| |
| |||||||
Log-Analyse und Auswertung: Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockendWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
11.11.2010, 23:53
| #1 | |
| |  Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockend Hey, ich hab ein ähnliches Problem wie es hier kürzlich erst besprochen wurde. Bei mir werden auch die Google-Links auf irgendwelche anderen Seiten umgeleitet. Oft kommen dann Seiten, welche automatisch .exe-Dateien runterladen wollen. Ich nutze Firefox. Hab schon probiert das ganze mit der Neuinstallation von Firefox in Griff zu bekommen, was aber nicht gelang. Ich hoffe, dass es eine Möglichkeit gibt, das ganze ohne ein komplettes Neuaufsetzen des PCs gibt zu lösen. Hier die Logfiles: Malwarebytes: Zitat:
OTL 1: OTL Logfile: Code:
ATTFilter OTL logfile created on: 11.11.2010 23:35:56 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Dokumente und Einstellungen\***\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 55.00% Memory free 5.00 Gb Paging File | 4.00 Gb Available in Paging File | 73.00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 698.64 Gb Total Space | 370.69 Gb Free Space | 53.06% Space Free | Partition Type: NTFS Computer Name: *** | User Name: *** | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010.11.11 23:10:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\***\Desktop\OTL.exe PRC - [2010.11.08 11:55:32 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe PRC - [2010.11.08 11:55:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe PRC - [2010.11.08 11:55:29 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe PRC - [2010.10.27 07:13:18 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe PRC - [2010.07.19 17:00:13 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe PRC - [2010.02.18 10:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe PRC - [2010.01.14 22:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe PRC - [2008.04.14 07:52:46 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007.11.26 14:54:22 | 001,629,480 | ---- | M] (Nero AG) -- C:\Programme\Nero\Nero 7\InCD\NBHGui.exe PRC - [2007.11.26 14:54:12 | 001,554,728 | ---- | M] (Nero AG) -- C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe PRC - [2007.11.26 14:54:02 | 001,057,064 | ---- | M] (Nero AG) -- C:\Programme\Nero\Nero 7\InCD\InCD.exe PRC - [2007.09.11 00:45:04 | 000,124,832 | ---- | M] () -- C:\Programme\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe PRC - [2005.04.08 01:01:00 | 002,028,697 | R--- | M] (AVM) -- C:\Programme\avmwlanstick\WLanGUI.exe PRC - [2005.04.08 01:01:00 | 000,363,555 | R--- | M] (AVM Berlin) -- C:\Programme\avmwlanstick\WLanNetService.exe ========== Modules (SafeList) ========== MOD - [2010.11.11 23:10:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\***\Desktop\OTL.exe MOD - [2010.08.23 17:11:46 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - File not found [Auto | Stopped] -- C:\Programme\Bonjour\mDNSResponder.exe -- (Bonjour Service) SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010.11.08 11:55:32 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010.11.08 11:55:29 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009.10.20 19:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Programme\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2008.12.18 19:25:10 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2007.11.26 14:54:12 | 001,554,728 | ---- | M] (Nero AG) [Auto | Running] -- C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv) SRV - [2007.09.11 00:45:04 | 000,124,832 | ---- | M] () [Auto | Running] -- C:\Programme\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor6.0) SRV - [2007.06.27 18:04:00 | 000,279,848 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService) SRV - [2005.11.17 13:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Programme\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) SRV - [2005.04.08 01:01:00 | 000,363,555 | R--- | M] (AVM Berlin) [Auto | Running] -- C:\Programme\avmwlanstick\WLanNetService.exe -- (AVM WLAN Connection Service) SRV - [2005.04.03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) ========== Driver Services (SafeList) ========== DRV - [2010.11.08 11:55:32 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010.11.08 11:55:32 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010.10.24 14:35:11 | 000,139,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK) DRV - [2010.10.11 12:44:44 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2010.05.04 11:55:40 | 010,552,320 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snpstd3.sys -- (SNPSTD3) USB PC Camera (SNPSTD3) DRV - [2009.10.20 19:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2009.05.11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009.04.06 08:13:52 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2009.04.06 08:13:52 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2009.03.25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm) DRV - [2009.03.25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM) DRV - [2009.03.25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM) DRV - [2009.03.25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex) DRV - [2009.03.25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM) DRV - [2009.03.25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS) DRV - [2009.03.25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl) DRV - [2009.02.13 11:35:01 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009.01.21 17:27:28 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008.07.26 18:18:00 | 006,097,536 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008.04.17 09:33:26 | 004,707,328 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008.04.13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008.01.03 15:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007.11.26 14:54:12 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm) DRV - [2007.11.26 14:54:12 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass) DRV - [2007.11.26 14:54:02 | 000,118,952 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs) DRV - [2005.04.08 01:01:00 | 000,452,864 | R--- | M] (AVM GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fwlanusb.sys -- (FWLANUSB) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Programme\Mozilla Firefox\components [2010.11.10 15:14:21 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2010.11.10 15:13:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Components: C:\Programme\Mozilla Thunderbird\components [2010.11.07 19:09:27 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Plugins: C:\Programme\Mozilla Thunderbird\plugins [2010.07.19 17:01:27 | 000,000,000 | ---D | M] [2010.11.11 01:37:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla\Extensions [2010.11.11 01:37:20 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2010.11.11 23:27:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla\Firefox\Profiles\0idfkq5h.default\extensions [2010.11.10 15:14:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla\Firefox\Profiles\0idfkq5h.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010.11.10 15:13:42 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions [2010.10.27 06:44:13 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.10.27 06:44:13 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml [2010.10.27 06:44:13 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.10.27 06:44:13 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.10.27 06:44:13 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.11.11 13:07:00 | 000,000,355 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.) O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [AVMWlanClient] C:\Programme\avmwlanstick\WLanGUI.exe (AVM) O4 - HKLM..\Run: [InCD] C:\Programme\Nero\Nero 7\InCD\InCD.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [SecurDisc] C:\Programme\Nero\Nero 7\InCD\NBHGui.exe (Nero AG) O4 - HKLM..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe File not found O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [TkBellExe] C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe () O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data] O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1228559933859 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008.12.05 15:02:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{26f5e1d9-ae9f-11de-b887-001060a934fa}\Shell\AutoRun\command - "" = J:\StartPortableApps.exe -- File not found O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell - "" = AutoRun O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -- File not found O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\AutoRun\command - "" = J:\rane\kure.exe -- File not found O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\explore\command - "" = J:\rane\\kure.exe -- File not found O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\open\command - "" = J:\rane\\kure.exe -- File not found O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\AutoRun\command - "" = J:\muza\sguza.exe -- File not found O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\explore\command - "" = J:\muza\\sguza.exe -- File not found O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\open\command - "" = J:\muza\\sguza.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.11.11 23:13:37 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010.11.11 23:13:35 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010.11.11 23:13:35 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware [2010.11.11 23:10:46 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\***\Desktop\OTL.exe [2010.11.11 23:10:36 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\***\Desktop\mbam-setup.exe [2010.11.11 13:00:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\F-Secure [2010.11.11 12:30:10 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Malwarebytes [2010.11.11 12:30:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes [2010.11.10 15:13:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla [2010.11.10 15:13:41 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox [2010.11.10 14:33:32 | 008,402,944 | ---- | C] (Mozilla) -- C:\Dokumente und Einstellungen\***\Desktop\Firefox Setup 3.6.12.exe [2010.11.10 01:17:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Desktop\Haftbefehl [2010.11.10 01:17:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Desktop\Fard [2010.11.09 12:24:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe [2010.11.08 23:04:32 | 000,000,000 | ---D | C] -- C:\Programme\Emsisoft HiJackFree [2010.11.08 23:02:31 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\Adobe [2010.11.08 15:22:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Adobe [2010.11.08 11:53:47 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Avira [2010.11.07 20:35:35 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\***\IECompatCache [2010.11.07 19:32:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\PriceGong [2010.10.14 07:29:53 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2010.10.14 07:29:53 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2010.10.14 07:29:26 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2010.07.12 16:22:16 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnpstd3.dll [2010.07.12 16:22:16 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll [2010.07.12 16:22:16 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll [2010.07.12 16:22:16 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\csnpstd3.dll [2004.11.24 19:25:52 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\drvc.dll [33 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.11.11 23:37:00 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010.11.11 23:36:34 | 001,070,144 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010.11.11 23:36:34 | 000,458,822 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat [2010.11.11 23:36:34 | 000,441,124 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010.11.11 23:36:34 | 000,084,326 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat [2010.11.11 23:36:34 | 000,071,060 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010.11.11 23:33:09 | 000,199,590 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010.11.11 23:32:56 | 000,000,268 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1935655697-725345543-839522115-1004.job [2010.11.11 23:32:53 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1935655697-725345543-839522115-1004.job [2010.11.11 23:32:51 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010.11.11 23:32:41 | 001,592,440 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.11.11 23:32:28 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010.11.11 23:32:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010.11.11 23:31:33 | 022,544,384 | -H-- | M] () -- C:\Dokumente und Einstellungen\***\NTUSER.DAT [2010.11.11 23:31:21 | 000,000,190 | -HS- | M] () -- C:\Dokumente und Einstellungen\***\ntuser.ini [2010.11.11 23:10:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\***\Desktop\OTL.exe [2010.11.11 23:10:44 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\***\Desktop\mbam-setup.exe [2010.11.11 21:33:25 | 000,208,593 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\Sime.amr.MP3 [2010.11.11 21:28:24 | 000,020,806 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\Sime.amr [2010.11.11 20:57:50 | 000,132,576 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\vsr.jpg [2010.11.11 20:02:03 | 000,094,240 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT [2010.11.11 13:07:00 | 000,000,355 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010.11.10 14:33:32 | 008,402,944 | ---- | M] (Mozilla) -- C:\Dokumente und Einstellungen\***\Desktop\Firefox Setup 3.6.12.exe [2010.11.10 14:30:36 | 000,086,265 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\bookmarks-2010-11-10.json [2010.11.10 14:06:01 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010.11.09 12:24:33 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010.11.08 23:56:12 | 000,023,552 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\instrumentals.doc [2010.11.08 22:49:54 | 000,000,053 | ---- | M] () -- C:\WINDOWS\wininit.ini [2010.11.08 11:55:32 | 000,126,856 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010.11.08 11:55:32 | 000,060,936 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010.10.28 13:18:23 | 000,856,147 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\molamix2.jpg [2010.10.27 14:17:46 | 009,945,810 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\Summer_Cem_feat_Farid Bang_FEIERABEND_Streetsingle.zip [2010.10.24 14:35:11 | 000,139,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010.10.24 14:07:32 | 000,215,128 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2010.10.23 09:57:18 | 000,057,856 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.10.22 13:08:26 | 000,064,917 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\69333_162028567148936_100000253811906_436744_1765587_n.jpg [2010.10.20 21:24:14 | 000,466,504 | ---- | M] () -- C:\Dokumente und Einstellungen\***\Desktop\DSC00012.JPG [2010.10.20 20:26:32 | 000,000,796 | ---- | M] () -- C:\WINDOWS\win.ini [2010.10.20 20:26:32 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010.10.20 20:26:32 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010.10.14 07:47:34 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [33 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.11.11 21:33:25 | 000,208,593 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\Sime.amr.MP3 [2010.11.11 21:28:24 | 000,020,806 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\Sime.amr [2010.11.11 20:57:48 | 000,132,576 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\vsr.jpg [2010.11.10 14:30:36 | 000,086,265 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\bookmarks-2010-11-10.json [2010.11.08 23:53:43 | 000,023,552 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\instrumentals.doc [2010.10.27 14:17:31 | 009,945,810 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\Summer_Cem_feat_Farid Bang_FEIERABEND_Streetsingle.zip [2010.10.26 19:20:13 | 000,856,147 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\molamix2.jpg [2010.10.22 13:08:25 | 000,064,917 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\69333_162028567148936_100000253811906_436744_1765587_n.jpg [2010.10.20 21:24:14 | 000,466,504 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Desktop\DSC00012.JPG [2010.09.30 23:39:06 | 000,000,132 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Adobe BMP Format CS5 Prefs [2010.08.17 19:08:30 | 000,500,992 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat [2010.07.12 16:22:18 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini [2010.06.28 16:12:00 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll [2010.06.28 14:48:13 | 000,000,046 | ---- | C] () -- C:\WINDOWS\Goya.INI [2010.05.15 19:47:17 | 000,138,056 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\PnkBstrK.sys [2010.04.03 14:51:04 | 000,139,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010.04.02 16:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2010.01.10 15:29:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\KIZ Neuruppin.ini [2009.10.20 19:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2009.10.07 19:30:01 | 000,006,642 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini [2009.09.09 14:21:26 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2009.08.27 20:04:44 | 000,557,003 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll [2009.08.27 20:04:32 | 000,811,835 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll [2009.08.27 20:03:52 | 004,456,201 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll [2009.08.25 19:07:36 | 000,328,334 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll [2009.08.25 18:38:04 | 000,425,040 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll [2009.08.25 17:56:56 | 000,829,781 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009.08.25 17:37:02 | 000,146,098 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll [2009.06.02 18:15:44 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll [2009.06.02 18:15:18 | 000,146,944 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll [2009.06.02 18:15:04 | 000,183,296 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll [2009.06.02 18:14:56 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll [2009.06.02 18:14:30 | 000,486,400 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll [2009.06.02 18:13:58 | 000,257,024 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll [2009.06.02 18:13:50 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll [2009.06.02 18:12:26 | 000,000,246 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\DatChecker.xml [2009.06.02 18:11:26 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll [2009.06.02 18:11:16 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2009.04.17 15:15:07 | 000,003,811 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hpzinstall.log [2009.03.07 11:53:48 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009.01.27 22:51:20 | 000,000,713 | ---- | C] () -- C:\WINDOWS\MIR.INI [2009.01.21 17:27:27 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009.01.10 23:17:32 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ts.dll [2009.01.10 23:16:56 | 000,148,480 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll [2009.01.10 23:16:50 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\avi.dll [2009.01.10 23:16:14 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll [2009.01.10 23:15:54 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll [2009.01.10 23:15:44 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll [2009.01.10 23:15:32 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\avss.dll [2009.01.10 23:15:28 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll [2009.01.10 23:15:12 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\avs.dll [2009.01.10 23:14:08 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2009.01.10 23:14:06 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [2008.12.29 12:39:40 | 000,061,986 | ---- | C] () -- C:\WINDOWS\uninstall_Wonderful Madeira.ini [2008.12.29 12:37:55 | 000,002,675 | ---- | C] () -- C:\WINDOWS\uninstall_canary_islands.ini [2008.12.17 17:17:34 | 000,239,247 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll [2008.12.13 17:38:49 | 000,000,053 | ---- | C] () -- C:\WINDOWS\wininit.ini [2008.12.07 16:32:11 | 000,057,856 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008.12.06 11:13:13 | 000,000,403 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008.12.06 11:13:13 | 000,000,122 | ---- | C] () -- C:\WINDOWS\mdm.ini [2008.12.06 11:13:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI [2008.12.05 16:48:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini [2008.12.05 16:03:39 | 000,002,540 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2008.12.05 16:03:38 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2008.12.05 15:55:07 | 001,070,144 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2008.12.05 15:55:06 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008.12.05 15:54:43 | 000,000,062 | -HS- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\desktop.ini [2008.12.05 15:35:04 | 000,094,240 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT [2008.12.05 15:27:00 | 000,000,137 | ---- | C] () -- C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat [2008.12.05 15:26:13 | 000,000,062 | -HS- | C] () -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\desktop.ini [2008.12.05 15:06:00 | 000,001,124 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2008.12.05 15:02:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2008.12.05 15:00:34 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2008.12.05 15:00:34 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2008.12.05 14:59:47 | 000,027,055 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2008.12.05 14:59:46 | 000,003,999 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2008.12.03 23:11:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008.11.21 22:44:16 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2008.11.06 17:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008.11.06 17:34:00 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest [2008.07.26 18:18:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008.07.26 18:18:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008.07.26 18:18:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008.07.26 18:18:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008.07.26 18:18:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2007.10.13 10:30:20 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\Registration.ini [2007.07.10 18:10:12 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2004.10.28 15:38:10 | 000,315,728 | ---- | C] () -- C:\WINDOWS\System32\flt1chk3.dll [2004.10.03 17:50:54 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\ff_mpeg2enc.dll [2004.08.04 13:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2004.08.04 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2004.08.04 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2004.08.04 13:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2004.08.04 13:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll [2004.08.04 13:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2004.08.04 13:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2004.08.04 13:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2004.08.04 13:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2004.08.04 13:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2004.08.04 13:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2004.08.04 13:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2004.08.04 13:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2004.08.04 13:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2004.08.04 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2004.08.04 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2004.08.04 13:00:00 | 000,034,032 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2004.08.04 13:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2004.08.04 13:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2004.08.04 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2004.08.04 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2004.08.04 13:00:00 | 000,027,914 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2004.08.04 13:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2004.08.04 13:00:00 | 000,017,241 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2004.08.04 13:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2004.08.04 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2004.08.04 13:00:00 | 000,014,060 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2004.08.04 13:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2004.08.04 13:00:00 | 000,009,032 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2004.08.04 13:00:00 | 000,006,287 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2004.08.04 13:00:00 | 000,004,992 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2004.08.04 13:00:00 | 000,004,438 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2004.08.04 13:00:00 | 000,004,233 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2004.08.04 13:00:00 | 000,001,783 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2004.08.04 13:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2004.08.04 13:00:00 | 000,000,796 | ---- | C] () -- C:\WINDOWS\win.ini [2004.08.04 13:00:00 | 000,000,369 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2004.08.04 13:00:00 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2003.03.14 22:44:52 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\mwvb.dll [2001.08.18 05:54:08 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001.03.30 21:58:36 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\Property.dll [1999.01.22 19:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL ========== LOP Check ========== [2009.12.25 22:03:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CaptainSim [2009.01.21 17:30:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\DAEMON Tools Lite [2010.02.15 21:20:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\espionServerData [2010.11.11 13:00:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\F-Secure [2010.07.07 22:22:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ [2010.06.14 17:56:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\KONAMI [2009.10.07 19:33:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX [2010.08.17 23:51:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\regid.1986-12.com.adobe [2010.07.19 12:14:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP [2009.09.11 22:26:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Zylom [2010.05.22 21:34:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Atari [2009.01.21 17:30:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\DAEMON Tools [2009.01.21 17:30:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\DAEMON Tools Lite [2009.01.21 17:30:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\DAEMON Tools Pro [2010.07.19 00:05:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\DonationCoder [2010.07.20 13:08:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\FreeFLVConverter [2010.01.11 13:58:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\GetRightToGo [2010.02.14 22:28:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\gtk-2.0 [2010.11.11 12:57:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\ICQ [2010.07.17 00:30:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\inkscape [2009.10.17 23:22:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Leadertech [2009.01.29 22:37:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mp3tag [2010.10.11 12:42:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\MyPhoneExplorer [2009.05.08 19:21:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\New Technology Studio [2010.07.19 00:46:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Orbit [2010.11.10 15:15:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\PriceGong [2009.09.11 20:49:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Steinberg [2010.09.12 15:35:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Thunderbird [2008.12.06 11:23:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Zoner [2009.09.11 22:26:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Zylom ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 487 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:05EE1EEF @Alternate Data Stream - 119 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:A1D5C6AA < End of report > [/QUOTE] OTL 2: OTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 11.11.2010 23:35:56 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Dokumente und Einstellungen\Sebi\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 55.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 73.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 698.64 Gb Total Space | 370.69 Gb Free Space | 53.06% Space Free | Partition Type: NTFS
Computer Name: SW-RECHNER | User Name: Sebi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Programme\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Programme\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:Remote Desktop
"65533:TCP" = 65533:TCP:*:Enabled:Services
"52344:TCP" = 52344:TCP:*:Enabled:Services
"1602:TCP" = 1602:TCP:*:Enabled:Services
"1704:TCP" = 1704:TCP:*:Enabled:Services
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:Remote Desktop
"65533:TCP" = 65533:TCP:*:Enabled:Services
"52344:TCP" = 52344:TCP:*:Enabled:Services
"1602:TCP" = 1602:TCP:*:Enabled:Services
"1704:TCP" = 1704:TCP:*:Enabled:Services
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Programme\ICQ7.2\ICQ.exe" = C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"C:\Programme\ICQ7.2\aolload.exe" = C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programme\CyberLink\PowerDVD\PowerDVD.exe" = C:\Programme\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:CyberLink PowerDVD -- (CyberLink Corp.)
"H:\CDS\Nero\Installation\SetupX.exe" = H:\CDS\Nero\Installation\SetupX.exe:*:Enabled:Nero ProductSetup -- File not found
"C:\Programme\ICQ6\ICQ.exe" = C:\Programme\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"C:\Programme\acarsd\acarsd.exe" = C:\Programme\acarsd\acarsd.exe:*:Enabled:acarsd -- File not found
"C:\Programme\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Programme\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.)
"C:\Programme\BlogTorrent\btdownloadgui.exe" = C:\Programme\BlogTorrent\btdownloadgui.exe:*:Enabled:btdownloadgui -- ()
"C:\Programme\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe" = C:\Programme\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV -- (Sony DADC Austria AG)
"C:\Programme\Rockstar Games\Grand Theft Auto IV\GTAIV.exe" = C:\Programme\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV -- (Take-Two Interactive Software, Inc.)
