Zurück   Trojaner-Board > Archiv - Kein Posten möglich > Mülltonne

Mülltonne: PC fährt nicht hoch, mit Fehlermeldung

Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne...

 
Alt 18.03.2013, 14:08   #1
kennelly7
 
PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



holl lieber freunde,

ich habe auch das prob. mit dem blauen bildschirm!

habe windows vista premium home und zudem war alles vorinstalliert auf meinen acer labtop!

gestern war mein mcaffe schutz abgelaufen und ich wollte mir über chip online avira virenschutz besorgen.

ich sollte,zwecks inkompatibilität mcaffe deinstallieren.das habe ich auch...zum schluss sollte der neustart des pc die sache abschließen....und dann kam dieser blöde blaue bildschirm.

ich kam nichtmal bis zum destop!

habe mir die fehlermeldungen notiert,durch euren trick mit dem neustart.

also:technical info

stop:0x0000008E(0xC0000005,0x00000000,0x9DD14A48,0x00000000)

ich bin kein pc freak und beschädtige mich nur schulbezogen mit excel,word und co...ansonten bin ich ein kleiner fisch in info!

also bitte gebt mir ne lösung,die ich nachvollziehen kann!

wäre euch sehr dankbar.

sorry falls ich irgendwas nicht forumregeltechnisch beachtet hab,bin neuling!

Alt 19.03.2013, 00:39   #2
cad
/// caddy ☀
 

PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



Zitat:
Zitat von kennelly7 Beitrag anzeigen
sorry falls ich irgendwas nicht forumregeltechnisch beachtet hab,bin neuling!
Hab den Beitrag in einen eigenen Thread verwandelt, bitte nicht in bestehenden Themen posten, sondern immer ein eigenes Thema starten.

Kommst du in den abgesicherten Modus?

Falls ja, besorg dir das McAfee Consumer Products Removal Too, führ es aus und mach einen Neustart.

Funktioniert wieder alles?
__________________

__________________

Alt 19.03.2013, 00:55   #3
kennelly7
 
PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



hab ich gemacht..nein geht immer noch nicht!

ich hab auch noch den mcafee security scan plus drauf?

hatte einen scan mit avira gemacht...der hatte viren angezeigt,konnte aber keine reparieren!

was kann ich noch tun!

dachte echt das klappt,weil durch die inkompatibilität zwischen mcaffe und avira etwas enstanden war?
__________________

Alt 19.03.2013, 01:03   #4
cad
/// caddy ☀
 

PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



Dann wird es Zeit, den PC auf Schädlinge zu untersuchen.

Bitte lies dieses hier durch und eröffne im entsprechenden Unterforum einen neuen Thread.
__________________
Investiere keine Zeit in Jemand oder eine Sache, für die/den du oder die für dich nur eine Option unter Vielen ist


Jede Hilfestellung erfolgt
ohne Gewähr und Haftung



Alt 19.03.2013, 01:47   #5
kennelly7
 
PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



OTL:OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 19.03.2013 01:33:00 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\basty\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 74,75% Memory free
6,19 Gb Paging File | 5,59 Gb Available in Paging File | 90,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,04 Gb Total Space | 91,32 Gb Free Space | 63,40% Space Free | Partition Type: NTFS
Drive D: | 137,50 Gb Total Space | 137,41 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
 
Computer Name: BASTY-PC | User Name: basty | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.03.19 01:32:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\basty\Downloads\OTL (1).exe
PRC - [2008.10.29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.01.21 03:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnscfg.exe
PRC - [2008.01.21 03:24:02 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013.03.17 20:02:19 | 004,537,856 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.3.0\libglesv2.dll
MOD - [2013.03.17 20:02:19 | 000,100,864 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.3.0\libegl.dll
MOD - [2013.03.11 01:22:06 | 000,459,728 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
MOD - [2013.03.11 01:22:05 | 012,662,224 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\PepperFlash\pepflashplayer.dll
MOD - [2013.03.11 01:22:04 | 004,050,896 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\pdf.dll
MOD - [2013.03.11 01:21:16 | 001,552,848 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\ffmpegsumo.dll
MOD - [2013.03.03 11:28:14 | 000,237,056 | ---- | M] () -- C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\ctb.dll
 
