Antivir Live CD meldet 36 Funde, dies und das funktioniert nicht mehr. Bin ratlos.

Moonpix · 16.07.2013, 17:40

Hallo ihr alle,

mein Antivir meldet mir in letzter Zeit immer wieder neue Viren/ Trojaner, die bei mir anklopfen. Ein Freund empfahl mir, von einer Antivir Live CD zu booten, habe ich getan und der Scanner hat 36 Viren/Trojaner gefunden und umbenannt.
Bestehende Probleme mit dem Laptop sind seitdem aber nicht besser geworden: Fährt ziemlich langsam hoch, Windows Explorer stürzt andauernd ab, Antivir meldet immer wieder anklopfende Trojaner.

Habe hier die Ergebnisse des ersten Scans. Leider ist GMER abgestürzt, so dass ich die Ergebnisse dieses Scans nicht mit anheften kann.

Kann mir wer helfen?

Eine Unwissende.

OTL logfile created on: 7/16/2013 5:54:57 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\shintai\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3.43 Gb Total Physical Memory | 1.92 Gb Available Physical Memory | 56.15% Memory free
6.85 Gb Paging File | 5.49 Gb Available in Paging File | 80.18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 565.07 Gb Total Space | 278.56 Gb Free Space | 49.30% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 15.00 Gb Free Space | 49.99% Space Free | Partition Type: NTFS
Drive G: | 1.84 Gb Total Space | 1.79 Gb Free Space | 97.56% Space Free | Partition Type: FAT

Computer Name: SHINTAI-PC | User Name: shintai | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/07/16 16:56:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\shintai\Desktop\OTL.exe
PRC - [2013/07/13 08:50:15 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2013/03/26 09:03:50 | 001,104,280 | ---- | M] (Spotify Ltd) -- C:\Users\shintai\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2012/10/04 16:57:58 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2012/08/08 09:35:50 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/06/20 05:28:26 | 000,284,160 | ---- | M] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Users\shintai\AppData\Roaming\Gouwag\ulvao.exe
PRC - [2012/05/09 08:43:50 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/09 08:43:49 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/09 08:43:49 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/06/15 02:46:06 | 001,481,320 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
PRC - [2010/06/12 00:43:38 | 000,794,632 | ---- | M] (Pegatron Corporation) -- C:\Program Files\PHotkey\PHotkey.exe
PRC - [2010/05/13 02:14:58 | 002,884,104 | R--- | M] (Pegatron Corporation) -- C:\Program Files\PHotkey\POSD.exe
PRC - [2010/04/24 03:12:00 | 000,133,640 | R--- | M] () -- C:\Program Files\PHotkey\GFNEXSrv.exe
PRC - [2010/04/15 17:45:42 | 002,533,400 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010/04/15 17:44:48 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010/03/30 17:40:20 | 000,113,296 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010/03/23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
PRC - [2010/01/22 10:01:30 | 000,372,736 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2010/01/22 10:01:00 | 000,172,032 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2010/01/16 04:13:04 | 000,547,336 | R--- | M] () -- C:\Program Files\PHotkey\PVDesktop.exe
PRC - [2010/01/13 02:36:00 | 000,117,256 | ---- | M] () -- C:\Program Files\PHotkey\MsgTranAgt.exe
PRC - [2009/12/19 00:40:48 | 000,104,968 | R--- | M] () -- C:\Program Files\PHotkey\ASLDRSrv.exe
PRC - [2009/12/19 00:38:18 | 000,345,608 | R--- | M] (TODO: <Company name>) -- C:\Program Files\PHotkey\HCSynApi.exe
PRC - [2009/12/19 00:22:00 | 000,461,320 | R--- | M] () -- C:\Program Files\PHotkey\PVDAgent.exe
PRC - [2009/11/07 13:46:52 | 000,020,480 | ---- | M] (X10) -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
PRC - [2009/08/01 03:10:32 | 000,233,472 | ---- | M] (AlcorMicro Co., Ltd.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
PRC - [2009/01/26 16:31:16 | 002,144,088 | ---- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

========== Modules (No Company Name) ==========

MOD - [2010/03/15 12:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\rarext.dll
MOD - [2009/12/19 00:22:00 | 000,461,320 | R--- | M] () -- C:\Program Files\PHotkey\PVDAgent.exe