"C:\Programme\Microsoft Games for Windows - LIVE\Client\GFWLClient.exe" = C:\Programme\Microsoft Games for Windows - LIVE\Client\GFWLClient.exe:*:Enabled:GFWLClient -- (Microsoft® Corporation)
"C:\Programme\ICQ6.5\ICQ.exe" = C:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- File not found
"C:\Programme\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe" = C:\Programme\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"C:\Programme\Bonjour\mDNSResponder.exe" = C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- File not found
"C:\Dokumente und Einstellungen\Sebi\Desktop\pes2010.exe" = C:\Dokumente und Einstellungen\Sebi\Desktop\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- File not found
"C:\Programme\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Programme\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- File not found
"C:\Programme\ICQ7.2\ICQ.exe" = C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"C:\Programme\ICQ7.2\aolload.exe" = C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Disabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
"C:\Programme\Sony Ericsson\Update Service\Update Service.exe" = C:\Programme\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00010407-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02250F8E-3EF9-41D3-9215-889DDA4A414B}_is1" = EIRESIM - Alicante Ultimate
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3129 Banner Remover 1.0
"{0BBBCFAA-49F3-4529-9FDB-803190E2C243}" = Haufe Formular-Manager
"{1296225E-030B-4979-B515-323CE0FC7582}" = aerosoft's - Mallorca X for FS2004
"{12BE408B-65A7-4A5E-90BC-28965F7F08C9}" = Flight Simulator 2004 BGLComp SDK
"{164360E5-0AAD-48AD-8A36-3F8A859FAB6F}" = PMDG747_400F
"{1819F22A-8B42-4CF5-88C1-97B6F4A7849A}" = ActiveSky Version 6 and ActiveSky Graphics
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19590C2B-8710-4DEB-BEC9-75491179BE7D}" = aerosoft's - Scenery Germany - Bremen
"{1EC65D1D-3911-4F7D-8B6A-63C69EDBFC6E}" = EditVoicepack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{2041A2A9-3641-402B-96F7-369103E927EB}" = Fly-Honduras
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{259E2575-D7A6-436E-8AE3-1E4E14F69ABE}" = Mailsoft's - Kleinflugplätze 6 for FS2004
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 20
"{2758F387-D016-4725-9D03-AB039364DF3D}" = PMDG_747-400_Sound_Update
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2DE59E42-7AA6-4528-A661-8A3D40B29D44}-FS2004" = aerosoft's - Kanarische Inseln - FS2004
"{2FE418CB-1B79-11D8-A9CB-0080AD30B67D}" = VFR-Airfields Vol.1
"{304DAE83-906F-4005-BA09-2870349ABD14}" = PMDG 747-400 FS9 Update V1R12 (Unifies to FSX)
"{30BEB3F9-F159-4EA4-8DA4-324FC898192E}" = Abacus EZ-Scenery V1.03
"{30E7A736-5C95-11D8-A9CB-0080AD30B67D}" = VFR-Airfields Free
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{34BDC9DA-9320-491C-AA40-B0D98A0EBA9C}" = aerosoft's - Mega Airport Frankfurt - FS2004
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3ABDFABB-FA48-4BCA-9ECC-3EFC1E5143D2}" = aerosoft's - German Airports 2 - Dortmund
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3CDBA499-FB8B-4FFC-A374-F5AA59AB534D}" = aerosoft's - German Football Stadiums - FS2004
"{3EE09884-34CC-46EA-B316-5ECB0427E4C7}" = FS Recorder 1.33 for FS2004
"{3EE92B78-5CAF-421C-BBC6-67D466A1F849}_is1" = Version 1.4
"{3FA7A919-87DA-42B1-814B-86DE8DCA17C2}" = gmax
"{411E0CC3-587A-468C-B461-95FAFD05E4DE}" = Adobe InDesign CS3
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{45B3A3BD-F90D-48FE-A147-D74878A51031}" = Nero 7 Essentials
"{46464A5D-7D14-41E3-9C26-E3C186F37D84}" = aerosoft's - German Airports 2 - Cologne-Bonn - FS2004
"{498A4E3D-562E-4129-8722-6DCAB12384AE}" = Windows Communication Foundation Language Pack - DEU
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E1AC70E-710A-4AFD-8B51-DD3C386FB7C2}" = aerosoft's - VFR Berlin 2006
"{51D199F4-5593-4BC9-B2A5-BB1CDE0C894A}" = aerosoft's - Mega Airport Paris CDG
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{555C7DA8-8A43-4A5B-A5FB-137C07AA81D0}" = aerosoft's - Approaching Innsbruck 2004
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{608B7A43-D176-4309-8999-D772F9A01CD4}" = aerosoft's - German Airports 2 - Muenster-Osnabrueck
"{674D3526-6B4F-468A-9802-1130A39B1562}" = aerosoft's - German Airports 4 - FS2004
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6DED41BC-C9EF-4330-B4E5-46CB2C5C6E2D}" = No23 Recorder
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{705F27B3-5B35-4EC4-A258-BF16D83BE22B}" = aerosoft's - German Airports 2 - Leipzig - FS2004
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser und SDK
"{7228FD8C-3B9E-4204-AE36-8A466107685B}" = Windows Workflow Foundation DE Language Pack
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings
"{73C59104-74E1-453B-9813-1D05F5AF4CBE}" = iFly 747-400 Service Pack 3
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7DB077F8-DD66-456D-ABC2-7C26C1447CC2}" = Aerosoft's - Alcatraz
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8872BE4F-EB51-4789-9A65-B9EC45EDAB02}_is1" = Abflüge Online 5.0.0.0
"{8937FCB2-2FC6-4FC3-9FB5-DE2C92DB9C38}" = Microsoft .NET Framework 2.0 Language Pack - DEU
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92DF2F1B-F63C-4D9A-B3E1-B2D11AE29790}" = Windows Presentation Foundation Language Pack (DEU)
"{93E61AF4-29C4-11D9-A9CC-0080AD30B67D}" = Landscape Germany Mesh
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97679567-0095-464E-B5F2-E218A1CF3421}" = PMDG747_400 Queen of the Skies
"{982A0173-ABDE-4C81-AF81-C325FB288273}" = Mailsoft's - Birrfeld X for FS2004
"{98736A65-3C79-49EC-B7E9-A3C77774B0E6}" = Google SketchUp 6
"{9A0906C7-D472-4C22-8D12-11D6AB2819E4}" = aerosoft's - German Airports 3 - Bremen
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A7B4ACF2-5A81-44F4-8253-9211A3B8AFA8}-FS2004" = aerosoft's - Wonderful Madeira - FS2004
"{A901BF63-29AD-49A3-B067-231925E98B62}_is1" = Version 1.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1031-7B44-A91000000001}" = Adobe Reader 9.1 - Deutsch
"{ACC75B04-81D2-4AF4-9312-C8CF39D23EA8}" = Mailsoft's - Switzerland Professional
"{AE585DDE-7230-4B57-926B-428C94AA5850}" = Adobe Setup
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{AF7362B6-BD39-4848-A991-3BA4319444AC}" = Landscape Germany Landclass
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}" = Google SketchUp 6
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B98A34C0-A6A2-4087-B272-557C1C6D0A07}" = Microsoft Flight Simulator X Demo
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BACA4FE0-B0B9-44A9-BB62-E7377C03A96D}" = Mailsoft's - Kleinflugplätze Schweiz Teil 3
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C02567F1-EC4F-4A58-8D1B-473A73B475D2}" = Microsoft Flight Simulator 2004 gmax SDK
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C4CD208D-E3A2-488B-A4F4-FD8DE3DADD25}_is1" = BMW M3 Challenge
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{C87E5016-201A-11D9-A9CC-0080AD30B67D}" = Landscape Germany Rivers
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CB131247-7869-47E1-9969-B29567C9B106}_is1" = FranceVFR - Bale Mulhouse FS2004 (LFSB)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D234EAC0-7D49-492F-97EC-8FA09FD7C1C4}" = aerosoft's - German Airports 3 - Hamburg
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D41CAD6D-DB4C-4D7C-BABA-D1A4B1599741}" = aerosoft's - German Airports 3-Berlin Tegel
"{D4FB2856-E6EB-4864-A241-4587ED21A11B}" = aerosoft's - Brussels 2007
"{D86B6E8D-F224-4BB6-B959-C8EDC5300B5D}" = aerosoft's - Mega Airport Stockholm Arlanda
"{DA46AA5F-4934-4DAC-94E4-7D84AD9A4090}" = Project Canarias 2006
"{DA5A460B-5389-4A21-AFDD-63BCA4541FA9}" = Aerosoft's - Helgoland
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{ECD03DA7-5952-406A-8156-5F0C93618D1F}" = SPEEDLINK Reflect2 Camera
"{EE7D2735-9566-4E60-95AD-44282A7362BE}_is1" = Aerosoft - Gibraltar FS2004
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2A7F421-1679-48D5-B918-96999014ED53}" = Microsoft .NET Framework 3.0 German Language Pack
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0
"{F87CADC4-D447-462A-80C5-A1B996B2F61F}" = aerosoft's - German Airports 3 - Paderborn-Lippstadt
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"737 Pilot in Command - 400/500 Upgrade" = 737 Pilot in Command - 400/500 Upgrade
"737-300 Pilot in Command" = 737-300 Pilot in Command
"A753CAPTAIN" = '757-300 Captain' Expansion Model
"A754CAPTAIN" = 757 Freighter Captain
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0
"Adobe_8fbf74eb27c84640370f87306e8981b" = Adobe InDesign CS3
"Aerodesigns Airbus A318" = Aerodesigns Airbus A318
"Afcad Files Koltsovo 2006 - USSS - Tolmachevo TEAM" = Afcad Files Koltsovo 2006 - USSS - Tolmachevo TEAM
"Airbus Series Vol.1 Deluxe (FS2004)" = Airbus Series Vol.1 Deluxe (FS2004)
"ALMATY9 V2.0" = ALMATY9 V2.0
"Antalya 2010" = Antalya 2010
"ATR_Beta" = Flight One ATR 72-500
"Audacity_is1" = Audacity 1.2.6
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVMWLANCLI" = AVM FRITZ!WLAN
"B752CAPTAIN" = 757-200 Captain (Base)
"Ben Gurion Airport 2006" = Ben Gurion Airport 2006
"Berlin Hauptbahnhof V1" = Berlin Hauptbahnhof V1
"BlogTorrent" = BlogTorrent beta-0.91
"Boeing 737 Fuel Planner" = Boeing 737 Fuel Planner
"C757CAPTAIN" = '757 Captain' ACE 1.4
"Carenado Cessna Skylane 182 RG II" = Carenado Cessna Skylane 182 RG II
"CARENADO PA-34 200T SENECA II FS9" = CARENADO PA-34 200T SENECA II FS9
"CCleaner" = CCleaner (remove only)
"Citation X for FS2004" = Citation X for FS2004
"CLS A340-500/600 FS9" = CLS A340-500/600 FS9
"Counter-Strike: Source" = Counter-Strike: Source
"Cubasis VST 4 Education" = Steinberg Cubasis VST 4 Education
"Dash 8Q-300 by fanda v1.004" = Dash 8Q-300 by fanda v1.004
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"E757CAPTAIN" = Block E - 757 Soundsets
"Elemental Software - FS Elemental Natural" = Elemental Software - FS Elemental Natural
"Emsisoft HiJackFree_is1" = Emsisoft HiJackFree 4.5
"FastStone Capture" = FastStone Capture 5.3
"FinnMesh 2.0" = FinnMesh 2.0
"Firebird SQL Server D" = Firebird SQL Server - MAGIX Edition 2.0.0.1 (D)
"Flight Simulator 9.0" = Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt
"FranceVFR - Strasbourg Entzheim LFST" = FranceVFR - Strasbourg Entzheim LFST
"Fraps" = Fraps
"FreeZ" = FreeZ
"FS2004 / Carenado ARROW PA28RT201" = FS2004 / Carenado ARROW PA28RT201
"FS2004 CHLandmark" = FS2004 CHLandmark
"FSDreamTeam Geneva FS9_is1" = FSDreamTeam Geneva FS9 1.1
"FSFDT FSCopilot" = FSFDT FSCopilot
"FSFDT FSInn" = FSFDT FSInn
"fssc_is1" = Flight Simulator Scenery Creator
"GAP_MEGA_KERKYRA_2009" = GAP_MEGA_KERKYRA_2009
"German Police BMW 318i" = German Police BMW 318i
"German Truck Simulator" = German Truck Simulator 1.00
"GMML Laayoune 2008 scenery for MFS2004" = GMML Laayoune 2008 scenery for MFS2004
"Graffiti Studio 2.0_is1" = Graffiti Studio 2.0
"GT4AES" = GT4AES
"Hamburg-City Scenery " = Hamburg-City Scenery
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"iFly Jets - The 737NG for FS2004" = iFly Jets - The 737NG for FS2004
"Inkscape" = Inkscape 0.47
"InstallShield_{B98A34C0-A6A2-4087-B272-557C1C6D0A07}" = Microsoft Flight Simulator X Demo
"Ivalo 2.0" = Ivalo 2.0
"KIZ Neuruppin_is1" = KIZ Neuruppin
"Koltsovo 2006 - USSS - Tolmachevo TEAM" = Koltsovo 2006 - USSS - Tolmachevo TEAM
"LAME for Audacity_is1" = LAME v3.98.2 for Audacity
"LFRD2004 St-Malo Dinard Pleurtuit" = LFRD2004 St-Malo Dinard Pleurtuit
"MAGIX Online Druck Service D" = MAGIX Online Druck Service 2.3.2.0 (D)
"MAGIX Video deluxe SE D" = MAGIX Video deluxe SE 6.5.4.2 (D)
"Malta Intl. Airport V1.0" = Malta Intl. Airport V1.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Maps2Bgl_is1" = Maps2Bgl 1.8b Beta FS9/FSX-Version
"Media Player - Codec Pack" = Media Player Codec Pack 3.8.0
"Mega Scenery Zvartnots - Armenia 2008 for FS2004 1.00" = Mega Scenery Zvartnots - Armenia 2008 for FS2004 1.00