 
========== Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\Spybot -- (SBSDWSCService)
SRV - [2013.03.14 01:39:30 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.03.13 16:26:27 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.03.01 16:26:20 | 000,101,888 | ---- | M] (Freemake) [Auto | Stopped] -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe -- (Freemake Improver)
SRV - [2013.02.05 16:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Programme\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2013.01.28 20:16:25 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013.01.28 20:16:05 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012.12.17 10:45:22 | 000,058,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Windows\TEMP\AVSETUP_51460294\avupgsvc.exe -- (AviraUpgradeService)
SRV - [2012.11.13 00:28:29 | 004,539,712 | ---- | M] () [Auto | Stopped] -- c:\program files\common files\akamai/netsession_win_ce5ba24.dll -- (Akamai)
SRV - [2012.09.20 23:14:46 | 000,830,048 | ---- | M] () [Auto | Stopped] -- C:\Programme\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe -- (vToolbarUpdater12.1.3)
SRV - [2011.07.20 04:18:24 | 000,440,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2011.07.07 18:31:08 | 000,195,336 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Programme\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011.06.15 16:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011.01.28 17:10:28 | 000,387,072 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Programme\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.08.13 09:13:32 | 000,066,112 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Programme\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper)
SRV - [2010.06.06 15:24:32 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Programme\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.07.09 17:11:26 | 003,520,512 | ---- | M] () [Auto | Stopped] -- C:\Programme\Acer\Acer Bio Protection\BASVC.exe -- (IGBASVC)
SRV - [2009.05.20 19:18:32 | 000,075,048 | ---- | M] () [Auto | Stopped] -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService)
SRV - [2008.07.29 16:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) [Auto | Stopped] -- C:\Programme\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service)
SRV - [2008.07.20 16:45:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2008.05.26 04:43:58 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\System32\vfsFPService.exe -- (vfsFPService)
SRV - [2008.04.30 19:41:12 | 000,815,104 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Programme\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008.04.30 19:10:10 | 000,466,944 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Programme\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008.01.21 03:25:33 | 000,896,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008.01.10 16:03:00 | 000,233,472 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Programme\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2007.12.11 04:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Stopped] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007.12.06 16:15:28 | 000,110,592 | ---- | M] () [Auto | Stopped] -- C:\ACER\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2006.10.26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
SRV - [2001.02.23 09:07:30 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Common Files\microsoft shared\VS7Debug\mdm.exe -- (MDM)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2012.11.27 10:01:26 | 000,083,944 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012.11.22 15:51:13 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2012.11.22 15:50:51 | 000,134,336 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012.09.20 23:14:47 | 000,027,496 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012.08.27 14:50:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2011.01.12 10:03:22 | 000,716,272 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2009.12.24 15:19:56 | 000,087,536 | ---- | M] (CyberLink Corp.) [2011/05/26 10:55:55] [Kernel | Auto | Stopped] -- C:\Programme\Acer Arcade Deluxe\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796})
DRV - [2009.07.09 17:11:22 | 000,043,184 | ---- | M] (Alfa Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AlfaFF.sys -- (AlfaFF)
DRV - [2008.08.01 14:11:00 | 007,549,568 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008.06.25 18:35:06 | 000,044,064 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2008.05.26 04:44:14 | 000,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vfs101x.sys -- (vfs101x)
DRV - [2008.05.19 17:23:00 | 000,047,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E)
DRV - [2008.05.07 11:47:36 | 000,085,136 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008.04.27 23:29:26 | 003,658,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32)
DRV - [2008.03.07 12:46:32 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008.02.29 08:13:38 | 001,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007.12.18 16:12:12 | 000,054,784 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\itecir.sys -- (itecir)
DRV - [2007.05.06 21:44:16 | 000,034,944 | ---- | M] (None) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\mfpec.sys -- (ALIWEHCD)
DRV - [2006.11.02 14:27:34 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Stopped] -- C:\Programme\Launch Manager\DPortIO.sys -- (DritekPortIO)
DRV - [2006.10.20 02:57:12 | 000,010,240 | ---- | M] (None) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mfpvbus.sys -- (WUSBVBus)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0709&m=aspire_8930
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0709&m=aspire_8930
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://search.softonic.com/MOY00096/tb_v1?q={searchTerms}&SearchSource=4&cc=&r=306
IE - HKLM\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Programme\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {71588120-FC17-4463-B07D-2C71FE6E057B}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{71588120-FC17-4463-B07D-2C71FE6E057B}: "URL" = hxxp://go.findrsearch.com/search/web?q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0709&m=aspire_8930
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.softonic.com/MOY00096/tb_v1?SearchSource=10&cc=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\URLSearchHook: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Programme\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {DCDBBF03-BC10-457D-911F-EFB0321D22BE}
IE - HKCU\..\SearchScopes\{13FFB1B9-DF13-4B26-BE73-1C5E85B2C105}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW_deDE335
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=DVSV5&o=15012&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=U9&apn_dtid=&apn_uid=E50A7E08-572B-4F51-ADFF-A6FB31740732&apn_sauid=77583CC4-75D1-4055-B286-B50658F8FFFE
IE - HKCU\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = hxxp://127.0.0.1:4664/search&s=eJuuq9hCxv_cyp9OTRmo-6M2pic?q={searchTerms}
IE - HKCU\..\SearchScopes\{71588120-FC17-4463-B07D-2C71FE6E057B}: "URL" = hxxp://go.findrsearch.com/search/web?q={searchTerms}
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={59D6B65D-11C5-4D81-B514-9C32C8D15EEB}&mid=470ae971357247d08ed5523168b8271a-6ff28a9f14df6b40f8d24be8accd2a4c15fe35c1&lang=de&ds=od011&pr=sa&d=2012-09-21 00:14:48&v=12.1.0.20&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}: "URL" = hxxp://search.bearshare.com/webResults.html?src=ieb&q={searchTerms}
IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB9}: "URL" = hxxp://www.daemon-search.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
IE - HKCU\..\SearchScopes\{B6969434-0CCB-4E63-9BD3-75BBFF3EA83D}: "URL" = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=302398&p={searchTerms}
IE - HKCU\..\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}: "URL" = ${SRCH_SCP_URL}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421;<local>
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "DVDVideoSoftTB Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Search the web (Softonic)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Softonic)"
FF - prefs.js..browser.startup.homepage: "hxxp://search.softonic.com/MOY00096/tb_v1?SearchSource=13&cc="
FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9
FF - prefs.js..extensions.enabledAddons: plugin%40yontoo.com:1.20.02
FF - prefs.js..extensions.enabledAddons: fmconverter%40gmail.com:1.0.0
FF - prefs.js..extensions.enabledAddons: ffxtlbra%40softonic.com:1.6.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - prefs.js..keyword.URL: "hxxp://search.softonic.com/MOY00096/tb_v1?SearchSource=2&cc=&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.1.3\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\basty\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\basty\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\12.1.0.20\ [2012.09.20 23:14:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmconverter@gmail.com: C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2013.03.04 20:15:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.03.17 18:49:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.09.11 19:43:57 | 000,000,000 | ---D | M]
 
