ---- | M] (VeriSign, Inc.) [Auto | Stopped] -- C:\Programme\VeriSign\NAVI\naviagent.exe -- (navi)
SRV - [2003.07.28 11:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003.06.20 08:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe -- (MDM)
SRV - [2003.05.05 19:30:22 | 000,065,536 | ---- | M] (Brother Industries, Ltd.) [Auto | Stopped] -- C:\WINDOWS\System32\Brmfrmps.exe -- (brmfrmps)
SRV - [2002.09.20 15:41:02 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
SRV - [2002.09.20 15:29:30 | 000,053,248 | ---- | M] (Computer Associates) [Auto | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
SRV - [2002.09.20 15:27:06 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2011.06.30 23:19:36 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.06.30 23:19:36 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.05.10 07:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009.12.13 21:22:21 | 000,028,256 | ---- | M] (MusicMatch, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\MxlW2k.sys -- (MxlW2k)
DRV - [2009.05.11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009.05.11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007.02.08 11:56:20 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1unic.sys -- (sea1unic) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM)
DRV - [2007.02.08 11:56:06 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1obex.sys -- (sea1obex)
DRV - [2007.02.08 11:56:02 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1nd5.sys -- (sea1nd5) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS)
DRV - [2007.02.08 11:56:00 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mgmt.sys -- (sea1mgmt) Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM)
DRV - [2007.02.08 11:55:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdm.sys -- (sea1mdm)
DRV - [2007.02.08 11:55:50 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdfl.sys -- (sea1mdfl)
DRV - [2007.02.08 11:55:40 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1bus.sys -- (sea1bus) Sony Ericsson Device 0A1 driver (WDM)
DRV - [2007.02.02 21:03:25 | 001,975,296 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.02.27 06:46:20 | 000,081,408 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005.11.22 17:08:32 | 000,223,128 | ---- | M] (DT Soft Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi)
DRV - [2005.11.22 17:02:17 | 000,664,064 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2005.09.26 15:02:50 | 000,362,944 | ---- | M] (NETGEAR, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WPN111.sys -- (WPN111)
DRV - [2005.07.18 13:34:22 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial)
DRV - [2005.07.18 13:34:20 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus)
DRV - [2004.06.07 17:40:32 | 000,029,440 | ---- | M] (Siemens AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\actser.sys -- (actser)
DRV - [2004.01.20 22:52:00 | 000,051,493 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc53.sys -- (ctxc53)
DRV - [2004.01.20 22:51:32 | 001,086,853 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc51.sys -- (ctxc51)
DRV - [2004.01.20 22:50:36 | 000,619,369 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctxc52.sys -- (ctxc52)
DRV - [2004.01.20 22:49:56 | 000,031,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mohfilt.sys -- (mohfilt)
DRV - [2003.12.05 17:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.11.28 19:18:46 | 000,337,216 | R--- | M] (NETGEAR, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wg121nd5.sys -- (wg121)
DRV - [2003.07.24 11:10:34 | 000,017,149 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\DNINDIS5.sys -- (DNINDIS5)
DRV - [2003.06.12 08:47:42 | 000,024,704 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune)
DRV - [2003.06.05 08:04:22 | 000,350,752 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134) MEDION (7134)
DRV - [2003.06.02 15:28:02 | 000,040,060 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ulink.sys -- (Usblink)
DRV - [2001.08.17 14:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Kostenlose E-Mail - Free Mail - E-Cards - Arcor das Newsportal
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Search
IE - HKLM\..\URLSearchHook:  - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKLM\..\URLSearchHook: {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = hxxp://www.medion.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = Kostenlose E-Mail - Free Mail - E-Cards - Arcor das Newsportal
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
IE - HKCU\..\URLSearchHook:  - No CLSID value found
IE - HKCU\..\URLSearchHook: _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - No CLSID value found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13: C:\Programme\Google\Google Updater\2.4.1368.5602\npCIDetect13.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.10.835: C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1136: C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.847: C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Programme\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\System32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla 1.7.2\Extensions\\Components: C:\Programme\mozilla.org\Mozilla\Components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla 1.7.2\Extensions\\Plugins: C:\Programme\mozilla.org\Mozilla\Plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Programme\Mozilla Thunderbird\components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Programme\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla 1.7.2\Extensions\\Components: C:\Programme\mozilla.org\Mozilla\Components [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla 1.7.2\Extensions\\Plugins: C:\Programme\mozilla.org\Mozilla\Plugins [2011.10.31 20:59:50 | 000,000,000 | ---D | M]
 