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - DEU" = Microsoft .NET Framework 2.0 Language Pack - DEU
"Microsoft .NET Framework 3.0 German Language Pack" = Microsoft .NET Framework 3.0 German Language Pack
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MJC8Q300" = Majestic MJC8Q300 Version 2.004
"Mobile Media Converter_is1" = MIKSOFT Mobile Media Converter
"Monopoly Star Wars" = Monopoly Star Wars
"Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12)
"Mozilla Thunderbird (3.1.6)" = Mozilla Thunderbird (3.1.6)
"Mp3tag" = Mp3tag v2.42
"MPE" = MyPhoneExplorer
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Napulevola Photoreal Packs A+B+C" = Napulevola Photoreal Packs A+B+C
"NEMETH DESIGNS - EC120B Colibri" = NEMETH DESIGNS - EC120B Colibri
"Nemeth Designs Bell UH-1 Huey for Microsoft Flight Simulator X" = Nemeth Designs Bell UH-1 Huey for Microsoft Flight Simulator X
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PhotoFiltre" = PhotoFiltre
"Project Canarias 2006" =
"Project Hummer H2 Luxury Edition" = Project Hummer H2 Luxury Edition
"Project Pushback" = Project Pushback
"PS Panels 737NG Panel System_is1" = PS Panels 737NG Version 1.1
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 12.0" = RealPlayer
"Rovaniemi 4.1" = Rovaniemi 4.1
"SUPER ©" = SUPER © Version 2010.bld.38 (May 2, 2010)
"Teachmaster 4.2" = Teachmaster 4.2 (nur Entfernen)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"UK Ambulance - GER Rettungswagen" = UK Ambulance - GER Rettungswagen
"UK2000 Stansted Xtreme" = Remove UK2000 Stansted Xtreme files
"Unlocker" = Unlocker 1.8.9
"Update Service" = Sony Ericsson Update Service
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"Visual Flight London" = Visual Flight London
"VLC media player" = VLC media player 0.9.8a
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"WIC" = Windows Imaging Component
"Wilco Fleet : A380" = Wilco Fleet : A380
"Wilco Fleet : CRJ 2004" = Wilco Fleet : CRJ 2004
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XP Codec Pack" = XP Codec Pack
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"Zoner Photo Studio 9_is1" = Zoner Photo Studio 9
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Aerosoft Mega Airport Munich" = Aerosoft Mega Airport Munich
"Airline Pack E-170 FS9/FSX (version 1.1)" = Airline Pack E-170 FS9/FSX (version 1.1)
"Airline Pack E-190 FS9/FSX (version 1.1)" = Airline Pack E-190 FS9/FSX (version 1.1)
"E-Jets Series (FS2004)" = E-Jets Series (FS2004)
"Erfurt 2008" = Erfurt 2008
"Faraday's Electromagnetic Lab" = Faraday's Electromagnetic Lab
"FeelThere ERJ v.2" = FeelThere ERJ v.2
"FlyBalaton LHSM scenery v0.99 Beta" = FlyBalaton LHSM scenery v0.99 Beta
"Fokker 70-100" = Fokker 70-100
"LFLB - Chambéry Aix les Bains" = LFLB - Chambéry Aix les Bains
"Quest Kodiak 2.4b" = Quest Kodiak 2.4b
"STANLY Track EDDS" = STANLY Track EDDS
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 07.10.2010 17:21:19 | Computer Name = SW-RECHNER | Source = Microsoft Flight Simulator 9.0 | ID = 1000
Description =
Error - 11.10.2010 08:18:32 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung myphoneexplorer.exe, Version 1.8.0.0, fehlgeschlagenes
Modul msvbvm60.dll, Version 6.0.98.2, Fehleradresse 0x0005d2a4.
Error - 11.10.2010 08:26:17 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung myphoneexplorer.exe, Version 1.8.0.0, fehlgeschlagenes
Modul kernel32.dll, Version 5.1.2600.5781, Fehleradresse 0x00012afb.
Error - 11.10.2010 08:30:40 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung myphoneexplorer.exe, Version 1.8.0.0, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x0018e45d.
Error - 22.10.2010 10:07:59 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung photoshop.exe, Version 12.0.0.0, fehlgeschlagenes
Modul nvoglnt.dll, Version 6.14.11.7779, Fehleradresse 0x001216dd.
Error - 26.10.2010 14:22:00 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung photoshop.exe, Version 12.0.0.0, fehlgeschlagenes
Modul nvoglnt.dll, Version 6.14.11.7779, Fehleradresse 0x001216dd.
Error - 28.10.2010 18:11:44 | Computer Name = SW-RECHNER | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung GTAIV.exe, Version 1.0.4.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 10.11.2010 09:35:06 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung au_.exe, Version 1.0.0.0, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x00a21067.
Error - 11.11.2010 16:16:42 | Computer Name = SW-RECHNER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung photoshop.exe, Version 12.0.0.0, fehlgeschlagenes
Modul nvoglnt.dll, Version 6.14.11.7779, Fehleradresse 0x001216dd.
Error - 11.11.2010 18:17:30 | Computer Name = SW-RECHNER | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung mbam.exe, Version 1.46.0.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
[ System Events ]
Error - 11.11.2010 07:57:54 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {0C0A3666-30C9-11D0-8F20-00805F2CD064}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 07:58:05 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {E367E1A1-E917-11D0-AF5F-00A02448799A}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 07:58:05 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {0C0A3666-30C9-11D0-8F20-00805F2CD064}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 07:58:11 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {E367E1A1-E917-11D0-AF5F-00A02448799A}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 07:58:11 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {0C0A3666-30C9-11D0-8F20-00805F2CD064}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 16:28:49 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {E367E1A1-E917-11D0-AF5F-00A02448799A}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 16:28:49 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {0C0A3666-30C9-11D0-8F20-00805F2CD064}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 16:32:47 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {E367E1A1-E917-11D0-AF5F-00A02448799A}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 16:32:47 | Computer Name = SW-RECHNER | Source = DCOM | ID = 10001
Description = Ein DCOM-Server konnte nicht gestartet werden: {0C0A3666-30C9-11D0-8F20-00805F2CD064}
als /. Fehler: "%2" aufgetreten beim Starten dieses Befehls: C:\WINDOWS\system32\MDM.EXE
-Embedding
Error - 11.11.2010 18:32:33 | Computer Name = SW-RECHNER | Source = Service Control Manager | ID = 7000
Description = Der Dienst "##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##" wurde
aufgrund folgenden Fehlers nicht gestartet: %%2
< End of report >
|
|
12.11.2010, 09:41
| #2 | ||
| /// Helfer-Team    | Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockend Hallo und Herzlich Willkommen!
__________________ Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]: Zitat:
Fixen mit OTL
Code:
ATTFilter :otl
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{26f5e1d9-ae9f-11de-b887-001060a934fa}\Shell\AutoRun\command - "" = J:\StartPortableApps.exe -- File not found
O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell - "" = AutoRun
O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -- File not found
O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\AutoRun\command - "" = J:\rane\kure.exe -- File not found
O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\explore\command - "" = J:\rane\\kure.exe -- File not found
O33 - MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\Shell\open\command - "" = J:\rane\\kure.exe -- File not found
O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\AutoRun\command - "" = J:\muza\sguza.exe -- File not found
O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\explore\command - "" = J:\muza\\sguza.exe -- File not found
O33 - MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\Shell\open\command - "" = J:\muza\\sguza.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
:Commands
[purity]
[resethosts]
[emptytemp]
2. - Lade dir Random's System Information Tool (RSIT) von random/random herunter - an einen Ort deiner Wahl und führe die rsit.exe aus - wird "Hijackthis" auch von RSIT installiert und ausgeführt - RSIT erstellt 2 Logfiles (C:\rsit\log.txt und C:\rsit\info.txt) mit erweiterten Infos von deinem System - diese beide bitte komplett hier posten **Kannst Du das Log in Textdatei speichern und hier anhängen (auf "Erweitert" klicken) 3. Bitte Versteckte - und Systemdateien sichtbar machen den Link hier anklicken: System-Dateien und -Ordner unter XP und Vista sichtbar machen Am Ende unserer Arbeit, kannst wieder rückgängig machen! 4. → Lade Dir HJTscanlist.zip herunter → entpacke die Datei auf deinem Desktop → Bei WindowsXP Home musst vor dem Scan zusätzlich tasklist.zip installieren → per Doppelklick starten → Wähle dein Betriebsystem aus - bei Win7 wähle Vista → Wenn Du gefragt wirst, die Option "Einstellung" (1) - scanlist" wählen → Nach kurzer Zeit sollte sich Dein Editor öffnen und die Datei hjtscanlist.txt präsentieren → Bitte kopiere den Inhalt hier in Deinen Thread. ** Falls es klappt auf einmal nicht, kannst den Text in mehrere Teile teilen und so posten 5. Ich würde gerne noch all deine installierten Programme sehen: Lade dir das Tool "Ccleaner" herunter → "Download"→ " Download from FileHippo.com" installieren (Software-Lizenzvereinbarung lesen, falls angeboten wird "Füge CCleaner Yahoo! Toolbar hinzu" abwählen)→ starten→ falls nötig - unter Options settings-> "german" einstellen dann klick auf "Extra (um die installierten Programme auch anzuzeigen)→ weiter auf "Als Textdatei speichern..." wird eine Textdatei (*.txt) erstellt, kopiere dazu den Inhalt und füge ihn da ein Zitat:
Coverflow |
|
12.11.2010, 20:33
| #3 |
| | Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockend Puhh ich hoffe ich hab jetzt alles richtig gemacht:
__________________OTL: Code:
ATTFilter All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{26f5e1d9-ae9f-11de-b887-001060a934fa}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26f5e1d9-ae9f-11de-b887-001060a934fa}\ not found.
File J:\StartPortableApps.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{643d1681-67dd-11df-b9f8-002215534943}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{643d1681-67dd-11df-b9f8-002215534943}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{643d1681-67dd-11df-b9f8-002215534943}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{643d1681-67dd-11df-b9f8-002215534943}\ not found.
File J:\LaunchU3.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
File J:\rane\kure.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
File J:\rane\\kure.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd46035a-c444-11dd-b6a1-002215534943}\ not found.
File J:\rane\\kure.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
File J:\muza\sguza.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
File J:\muza\\sguza.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e43f917d-045e-11df-b92c-001060a934fa}\ not found.
File J:\muza\\sguza.exe not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes
User: LocalService
->Temp folder emptied: 82513 bytes
->Temporary Internet Files folder emptied: 40928 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: ***
->Temp folder emptied: 1856928256 bytes
->Temporary Internet Files folder emptied: 232306278 bytes
->Java cache emptied: 138706162 bytes
->FireFox cache emptied: 52534971 bytes
->Flash cache emptied: 290237 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2503692 bytes
%systemroot%\System32 .tmp files removed: 2951 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 115443637 bytes
RecycleBin emptied: 84950536 bytes
Total Files Cleaned = 2.369.00 mb
OTL by OldTimer - Version 3.2.17.3 log created on 11122010_111902
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\$$$dq3e scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\$67we.$ scheduled to be moved on reboot.
Registry entries deleted on Reboot...