[2011.07.31 20:21:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\basty\AppData\Roaming\mozilla\Extensions
[2013.03.19 01:01:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\basty\AppData\Roaming\mozilla\Firefox\Profiles\1r4oi3j7.default\extensions
[2012.08.21 15:36:40 | 000,000,000 | ---D | M] (DVDVideoSoftTB Community Toolbar) -- C:\Users\basty\AppData\Roaming\mozilla\Firefox\Profiles\1r4oi3j7.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}(479)
[2012.06.30 22:13:26 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Users\basty\AppData\Roaming\mozilla\Firefox\Profiles\1r4oi3j7.default\extensions\anttoolbar@ant(478).com
[2013.03.19 01:01:32 | 000,000,000 | ---D | M] (softonic.com) -- C:\Users\basty\AppData\Roaming\mozilla\Firefox\Profiles\1r4oi3j7.default\extensions\ffxtlbra@softonic.com
[2013.02.26 10:25:21 | 000,021,487 | ---- | M] () (No name found) -- C:\Users\basty\AppData\Roaming\mozilla\firefox\profiles\1r4oi3j7.default\extensions\plugin@yontoo.com.xpi
[2012.12.12 22:25:11 | 000,036,098 | ---- | M] () (No name found) -- C:\Users\basty\AppData\Roaming\mozilla\firefox\profiles\1r4oi3j7.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
[2011.08.14 13:55:16 | 000,000,931 | ---- | M] () -- C:\Users\basty\AppData\Roaming\mozilla\firefox\profiles\1r4oi3j7.default\searchplugins\conduit.xml
[2013.03.04 20:16:59 | 000,000,564 | ---- | M] () -- C:\Users\basty\AppData\Roaming\mozilla\firefox\profiles\1r4oi3j7.default\searchplugins\findr.xml
[2013.03.19 01:01:02 | 000,002,060 | ---- | M] () -- C:\Users\basty\AppData\Roaming\mozilla\firefox\profiles\1r4oi3j7.default\searchplugins\softonic.xml
[2012.08.30 10:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2013.03.04 20:15:22 | 000,000,000 | ---D | M] (Freemake Video Converter Plugin) -- C:\PROGRAM FILES\FREEMAKE\FREEMAKE VIDEO CONVERTER\BROWSERPLUGIN\FIREFOX
[2013.03.14 01:39:31 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.02.02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012.08.25 03:49:52 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.09.20 23:14:41 | 000,003,752 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012.08.25 03:49:52 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012.08.25 03:49:52 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012.08.25 03:49:52 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.08.25 03:49:52 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.08.25 03:49:52 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Search the web (Softonic) (Enabled)
CHR - default_search_provider: search_url = hxxp://search.softonic.com/MOY00096/tb_v1?q={searchTerms}&SearchSource=49&cc=
CHR - default_search_provider: suggest_url = 
CHR - homepage: hxxp://search.softonic.com/MOY00096/tb_v1?SearchSource=48&cc=
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\basty\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\basty\AppData\Local\Google\Chrome\Application\25.0.1364.172\pdf.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: AVG Secure Search = C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdgpjclefcppbhifgmbncakhhphkggdb\12.1.0.20_0\
CHR - Extension: Softonic Chrome Toolbar = C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\
CHR - Extension: Freemake Video Converter = C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\
CHR - Extension: DvdVideoSoft Free Youtube Download = C:\Users\basty\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_1\
 