========== Services (SafeList) ==========

SRV - [2013/07/13 14:57:15 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/06/12 01:39:12 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/09 08:43:50 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/09 08:43:49 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/10/29 13:59:34 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/04/24 03:12:00 | 000,133,640 | R--- | M] () [Auto | Running] -- C:\Program Files\PHotkey\GFNEXSrv.exe -- (GFNEXSrv)
SRV - [2010/04/15 17:45:42 | 002,533,400 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/04/15 17:44:48 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)
SRV - [2010/01/22 10:01:00 | 000,172,032 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009/12/19 00:40:48 | 000,104,968 | R--- | M] () [Auto | Running] -- C:\Program Files\PHotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2009/11/07 13:46:52 | 000,020,480 | ---- | M] (X10) [Auto | Running] -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- (x10nets)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\igdpmd32.sys -- (intelkmd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\atipmdag.sys -- (amdkmdag)
DRV - [2012/05/09 08:43:50 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/05/09 08:43:50 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/10/19 17:56:15 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2010/11/20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/06/17 16:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/03/23 13:15:36 | 000,308,859 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2010/03/02 22:24:58 | 001,006,624 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2010/02/27 01:31:22 | 000,132,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Impcd.sys -- (Impcd)
DRV - [2010/02/24 20:09:38 | 000,141,568 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV - [2010/02/24 20:09:38 | 000,060,544 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nusb3hub.sys -- (nusb3hub)
DRV - [2010/02/22 19:03:34 | 000,066,600 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2010/02/03 15:36:34 | 000,232,960 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcDAud.sys -- (IntcDAud)
DRV - [2010/01/22 09:07:42 | 000,125,440 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2009/09/24 20:52:34 | 000,788,320 | ---- | M] (DiBcom SA) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mod7700.sys -- (mod7700)
DRV - [2009/09/17 21:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI)
DRV - [2009/09/11 23:11:46 | 000,013,320 | R--- | M] (PEGATRON) [Kernel | Auto | Running] -- C:\Program Files\PHotkey\PEGAGFN.sys -- (PEGAGFN)
DRV - [2009/07/25 02:01:26 | 000,025,600 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmUStor.sys -- (AmUStor)
DRV - [2009/07/14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/14 00:09:17 | 004,194,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009/07/14 00:02:46 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/05/13 22:47:30 | 000,027,160 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\x10ufx2.sys -- (XUIF)
DRV - [2009/05/13 22:26:26 | 000,013,720 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10hid.sys -- (X10Hid)
DRV - [2008/11/16 18:39:44 | 000,131,984 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dne2000.sys -- (DNE)
DRV - [2007/01/18 20:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CVirtA.sys -- (CVirtA)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=MDNB&bmod=MDNB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=MDNB&bmod=MDNB
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {F818CCDF-4139-42A1-BF5D-B501348BDBEA}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
IE - HKCU\..\SearchScopes\{F818CCDF-4139-42A1-BF5D-B501348BDBEA}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNB_enDE393
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@greentube.com/GreenWebPlayer: C:\Games\GreenWebPlayer\npgreenwebplayer.dll (Greentube Internet Entertainment Solutions GmbH)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011/02/15 14:16:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011/02/15 14:16:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013/07/13 14:57:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013/07/13 14:57:10 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2011/08/15 09:52:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\shintai\AppData\Roaming\mozilla\Extensions
[2011/08/15 08:16:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011/03/06 13:34:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/07/10 03:44:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/12/07 00:03:18 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (Realtek Semiconductor)
O4 - HKCU..\Run: [{8106539D-5405-F34D-3CCF-77E3BFBF4CDD}] C:\Users\shintai\AppData\Roaming\Ohm\coukhu.exe ()
O4 - HKCU..\Run: [Gezor] C:\Users\shintai\AppData\Roaming\Gouwag\ulvao.exe (The OpenSSL Project, hxxp://www.openssl.org/)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\shintai\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - Startup: C:\Users\shintai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\shintai\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab (QuickTime Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 193.175.12.1 193.175.12.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1C5BD616-6AE4-44A8-A75A-F7446F951578}: DhcpNameServer = 193.175.12.1 193.175.12.4
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{faf4ba53-6a04-11e2-895a-7071bcb200a9}\Shell - "" = AutoRun
O33 - MountPoints2\{faf4ba53-6a04-11e2-895a-7071bcb200a9}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/07/16 16:56:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\shintai\Desktop\OTL.exe
[2013/07/13 17:12:57 | 000,000,000 | ---D | C] -- C:\Users\shintai\Desktop\Texte Texte Texte
[2013/07/13 14:57:09 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2013/07/10 01:19:26 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Raaz
[2013/07/10 01:19:26 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Ohm
[2013/07/01 08:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy 2
[2013/06/30 01:14:06 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Helusy
[2013/06/30 01:14:05 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Ucpulo
[2013/06/23 11:21:45 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Zire
[2013/06/23 11:21:45 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Gapeu
[2013/06/22 06:53:13 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Xyalo
[2013/06/22 06:53:13 | 000,000,000 | ---D | C] -- C:\Users\shintai\AppData\Roaming\Kyqo
[5 C:\Users\shintai\Desktop\*.tmp files -> C:\Users\shintai\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/07/16 17:55:03 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/07/16 17:39:14 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/07/16 16:56:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\shintai\Desktop\OTL.exe
[2013/07/16 16:55:02 | 000,000,000 | ---- | M] () -- C:\Users\shintai\defogger_reenable
[2013/07/16 16:54:15 | 000,050,477 | ---- | M] () -- C:\Users\shintai\Desktop\Defogger.exe
[2013/07/16 16:42:48 | 000,067,584 | -H-- | M] () -- C:\Windows\bootstat.dat
[2013/07/16 08:55:00 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/07/16 08:35:11 | 000,672,064 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2013/07/16 08:35:11 | 000,631,104 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/07/16 08:35:11 | 000,138,328 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2013/07/16 08:35:11 | 000,114,026 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/07/16 00:30:08 | 000,009,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/07/16 00:30:08 | 000,009,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/07/16 00:21:16 | 2759,700,480 | -HS- | M] () -- C:\hiberfil.sys
[2013/07/15 10:43:42 | 000,001,057 | ---- | M] () -- C:\Users\shintai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/07/15 00:02:27 | 000,448,896 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/07/13 10:16:17 | 000,000,897 | ---- | M] () -- C:\Users\shintai\AppData\Local\recently-used.xbel
[5 C:\Users\shintai\Desktop\*.tmp files -> C:\Users\shintai\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/07/16 16:55:02 | 000,000,000 | ---- | C] () -- C:\Users\shintai\defogger_reenable
[2013/07/16 16:54:08 | 000,050,477 | ---- | C] () -- C:\Users\shintai\Desktop\Defogger.exe
[2013/07/15 10:43:42 | 000,001,057 | ---- | C] () -- C:\Users\shintai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/07/13 10:16:17 | 000,000,897 | ---- | C] () -- C:\Users\shintai\AppData\Local\recently-used.xbel
[2013/06/06 00:34:44 | 000,000,112 | ---- | C] () -- C:\ProgramData\6bQ5pp.dat
[2013/06/06 00:34:30 | 000,147,456 | ---- | C] () -- C:\ProgramData\807BA3yA.exe.vir
[2013/06/06 00:34:30 | 000,000,001 | ---- | C] () -- C:\ProgramData\807BA3yA.exe_.b
[2013/06/06 00:34:30 | 000,000,001 | ---- | C] () -- C:\ProgramData\807BA3yA.exe.b
[2012/12/22 18:40:32 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2012/12/20 21:21:58 | 000,000,041 | ---- | C] () -- C:\Windows\winampa.ini
[2012/01/17 21:43:37 | 000,007,168 | ---- | C] () -- C:\Users\shintai\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/09 15:07:18 | 000,170,063 | ---- | C] () -- C:\Users\shintai\IMGP1597.jpg
[2011/08/09 15:07:18 | 000,168,419 | ---- | C] () -- C:\Users\shintai\IMGP1558.jpg
[2011/07/03 19:29:00 | 000,855,873 | ---- | C] () -- C:\Users\shintai\tigerente1.jpg
[2011/07/03 19:29:00 | 000,846,566 | ---- | C] () -- C:\Users\shintai\tigerente2.jpg
[2011/01/17 20:24:50 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/01/04 14:39:31 | 000,000,890 | ---- | C] () -- C:\Users\shintai\Downloads.lnk