[CODE] info.txtRSIT Logfile: RSIT Logfile: Code:
ATTFilter logfile of random's system information tool 1.08 2010-11-12 20:16:34
======Uninstall list======
-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Programme\Microsoft Games\Flight Simulator 9\CanarySim\Data\uninstall.exe
-->C:\Programme\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\NuNInst.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
737 Pilot in Command - 400/500 Upgrade-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_737PIC.exe
737-300 Pilot in Command-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_737-300PIC.exe
'757 Captain' ACE 1.4-->C:\Programme\Microsoft Games\Flight Simulator 9\csC757_uninstall.exe
757 Freighter Captain-->C:\Programme\Microsoft Games\Flight Simulator 9\csA754_uninstall.exe
757-200 Captain (Base)-->C:\Programme\Microsoft Games\Flight Simulator 9\csB752_uninstall.exe
'757-300 Captain' Expansion Model-->C:\Programme\Microsoft Games\Flight Simulator 9\csA753_uninstall.exe
Abacus EZ-Scenery V1.03-->MsiExec.exe /I{30BEB3F9-F159-4EA4-8DA4-324FC898192E}
Abflüge Online 5.0.0.0-->"C:\Programme\Abfluege Online 5\unins000.exe"
ActiveSky Version 6 and ActiveSky Graphics-->MsiExec.exe /X{1819F22A-8B42-4CF5-88C1-97B6F4A7849A}
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10k_Plugin.exe -maintain plugin
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe InDesign CS3-->C:\Programme\Gemeinsame Dateien\Adobe\Installers\8fbf74eb27c84640370f87306e8981b\Setup.exe
Adobe InDesign CS3-->MsiExec.exe /I{411E0CC3-587A-468C-B461-95FAFD05E4DE}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe Photoshop Elements 6.0-->msiexec /I {F54AC413-D2C6-4A24-B324-370C223C6250}
Adobe Reader 9.1 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A91000000001}
Adobe Setup-->MsiExec.exe /I{AE585DDE-7230-4B57-926B-428C94AA5850}
Adobe SING CS3-->MsiExec.exe /I{B671CBFD-4109-4D35-9252-3062D3CCB7B2}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Aerodesigns Airbus A318-->C:\Programme\Microsoft Games\Flight Simulator 9\AD318_Uninstal.exe
Aerosoft's - Alcatraz-->C:\Programme\InstallShield Installation Information\{7DB077F8-DD66-456D-ABC2-7C26C1447CC2}\setup.exe -runfromtemp -l0x0007 -removeonly
aerosoft's - Approaching Innsbruck 2004-->"C:\Programme\InstallShield Installation Information\{555C7DA8-8A43-4A5B-A5FB-137C07AA81D0}\setup.exe" -runfromtemp -l0x0007 -removeonly
aerosoft's - German Airports 2 - Cologne-Bonn - FS2004-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{46464A5D-7D14-41E3-9C26-E3C186F37D84}\Setup.exe" -uninst
aerosoft's - German Airports 2 - Dortmund-->C:\Programme\InstallShield Installation Information\{3ABDFABB-FA48-4BCA-9ECC-3EFC1E5143D2}\setup.exe -runfromtemp -l0x0007 -uninst -removeonly
aerosoft's - German Airports 2 - Leipzig - FS2004-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{705F27B3-5B35-4EC4-A258-BF16D83BE22B}\Setup.exe" -uninst
aerosoft's - German Airports 2 - Muenster-Osnabrueck-->C:\Programme\InstallShield Installation Information\{608B7A43-D176-4309-8999-D772F9A01CD4}\setup.exe -runfromtemp -l0x0007 -uninst -removeonly
aerosoft's - German Airports 3 - Bremen-->"C:\Programme\InstallShield Installation Information\{9A0906C7-D472-4C22-8D12-11D6AB2819E4}\setup.exe" -runfromtemp -l0x0007 -removeonly
aerosoft's - German Airports 4 - FS2004-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{674D3526-6B4F-468A-9802-1130A39B1562}\Setup.exe" -uninst
aerosoft's - German Football Stadiums - FS2004-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{3CDBA499-FB8B-4FFC-A374-F5AA59AB534D}\Setup.exe" -uninst
aerosoft's - Kanarische Inseln - FS2004-->"C:\Programme\Microsoft Games\Flight Simulator 9\uninstall_canary_islands.exe"
aerosoft's - Mallorca X for FS2004-->"C:\Programme\InstallShield Installation Information\{1296225E-030B-4979-B515-323CE0FC7582}\setup.exe" -runfromtemp -l0x0007 -removeonly
aerosoft's - Mega Airport Frankfurt - FS2004-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{34BDC9DA-9320-491C-AA40-B0D98A0EBA9C}\Setup.exe" -uninst
aerosoft's - Mega Airport Paris CDG-->C:\Programme\InstallShield Installation Information\{51D199F4-5593-4BC9-B2A5-BB1CDE0C894A}\setup.exe -runfromtemp -l0x0007 -removeonly
aerosoft's - Scenery Germany - Bremen-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{19590C2B-8710-4DEB-BEC9-75491179BE7D}\Setup.exe" -uninst
aerosoft's - VFR Berlin 2006-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{4E1AC70E-710A-4AFD-8B51-DD3C386FB7C2}\Setup.exe" -uninst
aerosoft's - Wonderful Madeira - FS2004-->"C:\Programme\Microsoft Games\Flight Simulator 9\uninstall_Wonderful Madeira.exe"
Afcad Files Koltsovo 2006 - USSS - Tolmachevo TEAM-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_AFCAD.exe
Airbus Series Vol.1 Deluxe (FS2004)-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_Airbus1_wilco.exe
ALMATY9 V2.0-->C:\WINDOWS\iun6002.exe "C:\Programme\ALMATY9 V2.0\irunin.ini"
Antalya 2010-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal Antalya 2010.exe
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Audacity 1.2.6-->"C:\Programme\Audacity\unins000.exe"
Avira AntiVir Personal - Free Antivirus-->C:\Programme\Avira\AntiVir Desktop\setup.exe /REMOVE
AVM FRITZ!WLAN-->C:\Programme\avmwlanstick\instwcli.exe -d1
Battlefield: Bad Company™ 2-->MsiExec.exe /X{3AC8457C-0385-4BEA-A959-E095F05D6D67}
Ben Gurion Airport 2006-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Berlin Hauptbahnhof V1-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Block E - 757 Soundsets-->C:\Programme\Microsoft Games\Flight Simulator 9\csE757_uninstall.exe
BlogTorrent beta-0.91-->"C:\Programme\BlogTorrent\uninstall.exe"
Boeing 737 Fuel Planner-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Carenado Cessna Skylane 182 RG II-->C:\Programme\Microsoft Games\Flight Simulator 9\UNCARCESSNA182RGII.exe
CARENADO PA-34 200T SENECA II FS9-->C:\Programme\Microsoft Games\Flight Simulator 9\Unin Seneca.exe
CCleaner (remove only)-->"C:\Programme\CCleaner\uninst.exe"
Citation X for FS2004-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstall Citation X for FS2004.exe
CLS A340-500/600 FS9-->C:\Programme\Microsoft Games\Flight Simulator 9\CLS_A3456_FS9_remove
Counter-Strike: Source-->C:\Programme\Counter-Strike Source\Uninst.exe
Dash 8Q-300 by fanda v1.004-->C:\PROGRAMME\MICROSOFT GAMES\FLIGHT SIMULATOR 9\AIRCRAFT\Uninstal.exe
DivX Codec-->C:\Programme\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Programme\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Programme\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD Suite-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
DVDVideoSoftTB Toolbar-->C:\PROGRA~1\DVDVID~2\UNWISE.EXE /U C:\PROGRA~1\DVDVID~2\INSTALL.LOG
EditVoicepack-->MsiExec.exe /I{1EC65D1D-3911-4F7D-8B6A-63C69EDBFC6E}
EIRESIM - Alicante Ultimate-->"C:\Programme\Microsoft Games\Flight Simulator 9\unins001.exe"
Elemental Software - FS Elemental Natural-->C:\Programme\Microsoft Games\Flight Simulator 9\DesinstaladorFSElemental.exe
Emsisoft HiJackFree 4.5-->"C:\Programme\Emsisoft HiJackFree\unins000.exe"
FastStone Capture 5.3-->C:\Programme\FastStone Capture\uninst.exe
FinnMesh 2.0-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstall_FinnMesh2.exe
Firebird SQL Server - MAGIX Edition 2.0.0.1 (D)-->C:\Programme\MAGIX\Common\Database\uninstall.exe
Flight One ATR 72-500-->C:\WINDOWS\iun6002.exe "C:\Programme\Microsoft Games\Flight Simulator 9\ATR_Beta.ini"
Flight Simulator 2004 BGLComp SDK-->MsiExec.exe /I{12BE408B-65A7-4A5E-90BC-28965F7F08C9}
Flight Simulator Scenery Creator-->"C:\Programme\Leung Software\FS Scenery Creator\unins000.exe"
Fly-Honduras-->MsiExec.exe /I{2041A2A9-3641-402B-96F7-369103E927EB}
FranceVFR - Strasbourg Entzheim LFST-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstall FranceVFR - Strasbourg Entzheim LFST.exe
Fraps-->"C:\Fraps\uninstall.exe"
FreeZ-->"C:\Programme\Microsoft Games\Flight Simulator 9\FreeZ_Uninstall.exe"
FS Recorder 1.33 for FS2004-->MsiExec.exe /X{3EE09884-34CC-46EA-B316-5ECB0427E4C7}
FS2004 / Carenado ARROW PA28RT201-->C:\Programme\Microsoft Games\Flight Simulator 9\Aircraft\Careando ARROW PA28RT201\ARROW IV.exe
FS2004 CHLandmark-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
FSDreamTeam Geneva FS9 1.1-->"C:\Programme\Microsoft Games\Flight Simulator 9\unins000.exe"
FSFDT FSCopilot-->C:\Programme\FSFDT\uninstallFSCopilot.exe
FSFDT FSInn-->C:\Programme\FSFDT\uninstallFSInn.exe
GAP_MEGA_KERKYRA_2009-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
German Police BMW 318i-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
German Truck Simulator 1.00-->C:\Programme\German Truck Simulator\uninst.exe
GIMP 2.6.7-->"C:\Programme\GIMP-2.0\setup\unins000.exe"
gmax-->MsiExec.exe /X{3FA7A919-87DA-42B1-814B-86DE8DCA17C2}
GMML Laayoune 2008 scenery for MFS2004-->C:\Programme\Microsoft Games\Flight Simulator 9\GMML_Uninstal.exe
Google Earth-->MsiExec.exe /X{4286E640-B5FB-11DF-AC4B-005056C00008}
Google SketchUp 6-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{98736A65-3C79-49EC-B7E9-A3C77774B0E6}\setup.exe" -l0x7 -removeonly
Google SketchUp 6-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}\setup.exe" -l0x7 -removeonly
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Graffiti Studio 2.0-->"C:\Programme\Graffiti Studio 2.0\unins000.exe"
Grand Theft Auto IV-->"C:\Programme\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x0007 -removeonly
GT4AES-->C:\Programme\Microsoft Games\Flight Simulator 9\GT4AES Uninstall.exe
Hamburg-City Scenery -->C:\Programme\Microsoft Games\Flight Simulator 9\Addon Scenery\Uninstal.exe
Haufe Formular-Manager-->MsiExec.exe /X{0BBBCFAA-49F3-4529-9FDB-803190E2C243}
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix für Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB938759)-->"C:\WINDOWS\$NtUninstallKB938759$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
ICQ 7.2 Build #3129 Banner Remover 1.0-->"C:\Programme\ICQ-Banner-Remover\unins000.exe"
ICQ7.2-->"C:\Programme\InstallShield Installation Information\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
iFly 747-400 Service Pack 3-->MsiExec.exe /I{73C59104-74E1-453B-9813-1D05F5AF4CBE}
iFly Jets - The 737NG for FS2004-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Inkscape 0.47-->C:\Programme\Inkscape\Uninstall.exe
Ivalo 2.0-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_Ivalo2.exe
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
KIZ Neuruppin-->"C:\WINDOWS\KIZ Neuruppin Uninstaller\unins000.exe"
Koltsovo 2006 - USSS - Tolmachevo TEAM-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_USSS.exe
LAME v3.98.2 for Audacity-->"C:\Programme\Lame for Audacity\unins000.exe"
Landscape Germany Landclass-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{AF7362B6-BD39-4848-A991-3BA4319444AC}\Setup.exe"
Landscape Germany Mesh-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{93E61AF4-29C4-11D9-A9CC-0080AD30B67D}\Setup.exe"
LFRD2004 St-Malo Dinard Pleurtuit-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
MAGIX Online Druck Service 2.3.2.0 (D)-->C:\Programme\MAGIX\Online_Druck_Service\instslct.exe