O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Programme\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Programme\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Programme\Softonic\Softonic\1.8.16.10\bh\Softonic.dll (Softonic.com)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Programme\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programme\Yontoo Layers Runtime\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Programme\Softonic\Softonic\1.8.16.10\SoftonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Programme\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Programme\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Programme\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Programme\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Programme\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKCU\..\Toolbar\ShellBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Programme\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Programme\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} - C:\Programme\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\basty\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [DriverScanner] C:\Program Files\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKCU..\Run: [qdfroa] qdfroa File not found
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [AppRemover] C:\Users\basty\AppData\Local\Temp\AppRemover_RunBatchSilently.vbs ()
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Free YouTube Download - C:\Users\basty\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\basty\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - C:\Programme\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Programme\Acer\Acer Bio Protection\PwdBank.exe ()
O9 - Extra 'Tools' menuitem : Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Programme\Acer\Acer Bio Protection\PwdBank.exe ()
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: fritz.repeater ([]* in Lokales Intranet)
O15 - HKCU\..Trusted Domains: localhost ([]http in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: Range2 ([*] in Lokales Intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{05BECE86-702F-41D6-9D5D-C7CD35789BEB}: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Programme\Common Files\microsoft shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Programme\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.3\ViProtocol.dll ()
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programme\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AWinNotifyVitaKey MC3000: DllName - (C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll) - C:\Programme\Acer\Acer Bio Protection\WinNotify.dll (Arachnoid Biometrics Identification Group Corp.)
O24 - Desktop WallPaper: C:\Users\basty\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\basty\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.05 13:16:49 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{2a52a597-9344-11de-a3f0-937375231229}\Shell - "" = AutoRun
O33 - MountPoints2\{2a52a597-9344-11de-a3f0-937375231229}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{2a52a598-9344-11de-a3f0-937375231229}\Shell - "" = AutoRun
O33 - MountPoints2\{2a52a598-9344-11de-a3f0-937375231229}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{58d64ce5-d1d5-11de-8cda-d4803fd702d7}\Shell - "" = AutoRun
O33 - MountPoints2\{58d64ce5-d1d5-11de-8cda-d4803fd702d7}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{8e2bc5da-a7a1-11de-bb4d-8eef6ed34796}\Shell - "" = AutoRun
O33 - MountPoints2\{8e2bc5da-a7a1-11de-bb4d-8eef6ed34796}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{cade841b-81f0-11de-8e6f-00215d6ee78e}\Shell - "" = AutoRun
O33 - MountPoints2\{cade841b-81f0-11de-8e6f-00215d6ee78e}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{cade841c-81f0-11de-8e6f-00215d6ee78e}\Shell - "" = AutoRun
O33 - MountPoints2\{cade841c-81f0-11de-8e6f-00215d6ee78e}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{ce1cf05c-6bbc-11de-a968-00a0d1ac804f}\Shell - "" = AutoRun
O33 - MountPoints2\{ce1cf05c-6bbc-11de-a968-00a0d1ac804f}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{ce1cf0b7-6bbc-11de-a968-00a0d1ac804f}\Shell - "" = AutoRun
O33 - MountPoints2\{ce1cf0b7-6bbc-11de-a968-00a0d1ac804f}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.03.19 01:00:21 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic
[2013.03.19 00:59:51 | 000,000,000 | ---D | C] -- C:\Users\basty\AppData\Roaming\Softonic
[2013.03.19 00:59:39 | 003,178,400 | ---- | C] (McAfee, Inc.) -- C:\Users\basty\Desktop\MCPR-6.0.151.0.exe
[2013.03.18 21:00:14 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013.03.18 10:47:17 | 000,000,000 | ---D | C] -- C:\Users\basty\AppData\Roaming\Avira
[2013.03.18 10:45:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2013.03.18 10:45:40 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2013.03.18 10:45:39 | 000,134,336 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2013.03.18 10:45:39 | 000,083,944 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2013.03.18 10:45:39 | 000,036,552 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2013.03.18 10:45:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2013.03.18 10:45:38 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2013.03.18 10:29:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPCFixer
[2013.03.18 10:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\SmartPCFixer
[2013.03.04 20:16:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Uniblue
[2013.03.04 20:15:53 | 000,000,000 | ---D | C] -- C:\Users\basty\AppData\Roaming\Uniblue
[2013.03.04 20:15:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[2013.03.04 20:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2013.03.04 20:15:24 | 000,000,000 | ---D | C] -- C:\Users\basty\Documents\Freemake
[2013.03.04 20:15:23 | 000,000,000 | ---D | C] -- C:\Users\basty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
[2013.03.04 20:15:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
[2013.03.04 20:15:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Freemake
[2013.03.04 20:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake
[2002.03.11 10:06:30 | 001,822,520 | ---- | C] (Microsoft Corporation) -- C:\Program Files\instmsiw.exe
[2002.03.11 09:45:04 | 001,708,856 | ---- | C] (Microsoft Corporation) -- C:\Program Files\instmsia.exe
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.03.19 01:31:13 | 000,613,696 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2013.03.19 01:31:13 | 000,591,610 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.03.19 01:31:13 | 000,121,640 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2013.03.19 01:31:13 | 000,099,684 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.03.19 01:27:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.03.19 01:26:47 | 311,516,119 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013.03.19 01:25:47 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013.03.19 01:25:47 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013.03.19 01:25:27 | 000,027,839 | ---- | M] () -- C:\ProgramData\nvModes.001
[2013.03.19 01:25:23 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.03.19 01:22:03 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\DriverScanner.job
[2013.03.19 01:22:03 | 000,000,242 | ---- | M] () -- C:\Windows\tasks\PersSecurity.job
[2013.03.19 01:21:53 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2013.03.19 01:19:35 | 000,000,020 | ---- | M] () -- C:\Users\basty\defogger_reenable
[2013.03.19 00:59:46 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Users\basty\Desktop\MCPR-6.0.151.0.exe
[2013.03.19 00:57:05 | 000,002,884 | ---- | M] () -- C:\Users\basty\Documents\cc_20130319_005703.reg
[2013.03.18 13:38:38 | 000,001,356 | ---- | M] () -- C:\Users\basty\AppData\Local\d3d9caps.dat
[2013.03.18 11:03:00 | 000,028,450 | ---- | M] () -- C:\Users\basty\Documents\cc_20130318_110255.reg