[2010.07.07 01:47:48 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Extensions
[2010.07.07 01:47:48 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011.12.07 10:42:10 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions
[2010.04.05 14:04:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.04.04 23:36:01 | 000,000,000 | ---D | M] (YouTube Downloader for Facebook) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{2122962a-1424-fffe-19af-bba2ef3eff4a}
[2010.04.01 21:34:25 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.05.21 18:29:11 | 000,000,000 | ---D | M] (FBFan) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA99}
[2010.06.28 17:41:06 | 000,000,000 | ---D | M] (QAssistant) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{63414328-3ab4-2c84-6c41-5a473c4b2ff7}
[2011.12.07 10:42:10 | 000,000,000 | ---D | M] (Zynga Community Toolbar) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011.12.01 01:40:24 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.11.06 05:15:09 | 000,000,000 | ---D | M] (Feedback module) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\{8675f4b3-2f19-11ed-2d6b-0800600c0a19}
[2011.11.13 02:11:32 | 000,000,000 | ---D | M] (Cooliris) -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Mozilla\Firefox\Profiles\z7hnljej.default\extensions\piclens@cooliris.com
[2011.07.07 18:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2007.06.13 03:16:29 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Programme\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.04.17 21:23:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.06.18 22:29:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.04.17 13:47:11 | 000,000,000 | ---D | M] (Long Titles) -- C:\PROGRAMME\HAUFE\IDESK\IDESKBROWSER\EXTENSIONS\{C24AECC7-7C95-507F-D71F-155CB86656DF}
[2011.09.04 06:50:59 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2011.05.04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll
[2011.09.04 06:50:53 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.09.04 06:50:53 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2011.09.04 06:50:53 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.04 06:50:53 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.04 06:50:53 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.04 06:50:53 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.07.06 23:23:15 | 000,412,104 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1	www.007guard.com
O1 - Hosts: 127.0.0.1	007guard.com
O1 - Hosts: 127.0.0.1	008i.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	010402.com
O1 - Hosts: 127.0.0.1	www.032439.com
O1 - Hosts: 127.0.0.1	032439.com
O1 - Hosts: 127.0.0.1	www.100888290cs.com
O1 - Hosts: 127.0.0.1	100888290cs.com
O1 - Hosts: 127.0.0.1	100sexlinks.com - Informationen zum Thema Sex links. Diese Website steht zum Verkauf!
O1 - Hosts: 127.0.0.1	100sexlinks.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	Index of /
O1 - Hosts: 127.0.0.1	123topsearch.com
O1 - Hosts: 127.0.0.1	132???
O1 - Hosts: 127.0.0.1	132.com
O1 - Hosts: 127.0.0.1	www.136136.net
O1 - Hosts: 127.0.0.1	136136.net
O1 - Hosts: 127.0.0.1	?,,?,?,,??,??,?,?
O1 - Hosts: 127.0.0.1	163ns.com
O1 - Hosts: 14238 more lines...
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (GdfrDUEn Class) - {A3CF7606-E683-4375-A372-96B75DA0AEF7} - C:\Programme\Get Styles\enlbrdr.dll (TODO: <Company name>)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (Google Inc.)
O2 - BHO: (i-Nav IDN Resolver) - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {0494D0D9-F8E0-41AD-92A3-14154ECE70AC} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Auto Run Software for Photo Frame]  File not found
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe (Chicony)
O4 - HKLM..\Run: [Cmaudio] C:\WINDOWS\CMICNFG.CPL (C-Media Corporation)
O4 - HKLM..\Run: [ControlCenter2.0] C:\Programme\Brother\ControlCenter2\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [Dit] C:\WINDOWS\Dit.exe ()
O4 - HKLM..\Run: [LexwareInfoService] C:\Programme\Gemeinsame Dateien\Lexware\Update Manager\LxUpdateManager.exe (Lexware GmbH & Co. KG)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [SetDefPrt] C:\Programme\Brother\Brmfl04a\BrStDvPt.exe (Brother Industories, Ltd.)
O4 - HKCU..\Run: [{8FD7FE32-FA60-11D8-BAF5-806D6172696F}] C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Microsoft\hostrun.exe (Auslogics)
O4 - HKCU..\Run: [{D54B024A-683B-377A-1493-995C8840137F}] "C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\Tyryel\ugodp.exe" File not found
O4 - HKCU..\Run: [Alamandi tray notifier] C:\Programme\Intenium\Alamandi\TaskBarNotifier.exe File not found
O4 - HKCU..\Run: [Auto Run Software for Photo Frame]  File not found
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\NETGEAR WPN111 Smart Wizard.lnk = C:\Programme\NETGEAR\WPN111\WPN111.exe (NETGEAR)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &ICQ Toolbar Search - C:\Programme\ICQToolbar\toolbaru.dll (ICQ Inc.)
O8 - Extra context menu item: An vorhandenes PDF anfügen - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: In Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm ()
O9 - Extra 'Tools' menuitem : GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm ()
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O9 - Extra Button: Hilfe zu i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - hxxp://idn.verisign-grs.com/plug-in/support/index.jsp File not found
O9 - Extra 'Tools' menuitem : Hilfe zu i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - hxxp://idn.verisign-grs.com/plug-in/support/index.jsp File not found
O9 - Extra 'Tools' menuitem : Optionen für i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Programme\VeriSign\i-Nav\i-nav_4_2_1.dll (VeriSign, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains:   ([]msn in My Computer)
O15 - HKCU\..Trusted Ranges: me ([*] in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc.cab (Office Update Installation Engine)
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} hxxp://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab (SysData Class)
O16 - DPF: {4D054067-DE3A-48F9-B19B-BCD229B9AE8D} hxxp://www.samsungdp.com/printerhelp/ActiveX/DrPrinter.cab (PrinterHelpEtcActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1218780458468 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1219692653781 (MUWebControl Class)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38133.3977430556 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} Java Plug-in Technology (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2845E64-7497-46D5-A6F0-C64A6AF20814}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\haufereader - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\ -qflpmfvh: DllName - (C:\WINDOWS\System32\fawzbo.dll) -  File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\rlx5dom1: DllName - (rlx5dom1.dll) -  File not found
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: UseAlternatShell - 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.30 13:09:52 | 000,000,097 | R--- | M] () - G:\Autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.12.12 21:19:51 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