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/06/22 15:21:43 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Amazon
[2012/12/22 18:30:25 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\AnvSoft
[2012/08/23 21:17:54 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Audacity
[2012/06/22 17:12:10 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2013/07/16 17:24:15 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Dropbox
[2013/06/23 11:21:45 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Gapeu
[2011/07/03 17:06:01 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\go
[2013/07/01 17:11:38 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Gouwag
[2013/06/30 01:14:06 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Helusy
[2013/07/16 14:21:35 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Hice
[2012/10/07 14:37:56 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\ICQ
[2013/06/06 23:36:16 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Ifwuof
[2011/02/09 19:12:23 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\InfraRecorder
[2013/07/01 17:11:38 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\IrfanView
[2013/06/22 06:53:13 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Kyqo
[2011/05/16 10:11:14 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Mp3tag
[2013/07/10 01:19:26 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Ohm
[2011/01/07 12:45:34 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\OpenOffice.org
[2011/08/15 08:52:31 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Opera
[2012/07/31 09:55:14 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\pdfforge
[2013/03/28 18:28:44 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\PhotoFiltre 7
[2012/02/16 11:51:01 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\PixelPlanet
[2013/07/16 18:00:01 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Raaz
[2013/06/19 12:32:43 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Spotify
[2013/04/28 12:01:18 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Swiss Academic Software
[2011/08/07 20:18:46 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Thunderbird
[2012/12/30 16:26:45 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\TuneUp Software
[2013/07/01 07:57:41 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Ucpulo
[2012/12/22 17:30:57 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Video DVD Maker FREE
[2013/06/22 06:53:13 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Xyalo
[2013/06/23 11:21:45 | 000,000,000 | ---D | M] -- C:\Users\shintai\AppData\Roaming\Zire