[2013.03.18 10:45:44 | 000,001,851 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2013.03.18 10:29:39 | 000,000,856 | ---- | M] () -- C:\Users\Public\Desktop\SmartPCFixer.lnk
[2013.03.17 20:17:43 | 000,006,164 | ---- | M] () -- C:\Users\basty\Documents\Favorisiertes Design.theme
[2013.03.17 18:52:02 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013.03.17 18:51:43 | 000,002,615 | ---- | M] () -- C:\Users\basty\AppData\Local\qdfroa_navps.dat
[2013.03.17 18:50:54 | 000,003,504 | ---- | M] () -- C:\Users\basty\AppData\Local\qdfroa.dat
[2013.03.17 18:50:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-213923449-3716536056-20769384-1000UA.job
[2013.03.17 18:41:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.03.17 18:26:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.03.17 16:24:49 | 000,000,089 | ---- | M] () -- C:\Users\basty\AppData\Local\qdfroa.bat
[2013.03.16 12:50:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-213923449-3716536056-20769384-1000Core.job
[2013.03.13 15:55:33 | 000,002,046 | ---- | M] () -- C:\Users\basty\Desktop\Google Chrome.lnk
[2013.03.04 20:15:52 | 000,000,986 | ---- | M] () -- C:\Users\Public\Desktop\DriverScanner.lnk
[2013.03.04 20:15:23 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Freemake Video Converter.lnk
[2013.03.02 11:14:25 | 000,014,630 | ---- | M] () -- C:\Users\basty\Documents\wsb raw.ods
[2013.02.18 10:40:02 | 000,015,676 | ---- | M] () -- C:\Users\basty\Documents\einladung.odt
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.03.19 01:19:23 | 000,000,020 | ---- | C] () -- C:\Users\basty\defogger_reenable
[2013.03.19 00:57:04 | 000,002,884 | ---- | C] () -- C:\Users\basty\Documents\cc_20130319_005703.reg
[2013.03.18 11:02:57 | 000,028,450 | ---- | C] () -- C:\Users\basty\Documents\cc_20130318_110255.reg
[2013.03.18 10:45:44 | 000,001,851 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2013.03.18 10:29:39 | 000,000,856 | ---- | C] () -- C:\Users\Public\Desktop\SmartPCFixer.lnk
[2013.03.17 20:17:43 | 000,006,164 | ---- | C] () -- C:\Users\basty\Documents\Favorisiertes Design.theme
[2013.03.17 18:54:51 | 311,516,119 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013.03.04 20:15:56 | 000,000,328 | ---- | C] () -- C:\Windows\tasks\DriverScanner.job
[2013.03.04 20:15:52 | 000,000,986 | ---- | C] () -- C:\Users\Public\Desktop\DriverScanner.lnk
[2013.03.04 20:15:23 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Freemake Video Converter.lnk
[2013.03.02 11:13:06 | 000,014,630 | ---- | C] () -- C:\Users\basty\Documents\wsb raw.ods
[2013.02.18 10:40:00 | 000,015,676 | ---- | C] () -- C:\Users\basty\Documents\einladung.odt
[2012.10.20 11:15:28 | 000,369,367 | ---- | C] () -- C:\Users\basty\DSC04793.JPG
[2012.10.20 11:15:28 | 000,346,530 | ---- | C] () -- C:\Users\basty\DSC04803.JPG
[2012.10.20 11:15:28 | 000,324,678 | ---- | C] () -- C:\Users\basty\DSC_0756.JPG
[2012.10.20 11:15:28 | 000,320,919 | ---- | C] () -- C:\Users\basty\DSC04788.JPG
[2012.10.20 11:15:28 | 000,319,089 | ---- | C] () -- C:\Users\basty\DSC04791.JPG
[2012.10.20 11:15:28 | 000,318,460 | ---- | C] () -- C:\Users\basty\DSC04810.JPG
[2012.10.20 11:15:28 | 000,317,037 | ---- | C] () -- C:\Users\basty\DSC04789.JPG
[2012.10.20 11:15:28 | 000,313,831 | ---- | C] () -- C:\Users\basty\DSC04796.JPG
[2012.10.20 11:15:28 | 000,312,678 | ---- | C] () -- C:\Users\basty\DSC04801.JPG
[2012.10.20 11:15:28 | 000,306,432 | ---- | C] () -- C:\Users\basty\DSC_0770.JPG
[2012.10.20 11:15:28 | 000,305,898 | ---- | C] () -- C:\Users\basty\DSC04792.JPG
[2012.10.20 11:15:28 | 000,305,232 | ---- | C] () -- C:\Users\basty\DSC04790.JPG
[2012.10.20 11:15:28 | 000,302,433 | ---- | C] () -- C:\Users\basty\DSC04778.JPG
[2012.10.20 11:15:28 | 000,298,753 | ---- | C] () -- C:\Users\basty\DSC_0766.JPG
[2012.10.20 11:15:28 | 000,295,490 | ---- | C] () -- C:\Users\basty\DSC04782.JPG
[2012.10.20 11:15:28 | 000,282,755 | ---- | C] () -- C:\Users\basty\DSC_0755.JPG
[2012.10.20 11:15:28 | 000,278,007 | ---- | C] () -- C:\Users\basty\DSC04784.JPG
[2012.10.20 11:15:28 | 000,274,853 | ---- | C] () -- C:\Users\basty\DSC_0762.JPG
[2012.10.20 11:15:28 | 000,273,674 | ---- | C] () -- C:\Users\basty\DSC04779.JPG
[2012.10.20 11:15:28 | 000,271,672 | ---- | C] () -- C:\Users\basty\DSC_0763.JPG
[2012.10.20 11:15:28 | 000,270,529 | ---- | C] () -- C:\Users\basty\DSC04809.JPG
[2012.10.20 11:15:28 | 000,263,083 | ---- | C] () -- C:\Users\basty\DSC_0761.JPG
[2012.10.20 11:15:28 | 000,261,678 | ---- | C] () -- C:\Users\basty\DSC_0771.JPG
[2012.10.20 11:15:28 | 000,260,218 | ---- | C] () -- C:\Users\basty\DSC04805.JPG
[2012.10.20 11:15:28 | 000,257,947 | ---- | C] () -- C:\Users\basty\DSC_0759.JPG
[2012.10.20 11:15:28 | 000,257,619 | ---- | C] () -- C:\Users\basty\DSC_0767.JPG
[2012.10.20 11:15:28 | 000,253,484 | ---- | C] () -- C:\Users\basty\DSC04777.JPG
[2012.10.20 11:15:28 | 000,251,970 | ---- | C] () -- C:\Users\basty\DSC_0765.JPG
[2012.10.20 11:15:28 | 000,249,597 | ---- | C] () -- C:\Users\basty\DSC04808.JPG
[2012.10.20 11:15:28 | 000,217,890 | ---- | C] () -- C:\Users\basty\DSC_0758.JPG
[2012.09.20 15:54:05 | 000,000,089 | ---- | C] () -- C:\Users\basty\AppData\Local\qdfroa.bat
[2012.09.04 13:32:50 | 000,184,738 | ---- | C] () -- C:\Users\basty\AppData\Local\qdfroa_nav.dat
[2012.09.04 13:32:50 | 000,003,504 | ---- | C] () -- C:\Users\basty\AppData\Local\qdfroa.dat
[2012.09.04 13:32:50 | 000,002,615 | ---- | C] () -- C:\Users\basty\AppData\Local\qdfroa_navps.dat
[2012.08.28 23:19:26 | 000,000,089 | ---- | C] () -- C:\Users\basty\AppData\Local\eqbtfwh.bat
[2012.07.10 18:41:13 | 000,002,142 | ---- | C] () -- C:\Users\basty\AppData\Local\akwjugsm_navps.dat
[2012.07.10 18:41:12 | 000,184,988 | ---- | C] () -- C:\Users\basty\AppData\Local\akwjugsm_nav.dat
[2012.07.10 18:41:12 | 000,003,344 | ---- | C] () -- C:\Users\basty\AppData\Local\akwjugsm.dat
[2011.10.18 18:31:54 | 000,001,356 | ---- | C] () -- C:\Users\basty\AppData\Local\d3d9caps.dat
[2011.09.19 12:20:29 | 000,000,090 | ---- | C] () -- C:\Users\basty\AppData\Local\ecigeci.bat
[2011.07.10 18:52:11 | 000,000,000 | ---- | C] () -- C:\Users\basty\AppData\Local\{B35BB993-ECFC-41A9-A8BF-0B2EE7EE3A88}
[2011.05.09 15:40:32 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2011.02.03 10:54:16 | 000,000,090 | ---- | C] () -- C:\Users\basty\AppData\Local\hccfaab.bat
[2010.11.18 19:52:06 | 000,454,262 | ---- | C] () -- C:\Users\basty\AppData\Local\cqmbw.exe
[2010.11.18 19:46:26 | 000,306,582 | ---- | C] () -- C:\Users\basty\AppData\Local\kwswt.exe
[2010.11.14 20:12:03 | 000,000,090 | ---- | C] () -- C:\Users\basty\AppData\Local\dbsbaxh.bat
[2010.11.12 20:38:25 | 000,243,754 | ---- | C] () -- C:\Users\basty\AppData\Local\iystmxys_nav.dat
[2010.11.12 20:38:25 | 000,003,345 | ---- | C] () -- C:\Users\basty\AppData\Local\iystmxys.dat
[2010.11.12 20:38:25 | 000,003,333 | ---- | C] () -- C:\Users\basty\AppData\Local\iystmxys_navps.dat
[2010.07.08 18:18:13 | 000,000,090 | ---- | C] () -- C:\Users\basty\AppData\Local\jdzmifr.bat
[2010.03.04 17:41:22 | 000,340,662 | ---- | C] () -- C:\Users\basty\AppData\Local\cdzuqlh.exe
[2010.03.03 20:22:59 | 000,340,662 | ---- | C] () -- C:\Users\basty\AppData\Local\xizdefei.exe
[2010.02.27 16:16:26 | 000,337,822 | ---- | C] () -- C:\Users\basty\AppData\Local\dbrbyx.exe
[2009.12.13 13:29:16 | 000,000,375 | ---- | C] () -- C:\Users\basty\Dokumente - Verknüpfung.lnk
[2009.08.20 09:45:06 | 142,533,221 | ---- | C] () -- C:\Program Files\openofficeorg1.cab
[2009.08.20 09:43:42 | 009,819,136 | ---- | C] () -- C:\Program Files\openofficeorg31.msi
[2009.08.19 09:43:20 | 000,000,336 | ---- | C] () -- C:\Program Files\setup.ini
[2009.07.22 11:45:20 | 000,027,839 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.22 11:40:20 | 000,027,839 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.09 21:02:00 | 000,022,016 | ---- | C] () -- C:\Users\basty\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.07.09 20:56:07 | 000,000,090 | ---- | C] () -- C:\Users\basty\AppData\Local\weqcsgq.bat
[2009.03.26 11:36:32 | 000,451,928 | ---- | C] () -- C:\Program Files\setup.exe
 