[2011.12.12 20:58:44 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\Desktop\OTL.exe
[2011.12.07 11:05:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Desktop\Unterlagen H&S
[2011.12.05 02:35:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\ran Boxen Felix Sturm
[2011.12.05 02:35:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\Wetten, dass
[2011.11.26 16:31:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\iTunes
[2011.11.26 16:30:11 | 000,000,000 | ---D | C] -- C:\Programme\iPod
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.12.12 21:18:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.12 21:16:27 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2011.12.12 21:16:17 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.12 20:59:47 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{CB4BF0D7-393D-4409-BB0D-32219D12CF7F}.job
[2011.12.12 20:57:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\OTL.exe
[2011.12.07 23:43:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Daniel\Desktop\OTL.exe
[2011.12.07 16:11:02 | 000,001,214 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3688027282-1919446203-2092502414-1008UA.job
[2011.12.07 16:07:01 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.07 12:59:44 | 000,035,298 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\wklnhst.dat
[2011.12.01 18:11:00 | 000,001,162 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3688027282-1919446203-2092502414-1008Core.job
[2011.11.29 00:20:48 | 000,176,632 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Europcar2011.pdf
[2011.11.29 00:14:24 | 000,141,719 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Kreditkarte23112011.pdf
[2011.11.26 16:31:36 | 000,001,526 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\iTunes.lnk
[2011.11.22 23:29:26 | 000,187,109 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0718.jpg
[2011.11.22 22:51:46 | 000,061,813 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_6462.JPG
[2011.11.22 22:48:22 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.11.19 14:11:30 | 000,536,076 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0716.jpg
[2011.11.19 14:11:06 | 000,545,059 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0715.jpg
[2011.11.19 14:10:38 | 000,482,295 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0714.jpg
[2011.11.18 01:07:20 | 000,025,574 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\commerzbanking2.pdf
[2011.11.17 21:12:02 | 000,132,485 | ---- | M] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\RV24Dokument[1].pdf
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.11.29 00:20:45 | 000,176,632 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Europcar2011.pdf
[2011.11.29 00:14:24 | 000,141,719 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\Kreditkarte23112011.pdf
[2011.11.26 16:31:36 | 000,001,526 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\iTunes.lnk
[2011.11.22 22:51:43 | 000,061,813 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_6462.JPG
[2011.11.19 00:06:39 | 000,187,109 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0718.jpg
[2011.11.19 00:05:10 | 000,536,076 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0716.jpg
[2011.11.19 00:05:05 | 000,545,059 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0715.jpg
[2011.11.19 00:04:48 | 000,482,295 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Eigene Dateien\IMG_0714.jpg
[2011.11.18 01:07:20 | 000,025,574 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\commerzbanking2.pdf
[2011.11.17 21:12:02 | 000,132,485 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Desktop\RV24Dokument[1].pdf
[2011.02.16 00:28:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2011.02.15 21:58:30 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2011.02.15 21:56:38 | 000,000,092 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2011.02.15 21:56:37 | 000,000,230 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2011.02.15 21:56:37 | 000,000,050 | ---- | C] () -- C:\WINDOWS\System32\BRIDF04A.dat
[2011.02.15 21:56:34 | 000,000,425 | ---- | C] () -- C:\WINDOWS\brwmark.ini
[2011.02.15 21:56:34 | 000,000,079 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2011.02.15 21:53:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\brdfxspd.dat
[2010.06.07 21:22:29 | 000,482,408 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2010.06.07 21:19:39 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\cl31cl3.dll
[2010.04.30 00:44:36 | 000,067,084 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.02.11 08:58:56 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\detoured.dll
[2009.08.27 21:35:15 | 000,149,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.bin
[2009.06.09 17:40:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2009.06.09 17:40:49 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2009.06.09 17:40:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2008.10.26 14:25:50 | 000,000,022 | ---- | C] () -- C:\WINDOWS\kodakpcd.Daniel.ini
[2008.08.26 15:39:13 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2007.12.09 07:06:56 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007.08.20 15:52:33 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\opnnt.bin
[2007.08.20 07:25:51 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\ksl48.bin
[2007.06.18 00:27:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\kernel32.exe
[2007.04.06 01:01:03 | 000,000,058 | ---- | C] () -- C:\WINDOWS\movexe.ini
[2007.03.03 00:09:17 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2007.03.03 00:08:57 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007.03.03 00:05:06 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2007.02.02 20:40:11 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2007.01.30 17:21:34 | 000,128,813 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2007.01.26 00:04:12 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.01.26 00:04:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2006.08.31 00:39:26 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2006.06.28 20:30:58 | 000,005,358 | ---- | C] () -- C:\WINDOWS\System32\drivers\M5633.bin
[2006.06.28 20:30:41 | 000,040,060 | ---- | C] () -- C:\WINDOWS\System32\drivers\ulink.sys
[2006.02.08 20:26:02 | 000,000,305 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\addr_file.html
[2006.02.03 06:50:57 | 000,457,568 | ---- | C] () -- C:\WINDOWS\System32\kkpgaenc.dat
[2006.02.03 06:50:43 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\efua9orh.dat
[2005.11.28 02:11:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\AUTORUN.INI
[2005.11.22 17:02:17 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd7565.sys
[2005.11.22 01:19:22 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\mlcrs0ft.dll
[2005.11.21 00:45:42 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.11.01 01:37:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mstse.exe
[2005.09.16 15:04:51 | 000,000,084 | ---- | C] () -- C:\WINDOWS\wints.ini
[2005.09.16 15:04:51 | 000,000,017 | ---- | C] () -- C:\WINDOWS\cds.ini
[2005.07.18 13:34:22 | 000,047,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\vserial.sys