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:FB1B13D8
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:E8BE05FA

< End of report >

OTL Extras logfile created on: 7/16/2013 5:54:57 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\shintai\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3.43 Gb Total Physical Memory | 1.92 Gb Available Physical Memory | 56.15% Memory free
6.85 Gb Paging File | 5.49 Gb Available in Paging File | 80.18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 565.07 Gb Total Space | 278.56 Gb Free Space | 49.30% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 15.00 Gb Free Space | 49.99% Space Free | Partition Type: NTFS
Drive G: | 1.84 Gb Total Space | 1.79 Gb Free Space | 97.56% Space Free | Partition Type: FAT

Computer Name: SHINTAI-PC | User Name: shintai | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10DFBB4D-DF2B-4D09-872A-0785336807EE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1AFE9071-FD96-457B-A4EF-E3A924F7F8FE}" = rport=139 | protocol=6 | dir=out | app=system |
"{24E04074-A1F7-4791-BC8C-0231A781718F}" = rport=138 | protocol=17 | dir=out | app=system |
"{2664E05B-A2D8-4FC5-875F-5DA25AE6EEE1}" = lport=445 | protocol=6 | dir=in | app=system |
"{538D98FE-EDBB-4E77-89F5-8C5C28AA4DC1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5BD0791B-C427-4454-9F49-FE4696002E57}" = lport=139 | protocol=6 | dir=in | app=system |
"{6E4F7720-72FA-4170-BB70-31623C1FF160}" = lport=138 | protocol=17 | dir=in | app=system |
"{7BC939CD-B68F-4E02-86DB-6DD248575F4A}" = rport=137 | protocol=17 | dir=out | app=system |
"{97C80E1A-0FE5-4A0C-BC11-FD7428F7E302}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B9E40049-593F-4697-BD79-6C8E27125B30}" = rport=445 | protocol=6 | dir=out | app=system |
"{C1895F5D-4E8F-4947-8E9F-CC173878F7AD}" = lport=137 | protocol=17 | dir=in | app=system |
"{DEEC469B-889C-4988-856C-128EF74CDA9E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{EF76E255-D9F3-487F-96AF-EAD6DA6CA55A}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{196C5609-2B0D-4984-9B47-49863067FF8B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1D6EFA7A-3DB0-4CA8-A692-224D2918A746}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{3D5195E6-013F-45EE-B166-C238ED843B1C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3E0084D2-96D3-4515-913A-B6ED4F880908}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{4060C126-B80D-4146-B64E-14FD8F808307}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{448B0E2B-4CBD-45A2-983D-9FEC6AA03FE0}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4DD9DF8D-BEBD-4262-BFAC-4BB8AAC2A566}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{51FE644F-988C-4773-8FB4-4B64CC949B48}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{63B6EDF1-79BD-47E1-BE77-C3FC0B20054B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6490C57C-A8D7-4046-A177-6D492D6EE968}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{71930097-4115-4D5D-8B1D-8B1F6E5680FA}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{77ECA71E-CFA5-4F2D-BF6D-155DBE36CBCF}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{8DEDE539-0E37-40C2-883D-83A4B64E64C2}" = protocol=6 | dir=in | app=c:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe |
"{919A47E1-CD86-4B89-8C01-78174A9D95D9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{93D7D0C4-91ED-4681-BDE0-FBE109ADC653}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{9F1B7A14-08B5-4E3C-8B61-EC2EB3B3DC6B}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{CA2F9F7F-A35C-4ECE-8796-7B2AF6123B84}" = protocol=17 | dir=in | app=c:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe |
"{D58FCED3-4AE5-4F91-9728-8AB5437DB347}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{EEBC11D4-83ED-44D5-B52F-950DA720932B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"TCP Query User{00D8129A-3C7C-443D-9D35-BA11EABD6790}C:\users\shintai\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\shintai\appdata\roaming\spotify\spotify.exe |
"TCP Query User{0A8CD898-0C69-4D09-A2DB-EFADE651CF89}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{1CD48860-3B73-4DDB-A0FF-CBBF18D609EB}C:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{2AB7C36A-0F3C-42D3-91FF-3CA554D01F29}C:\program files\icq7.2\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"TCP Query User{77C00150-FCD0-43F8-872C-375BF29EA5F6}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{8DEC2EB0-80A8-4DD8-92BD-958DA272D26C}C:\users\shintai\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\shintai\appdata\roaming\spotify\spotify.exe |
"TCP Query User{948341C9-C249-4C64-9AAE-F640F30E6377}C:\windows\system32\taskhost.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskhost.exe |