========== ZeroAccess Check ==========
 
[2006.11.02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2011.01.21 16:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.03.03 05:36:24 | 000,615,424 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.01.21 03:24:03 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2009.07.09 18:01:08 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Acer
[2001.01.08 15:45:51 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Acer GameZone Console
[2011.01.06 16:30:26 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Autodesk
[2010.11.04 14:14:05 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\avidemux
[2011.08.06 21:19:48 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Babylon
[2011.01.12 10:12:02 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\DAEMON Tools
[2012.09.20 23:11:52 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\DVDVideoSoft
[2011.07.18 21:34:24 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\DVDVideoSoftIEHelpers
[2009.11.02 16:10:49 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\EPSON
[2009.12.01 19:37:05 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\eSobi
[2010.12.05 11:28:34 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Foxit
[2010.12.05 11:28:41 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Foxit Software
[2010.11.04 13:38:55 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\GlarySoft
[2010.03.06 17:36:11 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Lite
[2011.08.28 22:00:10 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Mupen64Plus
[2013.03.04 20:15:09 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\OpenCandy
[2009.11.30 15:12:51 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\OpenOffice.org
[2011.06.01 22:08:29 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\PowerCinema
[2011.08.07 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Reviversoft
[2011.11.15 00:12:25 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\SoftDMA
[2013.03.19 00:59:51 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Softonic
[2013.03.04 20:15:53 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Uniblue
[2009.07.09 17:11:14 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Validity
[2009.07.09 17:00:55 | 000,000,000 | ---D | M] -- C:\Users\basty\AppData\Roaming\Vodafone
 
========== Purity Check ==========
 
extras:

OTL Extras logfile created on: 19.03.2013 01:33:00 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\basty\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 74,75% Memory free
6,19 Gb Paging File | 5,59 Gb Available in Paging File | 90,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,04 Gb Total Space | 91,32 Gb Free Space | 63,40% Space Free | Partition Type: NTFS
Drive D: | 137,50 Gb Total Space | 137,41 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
 