[2005.07.18 13:34:20 | 000,015,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\vsb.sys
[2005.07.18 13:25:40 | 000,000,497 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2005.07.17 00:13:18 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\yorhn.dat
[2005.07.12 17:10:49 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\xwcrjs.dat
[2005.07.08 03:41:51 | 000,002,884 | ---- | C] () -- C:\WINDOWS\d.ini
[2005.07.08 03:41:19 | 000,000,232 | ---- | C] () -- C:\WINDOWS\System32\fawzboa.dll
[2005.06.08 22:24:03 | 000,147,592 | ---- | C] () -- C:\WINDOWS\System32\5b8jsjbu.dat
[2005.06.08 22:24:03 | 000,063,192 | ---- | C] () -- C:\WINDOWS\System32\lc5f5iam.dat
[2005.06.08 22:24:03 | 000,002,722 | ---- | C] () -- C:\WINDOWS\System32\4fq21h9v.dat
[2005.06.08 22:24:03 | 000,001,944 | ---- | C] () -- C:\WINDOWS\System32\4d1afiae.dat
[2005.06.08 22:24:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\keu6oh96.dat
[2005.06.08 22:23:59 | 000,004,391 | ---- | C] () -- C:\WINDOWS\System32\b82nscgp.ini
[2005.06.08 22:23:59 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\im232d58.ini
[2005.06.08 22:23:59 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\aj197umc.ini
[2005.05.30 20:30:32 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2004.09.14 16:27:35 | 000,000,280 | ---- | C] () -- C:\WINDOWS\hpovwr05.INI
[2004.09.14 02:56:16 | 000,000,121 | ---- | C] () -- C:\WINDOWS\telephon.ini
[2004.09.14 02:44:25 | 000,696,320 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\XCMHook.dll
[2004.09.14 02:44:25 | 000,024,576 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\XCPCMenu.exe
[2004.09.10 19:32:56 | 000,006,688 | ---- | C] () -- C:\WINDOWS\movexe.exe
[2004.09.10 19:28:09 | 000,149,504 | ---- | C] () -- C:\WINDOWS\Unwise32.exe
[2004.09.10 19:28:09 | 000,006,067 | ---- | C] () -- C:\WINDOWS\Unwise32.ini
[2004.09.09 14:08:36 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\FTPStubInstUtils.dll
[2004.09.07 14:07:44 | 000,000,232 | ---- | C] () -- C:\WINDOWS\HPODJC05.INI
[2004.09.07 14:07:41 | 000,001,949 | ---- | C] () -- C:\WINDOWS\HPOCSS05.INI
[2004.09.07 14:07:41 | 000,000,555 | ---- | C] () -- C:\WINDOWS\HPOTBX05.INI
[2004.09.07 14:06:05 | 000,000,065 | ---- | C] () -- C:\WINDOWS\opleinst.ini
[2004.09.06 16:52:52 | 000,105,168 | ---- | C] () -- C:\WINDOWS\MozillaUninstall.exe
[2004.09.06 16:52:46 | 000,105,168 | ---- | C] () -- C:\WINDOWS\GREUninstall.exe
[2004.09.06 16:52:45 | 000,008,825 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2004.09.03 17:36:12 | 000,035,298 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Anwendungsdaten\wklnhst.dat
[2004.08.30 09:52:31 | 000,043,008 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004.08.30 09:52:31 | 000,000,139 | ---- | C] () -- C:\Dokumente und Einstellungen\Daniel\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2004.05.28 21:10:16 | 000,000,135 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2004.05.28 20:08:03 | 000,000,574 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004.05.28 14:24:31 | 000,000,006 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2004.05.27 15:51:13 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004.05.27 12:08:06 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2004.05.27 12:08:06 | 000,000,491 | ---- | C] () -- C:\WINDOWS\Instit.ini
[2004.05.27 07:42:41 | 004,142,932 | ---- | C] () -- C:\WINDOWS\System32\DETour.exe
[2004.05.26 18:01:30 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2004.05.26 17:51:05 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2004.05.26 17:34:30 | 000,003,776 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004.05.26 17:21:16 | 000,000,047 | ---- | C] () -- C:\WINDOWS\InoSetup.ini
[2004.05.26 17:01:56 | 000,073,728 | ---- | C] () -- C:\WINDOWS\Dit.exe
[2004.05.26 17:01:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\DitExp.exe
[2004.05.26 17:01:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\Dit.DLL
[2004.05.26 17:01:56 | 000,000,208 | ---- | C] () -- C:\WINDOWS\Dit.INI
[2004.05.26 16:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004.05.26 16:55:38 | 000,317,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004.05.26 16:28:52 | 000,233,472 | ---- | C] () -- C:\WINDOWS\CMIRMDRV.EXE
[2004.05.26 16:28:52 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRMDRV.DLL
[2004.05.26 16:28:52 | 000,003,424 | ---- | C] () -- C:\WINDOWS\cmiainfo.sys
[2004.05.26 16:28:52 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2004.05.26 16:28:52 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2004.05.26 16:28:50 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2004.05.26 16:28:50 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2004.05.26 16:28:50 | 000,000,284 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2004.05.26 16:28:49 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2004.05.26 16:28:49 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2004.05.26 16:28:49 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2004.05.26 16:08:21 | 000,000,863 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004.05.26 16:03:17 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004.05.26 16:00:19 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004.05.26 15:51:27 | 000,000,970 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004.05.26 15:51:19 | 000,472,418 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2004.05.26 15:51:19 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2004.05.26 15:51:19 | 000,091,096 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2004.05.26 15:51:19 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2004.05.26 15:51:04 | 000,455,048 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.05.26 15:51:04 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.05.26 15:51:04 | 000,077,882 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.05.26 15:51:04 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.05.26 15:51:03 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.05.26 15:51:03 | 000,004,518 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.05.26 15:51:01 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004.05.26 15:50:57 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.05.26 15:50:57 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.05.26 15:50:52 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.05.26 15:50:43 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002.09.17 23:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2002.05.23 18:40:44 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\mpfilecom.dll
[2001.10.25 14:22:52 | 000,005,361 | ---- | C] () -- C:\WINDOWS\System32\hpolnk05.ini
[2001.10.25 14:22:50 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\hpomon05.dll
[2001.10.10 08:57:58 | 000,073,786 | ---- | C] () -- C:\WINDOWS\System32\dntvmc23.dll
[2001.10.10 08:57:58 | 000,061,497 | ---- | C] () -- C:\WINDOWS\System32\dntvm23.dll
[2001.03.07 08:02:30 | 000,229,431 | ---- | C] () -- C:\WINDOWS\System32\dnt23.dll
[2000.04.14 15:50:02 | 000,343,040 | ---- | C] () -- C:\WINDOWS\System32\Lffpx7.dll
[1998.06.11 13:08:06 | 000,095,232 | ---- | C] () -- C:\WINDOWS\System32\Lfkodak.dll