"TCP Query User{9CEE2984-BFEE-4A5D-94F3-D917D764D6D6}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{BC282EE6-25D7-479A-A340-D6C09A81FC48}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{BC687CB7-AE2B-4AC1-AE5D-6ECECCE5E21A}C:\windows\system32\taskhost.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskhost.exe |
"TCP Query User{D4117582-379E-43CE-B264-F25138771B48}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"TCP Query User{EAF00371-FA1E-47DE-92AA-923CFFAFD026}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{EB2D951C-488B-494F-9D97-05CDB35780FD}C:\program files\icq7.2\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"UDP Query User{0279109C-64D0-4251-BF47-9600DDBB93F0}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{082EFF35-C829-46F4-86EE-16066AA0BCCD}C:\windows\system32\taskhost.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskhost.exe |
"UDP Query User{0E92518D-0D30-4CAE-A42B-AD481AA9DDD9}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{276DD9F3-5D20-45E1-8BE3-A95FBDDB84D6}C:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\shintai\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{2A8695FA-0C86-4546-8AF3-6B018472069E}C:\program files\icq7.2\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"UDP Query User{4800CEC7-8358-4A3D-923B-B59C3E2CC590}C:\windows\system32\taskhost.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskhost.exe |
"UDP Query User{5612AA8F-F5C8-43E1-9400-723BD8EE6BB4}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{5797149E-0DDE-44F1-B8DD-BE939D02F125}C:\users\shintai\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\shintai\appdata\roaming\spotify\spotify.exe |
"UDP Query User{643F2AD4-5364-456C-89C4-7FFFB9A6D4A6}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{77778345-A909-4C52-980B-D426E7E505DC}C:\users\shintai\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\shintai\appdata\roaming\spotify\spotify.exe |
"UDP Query User{7DD0FA6E-1306-4AF0-8366-BAB2B06104D0}C:\program files\icq7.2\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"UDP Query User{A23DBDF8-468E-4212-9B82-74D40E86A998}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{C0E0722D-AAB2-41A8-83FE-EBC4CA1A1DE4}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{378317B3-D201-4BC0-BEC9-9451C9ACAEED}" = Alcor Micro USB Card Reader
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{461F8CC0-D4CE-C900-DB38-8BA9667A75A6}" = Catalyst Control Center Graphics Previews Vista
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{586509F0-350D-48B5-B763-9CC2F8D96C4C}" = Windows Live Sync
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65CB4C08-C47B-4A7E-A6A4-50C06ADA5FC6}" = Adobe AIR
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{850C7BD3-9F3F-46AD-9396-E7985B38C55E}" = Windows Live Fotogalerie
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9866E5F0-121F-E018-E2D1-2E1770847ABF}" = Adobe Download Assistant
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D8C60-A55F-4fed-B2B9-173F09590E16}" = REALTEK Wireless LAN Driver
"{A7496F46-78AE-4DB2-BCF5-95F210FA6F96}" = Windows Live Movie Maker
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.5 MUI
"{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}" = Cisco Systems VPN Client 5.0.07.0290
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}" = Microsoft SQL Server 2005 Compact Edition [DEU]
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E50C224A-BBF2-428D-9DCF-DBF9DF85C40E}" = PHotkey
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AmUStor" = Alcor Micro USB Card Reader
"Avira AntiVir Desktop" = Avira Free Antivirus
"CCleaner" = CCleaner
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"DivX Setup" = DivX-Setup
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GIMP-2_is1" = GIMP 2.8.0
"InfraRecorder" = InfraRecorder
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.6.0 (Full)
"LastFM_is1" = Last.fm Scrobbler 2.1.30
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Mozilla Thunderbird 17.0.7 (x86 de)" = Mozilla Thunderbird 17.0.7 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Mp3tag" = Mp3tag v2.48
"Opera 12.16.1860" = Opera 12.16
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TVWiz" = Intel(R) TV Wizard
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"X10Hardware" = X10 Hardware(TM)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Game Organizer" = EasyBits GO
"gwp-DEFAULT" = GreenWebPlayer
"Spotify" = Spotify
"Winamp Detect" = Winamp Erkennungs-Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5/4/2012 10:40:31 AM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1232