Computer Name: BASTY-PC | User Name: basty | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"AntiVirusDisableNotify" = 
"AntiVirusOverride" = 
"FirewallDisableNotify" = 
"FirewallOverride" = 
"FirstRunDisabled" = 
"UpdatesDisableNotify" = 
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1C221594-108D-47E4-BF21-1760A4D2AF1C}" = lport=13364 | protocol=17 | dir=in | name=mfp server manager | 
"{21A5776B-8B12-4408-BD6C-CB4BBF9B1A9A}" = lport=13878 | protocol=17 | dir=in | name=mfp manager | 
"{41FB3BE9-2E5B-4131-9DCB-E63AA80AE303}" = lport=14135 | protocol=17 | dir=in | name=server application | 
"{447B4BA9-09F3-4686-ADDA-BFAAD985E6CB}" = lport=69 | protocol=17 | dir=in | name=mfp server manager tftp | 
"{D03ACF51-8B57-4F4E-81FF-7FE823498721}" = lport=13621 | protocol=17 | dir=in | name=mfp setup wizard | 
"{EDCF3D03-5EAD-421A-B2C7-F76AD5FC0351}" = lport=14135 | protocol=6 | dir=in | name=server application | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{165AB7E7-E7E9-422A-9044-53F5E020F657}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe | 
"{23BAA296-9F0E-4B03-BC72-FF9E4D17B3EE}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{37FD4F65-C79D-49B0-BF10-5BDAAAF2A987}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | 
"{39753ADD-22A4-4BED-A426-7A90A3818CF6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{42FEFD8D-926F-4366-9FD2-6AD66F959C87}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\client\agentsvc.exe | 
"{4B0E8534-C5F6-4AD8-A044-290AD4B9EA1A}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe | 
"{620A3614-2356-403F-87BF-705E576766AC}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{6F08BFB0-E6E9-4B56-B20A-9820DC096CD5}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{7E0C4F18-4F8E-4FD0-BD76-A865E6FA6692}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\client\agentsvc.exe | 
"{97F55C3A-A388-4F41-AAED-3B40A6CB4E4E}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{A2A353B2-EA71-4055-A8EA-4CB54A418E41}" = protocol=17 | dir=in | app=c:\users\basty\appdata\local\akamai\netsession_win.exe | 
"{B3CD7D40-0E8E-4728-BEEF-19232BC0594E}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe | 
"{B8C771AE-C75B-4B34-82A7-D6BC502A4227}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{BFD6FB21-EE16-4E8A-BE9B-FBE99D97150B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{D7E7E88D-473D-4654-BA1E-2CFF3E7FA2CC}" = dir=in | app=c:\program files\itunes\itunes.exe | 
"{E918566E-3E49-4D79-8FE4-FA59350E8595}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe | 
"{E94CD40D-F069-43C1-8EAE-7D99CB70FBD5}" = protocol=6 | dir=in | app=c:\users\basty\appdata\local\akamai\netsession_win.exe | 
"{FC614412-1C7B-426A-A598-5B8E85474092}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{FC76BE11-AFAA-451E-9AB3-9AEA55E25EB5}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software 6.0.1.5000
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{16D0F2D2-242C-4885-BEF1-4B1655C141AE}" = Bing Bar
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20B1B020-DEAE-48D1-9960-D4C3185D758B}" = Phase 5 HTML-Editor
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 24
"{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{2C5927BD-3F65-4207-8FB5-8EDF638A3511}_is1" = SmartPCFixer 4.2
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{42EDF895-158C-484E-A7F2-42B90759F281}" = Camera RAW Plug-In for EPSON Creativity Suite
"{46CBBDF8-55B5-40DB-B459-7B848394309C}" = EPSON File Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}" = Microsoft Works
"{567E8236-C414-4888-8211-3D61608D57AE}" = Validity Sensors software
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{69995C7A-062A-4A90-A4DF-8C22895DF522}" = iTunes
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{735619D4-B42A-437A-958C-199BFCAEDB38}" = Safari
"{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11029123}" = Bricks of Egypt
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110322783}" = Big Kahuna Reef
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110411970}" = Chuzzle
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111118433}" = Mystery Case Files - Huntsville
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}" = Cake Mania
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111543617}" = Backspin Billiards
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111692950}" = Mahjongg Artifacts
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363}" = Mystery Solitaire - Secret Island
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111872660}" = Diner Dash Flo on the Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112615863}" = Agatha Christie Death on the Nile
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113080210}" = Azada
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo Layers Runtime 1.10.01
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A8F8391-4C2C-4BE1-A984-CD4A5A546467}" = EPSON Easy Photo Print
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90280407-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional mit FrontPage
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{99E862CC-6F69-4D39-99AA-DBF71BF3B585}" = OpenOffice.org 3.1
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0B139A7-E8D5-49E8-A7BF-12421E652208}" = pdfforge Toolbar v4.3
"{A5633652-3795-4829-BB0B-644F0279E279}" = Acer eDataSecurity Management
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam 3.0.6.3
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
"{C325F588-D6B1-4A7F-B6A2-914C75DDA348}" = Morrowind
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe  1.4.142.1
"{D03482C5-9AD8-496D-B388-692AE04C93AF}" = Bonjour
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"{DB3C800B-081B-4146-B4E3-EFB5B77AA913}" = TES Construction Set
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Acer Acer Bio Protection 6.0.00.15" = Acer Bio Protection