< End of report >
         
--- --- ---
__________________

Alt 12.12.2011, 21:32   #4
GALEAN
 
Windows aus Sicherheitsgründe gesperrt - zahle € 50.- - Standard

Windows aus Sicherheitsgründe gesperrt - zahle € 50.-



OTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 12.12.2011 22:02:48 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Dokumente und Einstellungen\Daniel
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,50 Gb Total Physical Memory | 1,25 Gb Available Physical Memory | 83,17% Memory free
2,36 Gb Paging File | 2,30 Gb Available in Paging File | 97,80% Paging File free
Paging file location(s): C:\pagefile.sys 1024 2000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74,55 Gb Total Space | 6,29 Gb Free Space | 8,44% Space Free | Partition Type: NTFS
Drive D: | 68,64 Gb Total Space | 17,83 Gb Free Space | 25,98% Space Free | Partition Type: NTFS
Drive E: | 5,85 Gb Total Space | 1,38 Gb Free Space | 23,60% Space Free | Partition Type: FAT32
Drive G: | 1,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive M: | 959,97 Mb Total Space | 950,20 Mb Free Space | 98,98% Space Free | Partition Type: FAT
 
Computer Name: NAME-T7VR1BO5TN | User Name: Daniel | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Programme\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Programme\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Programme\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 1
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
========== System Restore Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Programme\ICQ7.1\ICQ.exe" = C:\Programme\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Programme\ICQ7.1\aolload.exe" = C:\Programme\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programme\ICQLite\ICQLite.exe" = C:\Programme\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite
"C:\Programme\Winamp Remote\bin\Orb.exe" = C:\Programme\Winamp Remote\bin\Orb.exe:*:Enabled:Orb -- (Orb Networks, Inc.)
"C:\Programme\Winamp Remote\bin\OrbTray.exe" = C:\Programme\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray -- (Orb Networks)
"C:\Programme\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Programme\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- (Orb Networks)
"C:\Programme\ICQ7.1\ICQ.exe" = C:\Programme\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Programme\ICQ7.1\aolload.exe" = C:\Programme\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"C:\Programme\Pinnacle\VideoSpin\Programs\RM.exe" = C:\Programme\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"C:\Programme\Pinnacle\VideoSpin\Programs\umi.exe" = C:\Programme\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"C:\Programme\Pinnacle\VideoSpin\Programs\VideoSpin.exe" = C:\Programme\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin -- (Pinnacle Systems)
"C:\Programme\Steam\Steam.exe" = C:\Programme\Steam\Steam.exe:*:Enabled:Steam
"G:\DVD-START.EXE" = G:\DVD-START.EXE:*:Enabled:Schnellstart-DVD -- (Deutsche Telekom AG)
"C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03ED6584-5A5A-4CA3-B61D-741618E510DF}" = Steuer 2008
"{04440044-9149-45C6-A806-F2BF9CFCE762}" = Microsoft Encarta Enzyklopädie 2004
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.5.4
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 26
"{282F034F-85A0-4B7B-9C7A-780413CD9810}_is1" = 1.8.5
"{28E30152-32C5-4152-8C87-6C638E695CEC}" = Steuer Update 15.09
"{2C4A5877-21D1-4A15-9D20-24BA54A24093}" = Playlist tool
"{30C10EE3-EFB3-4B7A-9CDC-50790C2B5200}" = CA Licensing
"{3127F76D-5335-4AC7-BD1E-2F5247A23C24}" = iTunes
"{3248F0A8-6813-11D6-A77B-00B0D0150030}" = J2SE Runtime Environment 5.0 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B7458C7-3F03-4415-AC39-D51EDEACDCCC}" = Steuer 2007
"{3D1A6B70-3E02-49BC-88B0-916C80274632}" = Informationen über Ihren PC
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{40A6C96D-808E-41DD-8716-617AB6B0F1F1}" = Brother MFL-Pro Suite
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{43DCF766-6838-4F9A-8C91-D92DA586DFA7}" = Microsoft Windows-Journal-Viewer
"{45EBDA59-D33B-433A-956E-B2F236468B56}" = MUSICMATCH® Jukebox
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EAD2E21-1D4A-4E2B-A082-8D08961539C9}" = Microsoft Works Suite-Add-Ins für Microsoft Word
"{515E1B00-E2B4-4975-9900-95F66077C3AE}" = eTrust Antivirus Registration
"{528EC8F4-1C19-41BA-80A1-0B5EA21BA628}" = maxx PDFMAILER Standard
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{582E9125-32B6-4CBA-AB48-3E33CE3DB389}" = NETGEAR RangeMax(TM) Wireless USB 2.0 Adapter WPN111
"{5B680750-760B-49E4-81E7-21B2B337F9F7}" = Microsoft Works
"{5E453519-60F6-4A4D-A0BF-16663F9B3536}" = Safari
"{5E8C42DD-7E43-462C-84CC-99E5BBE3E101}" = Steuer 2007
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{6181E138-C21C-471C-9238-F2F59C314C6C}" = Steuer 2008
"{67DABCB4-239C-4E02-805E-DEA0DDCB1926}" = Steuer Hilfesammlung
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{69496452-FAF3-43BC-9907-BA9CEC65FC10}" = Lexware Info Service
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7148F0A8-6813-11D6-A77B-00B0D0142000}" = Java 2 Runtime Environment, SE v1.4.2
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}" = Windows-Sicherungsprogramm
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7975F72A-A13A-401A-97B4-4AFFE5D04E02}" = TMPGEnc 4.0 XPress Testversion