MAGIX Video deluxe SE 6.5.4.2 (D)-->C:\Programme\MAGIX\Video_deluxe_2007_SE\instslct.exe
Mailsoft's - Birrfeld X for FS2004-->"C:\Programme\InstallShield Installation Information\{982A0173-ABDE-4C81-AF81-C325FB288273}\Setup.exe" -runfromtemp -l0x0407 -removeonly
Mailsoft's - Kleinflugplätze 6 for FS2004-->"C:\Programme\InstallShield Installation Information\{259E2575-D7A6-436E-8AE3-1E4E14F69ABE}\Setup.exe" -runfromtemp -l0x0407 -removeonly
Mailsoft's - Kleinflugplätze Schweiz Teil 3-->C:\Programme\InstallShield Installation Information\{BACA4FE0-B0B9-44A9-BB62-E7377C03A96D}\Setup.exe -runfromtemp -l0x0007 -removeonly
Mailsoft's - Switzerland Professional-->C:\Programme\InstallShield Installation Information\{ACC75B04-81D2-4AF4-9312-C8CF39D23EA8}\setup.exe -runfromtemp -l0x0007 -uninst -removeonly
Majestic MJC8Q300 Version 2.004-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstl-mjc8q3_2-2.004.exe
Malta Intl. Airport V1.0-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Malwarebytes' Anti-Malware-->"C:\Programme\Malwarebytes' Anti-Malware\unins000.exe"
Maps2Bgl 1.8b Beta FS9/FSX-Version-->"C:\Programme\Maps2Bgl\unins000.exe"
Media Player Codec Pack 3.8.0-->C:\WINDOWS\system32\C2MP\Uninst.exe
Mega Scenery Zvartnots - Armenia 2008 for FS2004 1.00-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstall_Mega_Scenery_Zvartnots_Armenia_2008.exe
Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack - DEU-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - DEU\install.exe
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 German Language Pack-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 German Language Pack\setup.exe
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt-->"C:\Programme\Microsoft Games\Flight Simulator 9\UNINSTAL.EXE" /runtemp /addremove
Microsoft Flight Simulator 2004 gmax SDK-->MsiExec.exe /I{C02567F1-EC4F-4A58-8D1B-473A73B475D2}
Microsoft Flight Simulator X Demo-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{B98A34C0-A6A2-4087-B272-557C1C6D0A07}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{8FB1B528-E260-451E-9B55-E9152F94B80B}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 Professional-->MsiExec.exe /I{00010407-78E1-11D2-B60F-006097C998E7}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
MIKSOFT Mobile Media Converter-->"C:\Programme\MIKSOFT\Mobile Media Converter\unins000.exe"
Monopoly Star Wars-->C:\WINDOWS\IsUn0407.exe -f"C:\Programme\Monopoly Star Wars\Uninst.isu"
Mozilla Firefox (3.6.12)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (3.1.6)-->C:\Programme\Mozilla Thunderbird\uninstall\helper.exe
Mp3tag v2.42-->C:\Programme\Mp3tag\Mp3tagUninstall.EXE
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 Parser und SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MyPhoneExplorer-->C:\Programme\MyPhoneExplorer\uninstall.exe
Napulevola Photoreal Packs A+B+C-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
NEMETH DESIGNS - EC120B Colibri-->C:\Programme\Microsoft Games\Flight Simulator 9\UnInstall_NDEC120.exe
Nemeth Designs Bell UH-1 Huey for Microsoft Flight Simulator X-->C:\Programme\Microsoft Games\Microsoft Flight Simulator X Demo\Uninstall.exe
Nero 7 Essentials-->MsiExec.exe /X{45B3A3BD-F90D-48FE-A147-D74878A51031}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
No23 Recorder-->MsiExec.exe /X{6DED41BC-C9EF-4330-B4E5-46CB2C5C6E2D}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
PDFCreator-->C:\Programme\PDFCreator\unins000.exe
PhotoFiltre-->"C:\Programme\PhotoFiltre\Uninst.exe"
PMDG 747-400 FS9 Update V1R12 (Unifies to FSX)-->C:\Programme\InstallShield Installation Information\{304DAE83-906F-4005-BA09-2870349ABD14}\setup.exe -runfromtemp -l0x0009 -removeonly
PMDG_747-400_Sound_Update-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2758F387-D016-4725-9D03-AB039364DF3D}\setup.exe" -l0x9 -removeonly
PMDG747_400 Queen of the Skies-->C:\Programme\InstallShield Installation Information\{97679567-0095-464E-B5F2-E218A1CF3421}\setup.exe -runfromtemp -l0x0009 -removeonly
PMDG747_400F-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{164360E5-0AAD-48AD-8A36-3F8A859FAB6F}\setup.exe" -l0x9 -removeonly
PowerDVD-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
PowerProducer-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\setup.exe" -uninstall
Pro Evolution Soccer 2010-->MsiExec.exe /X{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}
Project Hummer H2 Luxury Edition-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Project Pushback-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
PS Panels 737NG Version 1.1-->"C:\Programme\Microsoft Games\Flight Simulator 9\Flight Simulator 9\unins000.exe"
PunkBuster Services-->C:\WINDOWS\system32\pbsvc_bc2.exe -u
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RealPlayer-->C:\Programme\Gemeinsame Dateien\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0
Remove UK2000 Stansted Xtreme files-->C:\WINDOWS\iun506.exe C:\Programme\Microsoft Games\Flight Simulator 9\UK2000 scenery\UK2000 Stansted Xtreme\irunin.ini
Rockstar Games Social Club-->"C:\Programme\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0007 -removeonly
Rovaniemi 4.1-->C:\Programme\Microsoft Games\Flight Simulator 9\Addon Scenery\FISD\Uninstall_Rovaniemi41.exe
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Sicherheitsupdate für Windows Internet Explorer 8 (KB2183461)-->"C:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969897)-->"C:\WINDOWS\$NtUninstallKB969897$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB976325)-->"C:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
Sony Ericsson Update Service-->C:\Programme\Sony Ericsson\Update Service\uninst.exe
Steinberg Cubasis VST 4 Education-->C:\PROGRA~1\STEINB~1\CUBASI~1\UNINST~1.EXE C:\PROGRA~1\STEINB~1\CUBASI~1\INSTALL.LOG
SUPER © Version 2010.bld.38 (May 2, 2010)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
Teachmaster 4.2 (nur Entfernen)-->C:\Programme\Teachmaster 4.2\Uninstall.exe
TeamSpeak 2 RC2-->C:\Programme\Teamspeak2_RC2\unins000.exe
UK Ambulance - GER Rettungswagen-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal.exe
Unlocker 1.8.9-->C:\Programme\Unlocker\uninst.exe
Update für Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Update für Windows Internet Explorer 8 (KB978506)-->"C:\WINDOWS\ie8updates\KB978506-IE8\spuninst\spuninst.exe"
Update für Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe"
Update für Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Update für Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Update für Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update für Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update für Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Update für Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update für Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update für Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update für Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update für Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Update für Windows XP (KB976749)-->"C:\WINDOWS\$NtUninstallKB976749$\spuninst\spuninst.exe"
Update für Windows XP (KB978207)-->"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"
Version 1.0-->"C:\Programme\Microsoft Games\Flight Simulator 9\Real Environment Pro\unins000.exe"
Version 1.4-->"C:\Programme\Microsoft Games\Flight Simulator 9\Addon Scenery\unins000.exe"
VFR-Airfields Free-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{30E7A736-5C95-11D8-A9CB-0080AD30B67D}\Setup.exe"
VFR-Airfields Vol.1-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2FE418CB-1B79-11D8-A9CB-0080AD30B67D}\Setup.exe"
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Visual Flight London-->C:\Programme\VisualFlight\\VisualFlightLondon1.0cUninstall.exe
VLC media player 0.9.8a-->C:\Programme\VideoLAN\VLC\uninstall.exe
Wichtiges Update für Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Wilco Fleet : A380-->C:\Programme\Microsoft Games\Flight Simulator 9\Uninstal_WilcoA380.exe
Wilco Fleet : CRJ 2004-->C:\Programme\Microsoft Games\Flight Simulator 9\wfcrj_uninstal.exe
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Anmelde-Assistent-->MsiExec.exe /I{52B97218-98CB-4B8B-9283-D213C85E1AA4}
Windows Live Communications Platform-->MsiExec.exe /I{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
Windows Live Essentials-->C:\Programme\Windows Live\Installer\wlarp.exe
Windows Live Messenger-->MsiExec.exe /X{AED2DD42-9853-407E-A6BC-8A1D6B715909}
Windows Live-Uploadtool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Media Format 11 runtime-->"C:\Programme\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Programme\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation Language Pack (DEU)-->MsiExec.exe /X{92DF2F1B-F63C-4D9A-B3E1-B2D11AE29790}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation DE Language Pack-->MsiExec.exe /I{7228FD8C-3B9E-4204-AE36-8A466107685B}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinPcap 4.1.1-->C:\Programme\WinPcap\uninstall.exe
WinRAR-->C:\Programme\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XP Codec Pack-->C:\Programme\XP Codec Pack\Uninstall.exe
Zoner Photo Studio 9-->"C:\Programme\Zoner\Photo Studio 9\unins000.exe"
======Hosts File======
::1 localhost
======Security center information======
AV: AntiVir Desktop
======System event log======
Computer Name: SW-RECHNER
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.
Record Number: 49720
Source Name: EventLog
Time Written: 20101007140817.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 6006
Message: Der Ereignisprotokolldienst wurde beendet.
Record Number: 49719
Source Name: EventLog
Time Written: 20101007103807.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 7036
Message: Dienst "Google Software Updater" befindet sich jetzt im Status "Beendet".
Record Number: 49718
Source Name: Service Control Manager
Time Written: 20101007093344.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 7036
Message: Dienst "Google Update Service (gupdate1c99db66a30e8ee)" befindet sich jetzt im Status "Beendet".
Record Number: 49717
Source Name: Service Control Manager
Time Written: 20101007093318.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 7036
Message: Dienst "HTTP-SSL" befindet sich jetzt im Status "Ausgeführt".
Record Number: 49716
Source Name: Service Control Manager
Time Written: 20101007093311.000000+120
Event Type: Informationen
User:
=====Application event log=====
Computer Name: SW-RECHNER
Event Code: 0
Message:
Record Number: 9370
Source Name: gusvc
Time Written: 20100526102907.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 0
Message:
Record Number: 9369
Source Name: gupdate1c99db66a30e8ee
Time Written: 20100526102907.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 1
Message:
Record Number: 9368
Source Name: Bonjour Service
Time Written: 20100526102907.000000+120
Event Type: Informationen
User:
Computer Name: SW-RECHNER
Event Code: 2570
Message: Der Adobe Active File-Monitor-Service wurde gestartet.