Error - 5/4/2012 10:40:33 AM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/4/2012 10:40:33 AM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3900

Error - 5/4/2012 10:40:33 AM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3900

Error - 5/5/2012 9:56:28 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/5/2012 9:56:28 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1108

Error - 5/5/2012 9:56:28 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1108

Error - 5/5/2012 9:56:30 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/5/2012 9:56:30 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2512

Error - 5/5/2012 9:56:30 PM | Computer Name = shintai-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2512

[ OSession Events ]
Error - 9/1/2012 6:22:01 AM | Computer Name = shintai-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 134
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 7/14/2013 7:19:50 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "SMB-Miniredirector-Wrapper und -Modul" ist vom Dienst
"Umgeleitetes Puffersubsystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet
wurde: %%31

Error - 7/14/2013 7:19:50 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "SMB 1.x-Miniredirector" ist vom Dienst "SMB-Miniredirector-Wrapper
und -Modul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068

Error - 7/14/2013 7:19:50 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "SMB 2.0-Miniredirector" ist vom Dienst "SMB-Miniredirector-Wrapper
und -Modul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068

Error - 7/14/2013 7:19:50 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "NLA (Network Location Awareness)" ist vom Dienst "Netzwerkspeicher-Schnittstellendienst"
abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068

Error - 7/14/2013 7:19:50 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
AFD avipbb avkmgr DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr ssmdrv tdx vwififlt
Wanarpv6
WfpLwf

Error - 7/14/2013 7:22:21 PM | Computer Name = shintai-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?15.?07.?2013 um 01:20:38 unerwartet heruntergefahren.

Error - 7/15/2013 3:35:34 AM | Computer Name = shintai-PC | Source = DCOM | ID = 10010
Description =

Error - 7/15/2013 4:32:33 AM | Computer Name = shintai-PC | Source = DCOM | ID = 10010
Description =

Error - 7/15/2013 12:34:11 PM | Computer Name = shintai-PC | Source = DCOM | ID = 10010
Description =

Error - 7/15/2013 6:24:37 PM | Computer Name = shintai-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.

< End of report >

Antivir Live CD meldet 36 Funde, dies und das funktioniert nicht mehr. Bin ratlos.

Plagegeister aller Art und deren Bekämpfung: Antivir Live CD meldet 36 Funde, dies und das funktioniert nicht mehr. Bin ratlos.

Antivir Live CD meldet 36 Funde, dies und das funktioniert nicht mehr. Bin ratlos.

Ähnliche Themen: Antivir Live CD meldet 36 Funde, dies und das funktioniert nicht mehr. Bin ratlos.