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{8704D51E-25B7-4F23-81E7-AA4F54790220}" = Microsoft AutoRoute v11.0
"{8937FCB2-2FC6-4FC3-9FB5-DE2C92DB9C38}" = Microsoft .NET Framework 2.0 Language Pack - DEU
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90170407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{90FF23FE-0E1B-40DF-A22E-B4C0372E5936}" = Iomega Product Registration
"{926BD0E8-24A3-41D2-AF9B-340F1A37ED12}" = MobileMe Control Panel
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1033-F400-BA7E-000000000003}" = Adobe Acrobat  8 Standard - English, Français, Deutsch
"{AC76BA86-7AD7-1031-7B44-A94000000001}" = Adobe Reader 9.4.6 - Deutsch
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
"{B09DFBF9-9148-4070-A493-69D71455D983}_is1" = Artweaver
"{B754B683-E23C-4583-9312-50AD86836B42}" = Steuer Hilfesammlung
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5C8E140-6E6F-11DD-9AA9-0050560400B1}" = Haufe iDesk-Service
"{DBA8B9E1-C6FF-4624-9598-73D3B41A0903}" = Microsoft Picture It! Foto Premium 9
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EA1CB7AC-E221-4822-A789-0ADB051DC498}" = Medion Flash XL
"{EC2F8A30-787F-4DA5-9A8F-8E7DFE777CC2}" = Servicepack Datumsaktualisierung
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F48AAE0F-52F4-11DD-B1F7-0050560400B1}" = Haufe iDesk-Browser
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = HighMAT-Erweiterung für den Microsoft Windows XP-Assistenten zum Schreiben von CDs
"{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}" = Pinnacle VideoSpin
"Adobe Acrobat  8 Standard - English, Français, Deutsch" = Adobe Acrobat 8.1.0 Standard
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"All ATI Software" = ATI - Software Uninstall Utility
"ArtMoney SE_is1" = ArtMoney SE v7.22
"ATI Display Driver" = ATI Display Driver
"Audio Conversion Wizard_is1" = Audio Conversion Wizard 1.4
"Audio/Video To MP3 Maker_is1" = Audio/Video To MP3 Maker version 3.0
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS Screen Capture_is1" = AVS Screen Capture version 1.1.2
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS Video Editor_is1" = AVS Video Editor 5
"AVS Video Recorder_is1" = AVS Video Recorder 2.4
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"CAL" = Canon Camera Access Library
"CameraWindowDC" = Canon Utilities CameraWindow DC
"CameraWindowDVC6" = Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
"CameraWindowLauncher" = Canon Utilities CameraWindow
"CANON iMAGE GATEWAY Task" = CANON iMAGE GATEWAY Task for ZoomBrowser EX
"Canon Internet Library for ZoomBrowser EX" = Canon Internet Library for ZoomBrowser EX
"Canon MOV Decoder" = Canon MOV Decoder
"Canon MOV Encoder" = Canon MOV Encoder
"CCleaner" = CCleaner (remove only)
"Chrono SuperOcean" = Chrono SuperOcean Screen Saver
"C-Media Audio" = C-Media 3D Audio
"Creatix V.9X data fax modem" = Creatix V.9X data fax modem
"DivX Codec" = Remove DivX Codec
"Elecard MPEG Player 4.0.3.60412" = Elecard MPEG Player
"FLV Player" = FLV Player 2.0 (build 25)
"FLVPlayer" = FLV Player 1.3.3
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2
"Free MOV to AVI Converter_is1" = Free MOV to AVI Converter 1.2
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.3
"FUSSBALL MANAGER 08" = FUSSBALL MANAGER 08
"Get Styles" = Get Styles
"Glary Utilities_is1" = Glary Utilities 2.26.0.956
"GOM Player" = GOM Player
"Google Updater" = Google Updater
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"i-nav" = VeriSign i-Nav and Components
"IrfanView" = IrfanView (remove only)
"LingoDict_is1" = LingoDict 2.1
"MediaShow" = Medi@Show
"MegaChecksum_is1" = MegaChecksum V1.0.0.0
"MegaTrainer XL_is1" = MegaTrainer XL V1.5.7.1
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - DEU" = Microsoft .NET Framework 2.0 Language Pack - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MovieEditTask" = Canon MovieEdit Task for ZoomBrowser EX
"Mozilla (1.7.2)" = Mozilla (1.7.2)
"Mozilla Firefox 6.0.1 (x86 de)" = Mozilla Firefox 6.0.1 (x86 de)
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MyCamera" = Canon Utilities MyCamera
"MyCameraDC" = Canon Utilities MyCamera DC
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NeroVision!UninstallKey" = NeroVision Express 2
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NMPUninstallKey" = Nero Media Player
"Orb" = Winamp Remote
"Philips Photo Manager_is1" = Philips Photo Manager 1.1
"PhotoStitch" = Canon Utilities PhotoStitch
"PictureIt_v9" = Microsoft Picture It! Foto Premium 9
"RealPlayer 6.0" = RealOne Player
"Redtube Video Downloader_is1" = Redtube Video Downloader 3.22
"RemoteCaptureTask" = Canon Utilities RemoteCapture Task for ZoomBrowser EX
"Samsung CLP-310 Series" = Samsung CLP-310 Series
"SDvdCopy" = Super DVD Copy (remove only)
"Shockwave" = Shockwave
"StreetPlugin" = Learn2 Player (Uninstall Only)
"Uninstall_is1" = Uninstall 1.0.0.1
"ViewpointMediaPlayer" = Viewpoint Media Player
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR Archivierer
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Works2004Setup" = Setup-Start von Microsoft Works 2004
"WS_FTP Pro" = Ipswitch WS_FTP Pro
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX
"ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 06.11.2011 01:53:00 | Computer Name = NAME-T7VR1BO5TN | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung iexplore.exe, Version 8.0.6001.18702, fehlgeschlagenes
 Modul mshtml.dll, Version 8.0.6001.19154, Fehleradresse 0x000da5cc.
 