Record Number: 9367
Source Name: Adobe Active File Monitor 6.0
Time Written: 20100526102905.000000+120
Event Type:
User:
Computer Name: SW-RECHNER
Event Code: 20
Message:
Record Number: 9366
Source Name: Google Update
Time Written: 20100525211005.000000+120
Event Type: Fehler
User: NT-AUTORITÄT\SYSTEM
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 2 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION"=0203
"NUMBER_OF_PROCESSORS"=4
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=C:\Programme\Rockstar Games\Rockstar Games Social Club
"RGSC"=C:\Programme\Rockstar Games\Rockstar Games Social Club\1_0_0_0
"CLASSPATH"=.;C:\Programme\Java\jre1.5.0_06\lib\ext\QTJava.zip
"QTJAVA"=C:\Programme\Java\jre1.5.0_06\lib\ext\QTJava.zip
-----------------EOF-----------------
RSIT Log: [Code] RSIT Logfile: RSIT Logfile: Code:
ATTFilter Logfile of random's system information tool 1.08 (written by random/random) Run by *** at 2010-11-12 20:16:26 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 382 GB (53%) free of 715 GB Total RAM: 3327 MB (79% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:16:32, on 12.11.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\Programme\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\avmwlanstick\WlanNetService.exe C:\Programme\Avira\AntiVir Desktop\avshadow.exe C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe C:\Programme\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Programme\CyberLink\Shared Files\RichVideo.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Programme\avmwlanstick\wlangui.exe C:\WINDOWS\RTHDCPL.EXE C:\Programme\Nero\Nero 7\InCD\NBHGui.exe C:\Programme\Nero\Nero 7\InCD\InCD.exe C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\System32\svchost.exe C:\Programme\ICQ7.2\ICQ.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Programme\Mozilla Firefox\plugin-container.exe C:\Programme\Windows Media Player\wmplayer.exe C:\Dokumente und Einstellungen\***\Desktop\RSIT.exe C:\Programme\trend micro\***.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll O1 - Hosts: ÿþ127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [AVMWlanClient] C:\Programme\avmwlanstick\wlangui.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [SecurDisc] C:\Programme\Nero\Nero 7\InCD\NBHGui.exe O4 - HKLM\..\Run: [InCD] C:\Programme\Nero\Nero 7\InCD\InCD.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1228559933859 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Programme\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: AVM WLAN Connection Service - AVM Berlin - C:\Programme\avmwlanstick\WlanNetService.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Unknown owner - C:\Programme\Bonjour\mDNSResponder.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programme\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update Service (gupdate1c99db66a30e8ee) (gupdate1c99db66a30e8ee) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: NBService - Nero AG - C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Programme\CyberLink\Shared Files\RichVideo.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Programme\WinPcap\rpcapd.exe -- End of file - 8529 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1935655697-725345543-839522115-1004.job C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1935655697-725345543-839522115-1004.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] DVDVideoSoftTB Toolbar - C:\Programme\DVDVideoSoftTB\tbDVD1.dll [2010-11-07 2735200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Anmelde-Hilfsprogramm - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Programme\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-12 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Programme\DVDVideoSoftTB\tbDVD1.dll [2010-11-07 2735200] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-07-26 13570048] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-07-26 86016] "AVMWlanClient"=C:\Programme\avmwlanstick\wlangui.exe [2005-04-08 2028697] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-04-10 16861184] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632] "SecurDisc"=C:\Programme\Nero\Nero 7\InCD\NBHGui.exe [2007-11-26 1629480] "InCD"=C:\Programme\Nero\Nero 7\InCD\InCD.exe [2007-11-26 1057064] "QuickTime Task"=C:\Programme\QuickTime\QTTask.exe [2009-01-05 413696] "Adobe Reader Speed Launcher"=C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] "avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2010-11-08 281768] "SunJavaUpdateSched"=C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [2010-02-18 248040] "snpstd3"=C:\WINDOWS\vsnpstd3.exe [] "tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2009-07-29 356352] "TkBellExe"=C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe [2010-07-19 202256] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent] bthprops.cpl,,BluetoothAuthenticationAgent [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera] C:\WINDOWS\FixCamera.exe [2007-07-11 20480] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut] C:\Programme\CyberLink\PowerDVD\Language\Language.exe [2007-01-08 52256] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Programme\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe [2007-03-01 153136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] C:\Programme\CyberLink\PowerDVD\PDVDServ.exe [2007-03-14 71216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrayServer] C:\Programme\MAGIX\Video_deluxe_2007_SE\TrayServer.exe [2006-10-04 86016] C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart Microsoft Office.lnk - C:\Programme\Microsoft Office\Office\OSA9.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=0x91000000 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Programme\CyberLink\PowerDVD\PowerDVD.exe"="C:\Programme\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:CyberLink PowerDVD" "H:\CDS\Nero\Installation\SetupX.exe"="H:\CDS\Nero\Installation\SetupX.exe:*:Enabled:Nero ProductSetup" "C:\Programme\ICQ6\ICQ.exe"="C:\Programme\ICQ6\ICQ.exe:*:Enabled:ICQ6" "C:\Programme\acarsd\acarsd.exe"="C:\Programme\acarsd\acarsd.exe:*:Enabled:acarsd" "C:\Programme\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Programme\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\BlogTorrent\btdownloadgui.exe"="C:\Programme\BlogTorrent\btdownloadgui.exe:*:Enabled:btdownloadgui" "C:\Programme\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Programme\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV" "C:\Programme\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="C:\Programme\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV" "C:\Programme\Microsoft Games for Windows - LIVE\Client\GFWLClient.exe"="C:\Programme\Microsoft Games for Windows - LIVE\Client\GFWLClient.exe:*:Enabled:GFWLClient" "C:\Programme\ICQ6.5\ICQ.exe"="C:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ6" "C:\Programme\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe"="C:\Programme\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2" "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Dokumente und Einstellungen\***\Desktop\pes2010.exe"="C:\Dokumente und Einstellungen\***\Desktop\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010" "C:\Programme\KONAMI\Pro Evolution Soccer 2010\pes2010.exe"="C:\Programme\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010" "C:\Programme\ICQ7.2\ICQ.exe"="C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2" "C:\Programme\ICQ7.2\aolload.exe"="C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe" "C:\Programme\Skype\Plugin Manager\skypePM.exe"="C:\Programme\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Disabled:Microsoft DirectPlay8 Server" "C:\Programme\Sony Ericsson\Update Service\Update Service.exe"="C:\Programme\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Programme\ICQ7.2\ICQ.exe"="C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2" "C:\Programme\ICQ7.2\aolload.exe"="C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger=" ======List of files/folders created in the last 1 months====== 2010-11-12 20:16:26 ----D---- C:\rsit 2010-11-12 20:16:26 ----D---- C:\Programme\trend micro 2010-11-12 11:19:02 ----D---- C:\_OTL 2010-11-11 23:13:37 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2010-11-11 23:13:35 ----D---- C:\Programme\Malwarebytes' Anti-Malware 2010-11-11 23:13:35 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2010-11-11 13:00:52 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\F-Secure 2010-11-11 12:30:10 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Malwarebytes 2010-11-11 12:30:00 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes 2010-11-10 15:13:54 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Mozilla 2010-11-10 15:13:41 ----D---- C:\Programme\Mozilla Firefox 2010-11-09 12:24:35 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe 2010-11-08 23:04:32 ----D---- C:\Programme\Emsisoft HiJackFree 2010-11-08 15:22:33 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Adobe 2010-11-08 11:53:47 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Avira 2010-11-07 19:32:40 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\PriceGong 2010-10-14 07:47:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$ 2010-10-14 07:47:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$ 2010-10-14 07:47:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$ 2010-10-14 07:47:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$ 2010-10-14 07:47:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$ 2010-10-14 07:47:11 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$ 2010-10-14 07:47:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$ 2010-10-14 07:44:07 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$ 2010-10-14 07:44:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$ ======List of files/folders modified in the last 1 months====== 2010-11-12 20:16:28 ----D---- C:\WINDOWS\Prefetch 2010-11-12 20:16:26 ----RD---- C:\Programme 2010-11-12 20:14:28 ----D---- C:\WINDOWS\Temp 2010-11-12 19:56:14 ----D---- C:\Programme\Gemeinsame Dateien 2010-11-12 19:49:57 ----D---- C:\Programme\Gemeinsame Dateien\Adobe 2010-11-12 19:30:23 ----D---- C:\WINDOWS\system32 2010-11-12 19:30:23 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-11-12 19:28:28 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\ICQ 2010-11-12 19:26:29 ----D---- C:\WINDOWS\system32\CatRoot2 2010-11-12 11:23:57 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-11-12 11:23:02 ----D---- C:\WINDOWS 2010-11-12 11:19:02 ----D---- C:\WINDOWS\system32\drivers\etc 2010-11-12 11:03:39 ----SD---- C:\WINDOWS\Tasks 2010-11-11 23:32:10 ----D---- C:\WINDOWS\system32\drivers 2010-11-11 23:29:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2010-11-11 19:59:42 ----RSD---- C:\WINDOWS\Fonts 2010-11-11 12:41:05 ----D---- C:\WINDOWS\srchasst 2010-11-11 03:00:31 ----A---- C:\WINDOWS\system32\MRT.exe 2010-11-11 02:49:44 ----SHD---- C:\System Volume Information 2010-11-11 02:45:44 ----D---- C:\WINDOWS\system32\NtmsData 2010-11-10 21:40:21 ----D---- C:\WINDOWS\Registration 2010-11-10 15:20:38 ----D---- C:\Programme\Google 2010-11-10 14:46:19 ----D---- C:\Programme\JDownloader 2010-11-10 14:06:01 ----A---- C:\WINDOWS\NeroDigital.ini 2010-11-09 22:05:06 ----D---- C:\Programme\Bonjour 2010-11-08 22:49:54 ----A---- C:\WINDOWS\wininit.ini 2010-11-08 11:57:00 ----D---- C:\WINDOWS\repair 2010-11-07 20:19:51 ----D---- C:\Programme\DVDVideoSoftTB 2010-11-07 19:09:31 ----D---- C:\Programme\Mozilla Thunderbird 