AAV 6.0.00.15
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"Akamai" = Akamai NetSession Interface Service
"AVG Secure Search" = AVG Security Toolbar
"Avira AntiVir Desktop" = Avira Free Antivirus
"BearShare MediaBar" = MediaBar 2.0
"CCleaner" = CCleaner
"conduitEngine" = Conduit Engine
"DVDVideoSoft Toolbar" = DVDVideoSoft Toolbar
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"EPSON Scanner" = EPSON Scan
"EPSON Stylus SX200_SX400_TX200_TX400 Benutzerhandbuch" = EPSON Stylus SX200_SX400_TX200_TX400 Handbuch
"EPSON Stylus SX400 Series" = EPSON Stylus SX400 Series Printer Uninstall
"Foxit Reader" = Foxit Reader
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.8
"Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 3.2
"Free YouTube Download 3_is1" = Free YouTube Download 3 version 3.0.6.715
"Free YouTube Download_is1" = Free YouTube Download version 3.0.815
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.32.918
"Free YouTube Uploader_is1" = Free YouTube Uploader version 2.3
"Freemake Video Converter_is1" = Freemake Video Converter Version 3.2.1
"Google Desktop" = Google Desktop
"GridVista" = Acer GridVista
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"IrfanView" = IrfanView (remove only)
"LManager" = Launch Manager
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 19.0.2 (x86 de)" = Mozilla Firefox 19.0.2 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Drivers" = NVIDIA Drivers
"Softonic" = Softonic toolbar  on IE and Chrome
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.11
"weqcsgq" = Favorit
"WinRAR archiver" = WinRAR
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
"PersSecurity" = Personal Security
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 18.03.2013 20:02:33 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:33 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:33 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:33 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:34 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:34 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:34 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:02:35 | Computer Name = basty-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 18.03.2013 20:09:03 | Computer Name = basty-PC | Source = EventSystem | ID = 4609
Description = 
 
Error - 18.03.2013 20:27:42 | Computer Name = basty-PC | Source = EventSystem | ID = 4609
Description = 
 
[ System Events ]
Error - 13.07.2009 16:56:57 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 13.07.2009 16:57:07 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 13.07.2009 18:38:56 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 13.07.2009 18:39:05 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 14.07.2009 05:45:55 | Computer Name = basty-PC | Source = HTTP | ID = 15016
Description = 
 
Error - 14.07.2009 05:48:27 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 14.07.2009 08:02:36 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 14.07.2009 13:37:28 | Computer Name = basty-PC | Source = HTTP | ID = 15016
Description = 
 
Error - 14.07.2009 13:40:23 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
Error - 14.07.2009 15:17:20 | Computer Name = basty-PC | Source = Server | ID = 2505
Description = Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht
 \Device\NetBT_Tcpip_{075AB141-C268-4597-A685-21903F6AF652} vom Serverdienst nicht
 gebunden werden. Der Serverdienst konnte nicht gestartet werden.
 
 
< End of report >
         
--- --- ---


Alt 19.03.2013, 09:02   #6
Sunny
Administrator
> Competence Manager
 

PC fährt nicht hoch, mit Fehlermeldung - Standard

PC fährt nicht hoch, mit Fehlermeldung



Hier gehts weiter -> http://www.trojaner-board.de/132426-...ml#post1031353
__________________
--> PC fährt nicht hoch, mit Fehlermeldung

 

Themen zu PC fährt nicht hoch, mit Fehlermeldung
trick




Ähnliche Themen: PC fährt nicht hoch, mit Fehlermeldung


  1. PC fährt nicht mehr hoch nach "Anzeigentreiber"-Fehlermeldung
    Alles rund um Windows - 01.06.2015 (5)
  2. PC fährt nicht hoch
    Netzwerk und Hardware - 31.01.2015 (19)
  3. Pc fährt nicht mehr hoch
    Plagegeister aller Art und deren Bekämpfung - 31.07.2013 (7)
  4. PC fährt nicht hoch, mit Fehlermeldung - WinXP, 32bit, BIOS Version V1.3 110405
    Netzwerk und Hardware - 26.02.2013 (2)
  5. pc fährt nicht hoch
    Log-Analyse und Auswertung - 23.07.2012 (3)
  6. PC fährt nicht hoch
    Log-Analyse und Auswertung - 03.03.2010 (7)
  7. PC fährt nicht hoch
    Netzwerk und Hardware - 12.02.2010 (2)
  8. Rechner fährt nicht runter,fährt sehr langsam hoch und laggt zwischendurch
    Log-Analyse und Auswertung - 29.12.2009 (1)
  9. Pc fährt nicht hoch
    Alles rund um Windows - 24.09.2009 (23)
  10. PC fährt nicht hoch
    Netzwerk und Hardware - 07.09.2009 (13)
  11. PC fährt nicht hoch!
    Plagegeister aller Art und deren Bekämpfung - 09.05.2009 (0)
  12. PC fährt nicht hoch
    Alles rund um Windows - 28.04.2009 (0)
  13. Computer fährt nicht mehr hoch - bei Formatierung kommt Fehlermeldung
    Plagegeister aller Art und deren Bekämpfung - 26.01.2009 (2)
  14. Pc fährt nicht hoch°!
    Netzwerk und Hardware - 23.01.2009 (1)
  15. PC fährt nicht mehr hoch.. =(
    Plagegeister aller Art und deren Bekämpfung - 08.01.2009 (2)
  16. PC fährt nicht hoch
    Alles rund um Windows - 26.12.2007 (23)
  17. Pc fährt nicht hoch
    Alles rund um Windows - 14.07.2006 (1)

Zum Thema PC fährt nicht hoch, mit Fehlermeldung - holl lieber freunde, ich habe auch das prob. mit dem blauen bildschirm! habe windows vista premium home und zudem war alles vorinstalliert auf meinen acer labtop! gestern war mein mcaffe - PC fährt nicht hoch, mit Fehlermeldung...
Archiv
Du betrachtest: PC fährt nicht hoch, mit Fehlermeldung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.