Error - 17.11.2011 12:05:32 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung iexplore.exe, Version 8.0.6001.18702, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 17.11.2011 20:04:19 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung firefox.exe, Version 6.0.1.4259, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 26.11.2011 23:37:01 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung Acrobat.exe, Version 8.1.0.137, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 28.11.2011 18:47:47 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung iexplore.exe, Version 8.0.6001.18702, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 30.11.2011 09:10:36 | Computer Name = NAME-T7VR1BO5TN | Source = crypt32 | ID = 131080
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer
 von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
 ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung
 zurückgegeben.  .
 
Error - 01.12.2011 07:26:57 | Computer Name = NAME-T7VR1BO5TN | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung ssmmgr.exe, Version 3.2.2.5, fehlgeschlagenes
 Modul ssmmgr.exe, Version 3.2.2.5, Fehleradresse 0x0003d805.
 
Error - 03.12.2011 22:20:48 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung firefox.exe, Version 6.0.1.4259, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 03.12.2011 22:21:56 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung firefox.exe, Version 6.0.1.4259, Stillstandmodul
 hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
 
Error - 03.12.2011 22:21:59 | Computer Name = NAME-T7VR1BO5TN | Source = Application Hang | ID = 1001
Description = Fehlerhafter Speicherbereich -1707371435.
 
[ System Events ]
Error - 12.12.2011 16:15:47 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "VBFilter" ist vom Dienst "VBRec" abhängig, der aufgrund
 folgenden Fehlers nicht gestartet wurde:   %%2
 
Error - 12.12.2011 16:20:01 | Computer Name = NAME-T7VR1BO5TN | Source = DCOM | ID = 10005
Description = Bei DCOM ist der Fehler "%1084" aufgetreten, als der Dienst "EventSystem"
 mit den Argumenten ""  gestartet wurde, um den folgenden Server zu verwenden:  {1BE1F766-5536-11D1-B726-00C04FB926AF}
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "DHCP-Client" ist vom Dienst "NetBios über TCP/IP" abhängig,
 der aufgrund folgenden Fehlers nicht gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "DNS-Client" ist vom Dienst "TCP/IP-Protokolltreiber" abhängig,
 der aufgrund folgenden Fehlers nicht gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "TCP/IP-NetBIOS-Hilfsprogramm" ist vom Dienst "Umgebung
 für die AFD-Netzwerkunterstützung" abhängig, der aufgrund folgenden Fehlers nicht
 gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Apple Mobile Device" ist vom Dienst "TCP/IP-Protokolltreiber"
 abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Dienst "Bonjour"" ist vom Dienst "TCP/IP-Protokolltreiber"
 abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "IPSEC-Dienste" ist vom Dienst "IPSEC-Treiber" abhängig,
 der aufgrund folgenden Fehlers nicht gestartet wurde:   %%31
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Anwendungsverwaltung" wurde mit folgendem Fehler beendet:
   %%126
 
Error - 12.12.2011 16:20:19 | Computer Name = NAME-T7VR1BO5TN | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   AFD  avgio  avipbb  Fips  intelppm  IPSec  MRxSmb  NetBIOS  NetBT  RasAcd  Rdbss  ssmdrv  Tcpip
 
 
< End of report >
         
--- --- ---

Antwort

Themen zu Windows aus Sicherheitsgründe gesperrt - zahle € 50.-
abgesicherte, abgesicherten, abgesicherten modus, andere, anderen, eingabeaufforderung, frage, gesperrt, hoffe, kopiert, modus, otl.exe, poste, posten, sicherheitsgründe, stick, thread, windows



Ähnliche Themen: Windows aus Sicherheitsgründe gesperrt - zahle € 50.-


  1. Pc gesperrt.Zahle 100 Euro.Was nun?
    Plagegeister aller Art und deren Bekämpfung - 14.02.2013 (52)
  2. GVU-Trojaner, Laptop gesperrt bis ich 100€ zahle
    Plagegeister aller Art und deren Bekämpfung - 03.12.2012 (13)
  3. Polizei, Computer gesperrt, zahle 100 EUR
    Plagegeister aller Art und deren Bekämpfung - 11.06.2012 (12)
  4. Aus sicherheitsgründe wurde ihr system blockiert! Was nun?
    Log-Analyse und Auswertung - 17.04.2012 (18)
  5. Windows geblockt zahle 50 Euro
    Log-Analyse und Auswertung - 10.04.2012 (11)
  6. windows security center: ihr computer wurde gesperrt. zahle 100 euro
    Plagegeister aller Art und deren Bekämpfung - 15.03.2012 (6)
  7. Windows gesperrt... zahle 100€...
    Plagegeister aller Art und deren Bekämpfung - 11.03.2012 (10)
  8. Windows wurde blockiert - zahle 50 Euro
    Log-Analyse und Auswertung - 06.03.2012 (13)
  9. Win 7 Pro SP1 - Windows geblockt Zahle 50€
    Log-Analyse und Auswertung - 15.02.2012 (5)
  10. Gesperrtes Windows, Zahle 50 € zum entsperren
    Log-Analyse und Auswertung - 07.02.2012 (4)
  11. Windows blokiert zahle 50€ um es zu entsperren
    Log-Analyse und Auswertung - 03.01.2012 (4)
  12. Windows System aus Sicherheitsgründen gesperrt-Zahle 50€
    Log-Analyse und Auswertung - 02.01.2012 (15)
  13. Windows 7 64bit gesperrt zahle 50€
    Log-Analyse und Auswertung - 28.12.2011 (3)
  14. Windows aus Sicherheitsgründen gesperrt. Zahle 50 € UCash
    Plagegeister aller Art und deren Bekämpfung - 18.12.2011 (6)
  15. Windows aus Sicherheitsgründen gesperrt. Zahle 50 Euro
    Plagegeister aller Art und deren Bekämpfung - 18.12.2011 (1)
  16. Windows aus Sicherheitsgründen gesperrt. Zahle 50 Euro
    Log-Analyse und Auswertung - 17.12.2011 (1)
  17. Windows aus Sicherheitsgründen gesperrt. Zahle 50 €
    Plagegeister aller Art und deren Bekämpfung - 12.12.2011 (7)

Zum Thema Windows aus Sicherheitsgründe gesperrt - zahle € 50.- - Hallo, habe in einem anderen thread schon gelesen was i etwa zu tun ist, habe im abgesicherten Modus mit Eingabeaufforderung die otl.exe kopiert, aber wie geht es jetzt weiter (..., - Windows aus Sicherheitsgründe gesperrt - zahle € 50.-...
Archiv
Du betrachtest: Windows aus Sicherheitsgründe gesperrt - zahle € 50.- auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.