2010-10-24 14:07:32 ----A---- C:\WINDOWS\system32\PnkBstrB.exe 2010-10-20 20:26:32 ----SH---- C:\boot.ini 2010-10-20 20:26:32 ----A---- C:\WINDOWS\win.ini 2010-10-20 20:26:32 ----A---- C:\WINDOWS\system.ini 2010-10-19 14:12:46 ----HD---- C:\WINDOWS\inf 2010-10-18 20:32:49 ----SHD---- C:\WINDOWS\Installer 2010-10-14 07:47:40 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-10-14 07:47:36 ----HD---- C:\WINDOWS\$hf_mig$ 2010-10-14 07:47:34 ----A---- C:\WINDOWS\imsins.BAK 2010-10-14 07:47:24 ----D---- C:\WINDOWS\WinSxS 2010-10-14 07:46:59 ----D---- C:\Programme\Internet Explorer 2010-10-14 07:46:49 ----D---- C:\WINDOWS\ie8updates ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-12-18 43528] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-01-21 717296] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-11-08 126856] R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2007-11-26 36776] R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [2007-11-26 38440] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-11-08 60936] R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704] R3 BthEnum;Bluetooth-Anforderungsblocktreiber; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024] R3 BTHMODEM;Bluetooth-Modemkommunikationstreiber; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888] R3 BthPan;Bluetooth-Gerät (PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120] R3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944] R3 FWLANUSB;AVM FRITZ!WLAN; C:\WINDOWS\system32\DRIVERS\fwlanusb.sys [2005-04-08 452864] R3 HDAudBus;Microsoft UAA-Bustreiber für High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HidBth;Microsoft Bluetooth-HID-Miniport; C:\WINDOWS\system32\DRIVERS\hidbth.sys [2008-04-14 25856] R3 hidusb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-04-17 4707328] R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12288] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-07-26 6097536] R3 RFCOMM;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856] R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2010-10-11 27632] R3 usbstor;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2007-11-26 118952] S1 d3dswd;d3dswd; \??\C:\WINDOWS\system32\drivers\d3dswd.sys [] S1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 ahpkraeo;ahpkraeo; C:\WINDOWS\system32\drivers\ahpkraeo.sys [] S3 BTHPORT;Bluetooth-Porttreiber; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 273024] S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-04-06 13224] S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-04-06 25512] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys [] S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1018bus.sys [2009-03-25 86824] S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016] S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728] S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208] S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024] S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1018obex.sys [2009-03-25 104744] S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1018unic.sys [2009-03-25 109864] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2010-05-04 10552320] S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6; C:\Programme\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832] R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2010-11-08 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2010-11-08 267944] R2 AVM WLAN Connection Service;AVM WLAN Connection Service; C:\Programme\avmwlanstick\WlanNetService.exe [2005-04-08 363555] R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 InCDsrv;InCD Helper; C:\Programme\Nero\Nero 7\InCD\InCDsrv.exe [2007-11-26 1554728] R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2010-04-12 153376] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-07-26 159812] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-05-15 75064] R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-10-24 215128] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Programme\CyberLink\Shared Files\RichVideo.exe [2007-05-14 272024] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Programme\Bonjour\mDNSResponder.exe [] S2 gupdate1c99db66a30e8ee;Google Update Service (gupdate1c99db66a30e8ee); C:\Programme\Google\Update\GoogleUpdate.exe [2009-03-05 133104] S3 aspnet_state;ASP.NET-Zustandsdienst; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Programme\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-12-18 654848] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NBService;NBService; C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040] S3 NMIndexingService;NMIndexingService; C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Programme\WinPcap\rpcapd.exe [2009-10-20 117264] S3 WMPNetworkSvc;Windows Media Player-Netzwerkfreigabedienst; C:\Programme\Windows Media Player\WMPNetwk.exe [2006-11-03 920576] S4 NetTcpPortSharing;Net.Tcp-Portfreigabedienst; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- |
|
12.11.2010, 20:34
| #4 |
| | Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockend Teil 2 (Sorry für Doppelpost): HJT Scanlist: Code:
ATTFilter
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
º º
hjtscanlist v2.0
º º
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
Microsoft Windows XP [Version 5.1.2600]
C:
12.11.2010 20:16 C:\rsit --------- 0
12.11.2010 20:16 C:\Programme --------- 0
C:\pagefile.sys ---------
12.11.2010 11:23 C:\WINDOWS --------- 0
12.11.2010 11:19 C:\_OTL --------- 0
11.11.2010 02:49 C:\System Volume Information --------- 0
20.10.2010 20:26 C:\boot.ini --------- 211
06.10.2010 14:33 C:\Config.Msi --------- 0
19.07.2010 12:13 C:\Fraps --------- 0
28.02.2010 18:58 C:\gmax --------- 0
15.02.2010 21:20 C:\AdobeDebug.txt --------- 0
01.02.2010 16:34 C:\s-winprosa --------- 0
23.12.2009 21:41 C:\BMW M3 Challenge --------- 0
07.10.2009 20:23 C:\vstcdbg.log --------- 0
05.10.2009 20:28 C:\MyWorks --------- 0
01.10.2009 06:02 C:\Temp --------- 0
27.09.2009 17:27 C:\cr.ini --------- 331
20.09.2009 16:17 C:\Downloads --------- 0
11.08.2009 22:47 C:\5d8119221f1137e23848cf6bd89b --------- 0
04.06.2009 22:03 C:\ATP2004SP2_0906042302.LOG --------- 1543
04.06.2009 14:51 C:\ATP2004SP2_0906041539.LOG --------- 1543
04.06.2009 14:50 C:\FSUIPC_reg.bin --------- 1328
04.06.2009 14:26 C:\ATP2004SP2_0906041524.LOG --------- 1580
04.06.2009 14:24 C:\ATP2004_0906041522.LOG --------- 8110
21.01.2009 19:10 C:\ntldr --------- 251712
20.12.2008 11:36 C:\Graphics --------- 0
05.12.2008 16:33 C:\RECYCLER --------- 0
05.12.2008 15:26 C:\Dokumente und Einstellungen --------- 0
05.12.2008 15:07 C:\AddOn --------- 0
05.12.2008 15:02 C:\MSDOS.SYS --------- 0
05.12.2008 15:02 C:\CONFIG.SYS --------- 0
05.12.2008 15:02 C:\AUTOEXEC.BAT --------- 0
05.12.2008 15:02 C:\IO.SYS --------- 0
07.11.2007 07:12 C:\VC_RED.MSI --------- 232960
07.11.2007 07:09 C:\VC_RED.cab --------- 1442522
07.11.2007 07:03 C:\install.res.1033.dll --------- 91152
07.11.2007 07:03 C:\install.res.1040.dll --------- 95248
07.11.2007 07:03 C:\install.res.1041.dll --------- 81424
07.11.2007 07:03 C:\install.res.1042.dll --------- 79888
07.11.2007 07:03 C:\install.res.2052.dll --------- 75792
07.11.2007 07:03 C:\install.res.3082.dll --------- 96272
07.11.2007 07:03 C:\install.res.1031.dll --------- 96272
07.11.2007 07:03 C:\install.exe --------- 562688
07.11.2007 07:03 C:\install.res.1036.dll --------- 97296
07.11.2007 07:03 C:\install.res.1028.dll --------- 76304
07.11.2007 07:00 C:\eula.3082.txt --------- 17734
07.11.2007 07:00 C:\install.ini --------- 843
07.11.2007 07:00 C:\eula.1040.txt --------- 17734
07.11.2007 07:00 C:\eula.1028.txt --------- 17734
07.11.2007 07:00 C:\eula.1031.txt --------- 17734
07.11.2007 07:00 C:\globdata.ini --------- 1110
07.11.2007 07:00 C:\eula.1033.txt --------- 10134
07.11.2007 07:00 C:\eula.1036.txt --------- 17734
07.11.2007 07:00 C:\vcredist.bmp --------- 5686
07.11.2007 07:00 C:\eula.2052.txt --------- 17734
07.11.2007 07:00 C:\eula.1042.txt --------- 17734
07.11.2007 07:00 C:\eula.1041.txt --------- 118
04.08.2004 13:00 C:\NTDETECT.COM --------- 47564
04.08.2004 13:00 C:\bootfont.bin --------- 4952
----------------------------------------
C:\WINDOWS
12.11.2010 20:01 C:\WINDOWS\wiadebug.log --------- 444
12.11.2010 19:28 C:\WINDOWS\WindowsUpdate.log --------- 2076729
12.11.2010 19:25 C:\WINDOWS\0.log --------- 0
12.11.2010 19:25 C:\WINDOWS\wiaservc.log --------- 50
12.11.2010 19:25 C:\WINDOWS\bootstat.dat --------- 2048
12.11.2010 11:23 C:\WINDOWS\SchedLgU.Txt --------- 32406
10.11.2010 14:06 C:\WINDOWS\NeroDigital.ini --------- 69
09.11.2010 12:51 C:\WINDOWS\wmsetup.log --------- 41405
08.11.2010 22:49 C:\WINDOWS\wininit.ini --------- 53
08.11.2010 11:57 C:\WINDOWS\setupapi.log --------- 768264
20.10.2010 20:26 C:\WINDOWS\system.ini --------- 227
20.10.2010 20:26 C:\WINDOWS\win.ini --------- 796
14.10.2010 20:22 C:\WINDOWS\spupdsvc.log --------- 48067
14.10.2010 07:47 C:\WINDOWS\imsins.log --------- 1393
14.10.2010 07:47 C:\WINDOWS\comsetup.log --------- 461675
14.10.2010 07:47 C:\WINDOWS\ntdtcsetup.log --------- 280394
14.10.2010 07:47 C:\WINDOWS\tsoc.log --------- 583327
14.10.2010 07:47 C:\WINDOWS\iis6.log --------- 243114
14.10.2010 07:47 C:\WINDOWS\ocmsn.log --------- 76628
14.10.2010 07:47 C:\WINDOWS\KB2387149.log --------- 15941
14.10.2010 07:47 C:\WINDOWS\ocgen.log --------- 734860
14.10.2010 07:47 C:\WINDOWS\msgsocm.log --------- 76426
14.10.2010 07:47 C:\WINDOWS\FaxSetup.log --------- 1525826
14.10.2010 07:47 C:\WINDOWS\updspapi.log --------- 172449
14.10.2010 07:47 C:\WINDOWS\imsins.BAK --------- 1393
14.10.2010 07:47 C:\WINDOWS\KB2279986.log --------- 19560
14.10.2010 07:47 C:\WINDOWS\KB2345886.log --------- 20046
14.10.2010 07:47 C:\WINDOWS\KB2296011.log --------- 11758
14.10.2010 07:47 C:\WINDOWS\KB2378111.log --------- 12868
14.10.2010 07:47 C:\WINDOWS\KB982132.log --------- 18008
14.10.2010 07:47 C:\WINDOWS\KB979687.log --------- 18618
14.10.2010 07:47 C:\WINDOWS\KB2360131-IE8.log --------- 16789
14.10.2010 07:44 C:\WINDOWS\KB981957.log --------- 13341
14.10.2010 07:44 C:\WINDOWS\KB2360937.log --------- 8511
11.10.2010 12:56 C:\WINDOWS\setupact.log --------- 2544
11.10.2010 12:55 C:\WINDOWS\Wdf01007Inst.log --------- 4110
11.10.2010 12:41 C:\WINDOWS\DPINST.LOG --------- 285100
29.09.2010 12:07 C:\WINDOWS\KB2158563.log --------- 3746
15.09.2010 14:38 C:\WINDOWS\KB2259922.log --------- 8557
15.09.2010 14:38 C:\WINDOWS\KB975558.log --------- 9559
15.09.2010 14:38 C:\WINDOWS\KB2347290.log --------- 13608
15.09.2010 14:38 C:\WINDOWS\KB2121546.log --------- 13090
15.09.2010 14:37 C:\WINDOWS\KB982802.log --------- 12945
15.09.2010 14:37 C:\WINDOWS\KB981322.log --------- 11375
15.09.2010 14:35 C:\WINDOWS\KB2141007.log --------- 11068
01.09.2010 13:15 C:\WINDOWS\AM_D8.PRF --------- 24
16.08.2010 15:46 C:\WINDOWS\Pqƒ --------- 1310
11.08.2010 16:31 C:\WINDOWS\KB982214.log --------- 12232
11.08.2010 16:31 C:\WINDOWS\KB2115168.log --------- 16545
11.08.2010 16:31 C:\WINDOWS\KB981852.log --------- 13886
11.08.2010 16:31 C:\WINDOWS\KB2079403.log --------- 16937
11.08.2010 16:29 C:\WINDOWS\KB2183461-IE8.log --------- 15039
11.08.2010 16:28 C:\WINDOWS\KB2160329.log --------- 13039
11.08.2010 16:28 C:\WINDOWS\KB980436.log --------- 12383
11.08.2010 16:26 C:\WINDOWS\KB981997.log --------- 6678
11.08.2010 16:25 C:\WINDOWS\KB982665.log --------- 10921
02.08.2010 22:15 C:\WINDOWS\KB2286198.log --------- 11758
14.07.2010 23:11 C:\WINDOWS\KB2229593.log --------- 6786
28.06.2010 14:50 C:\WINDOWS\Goya.INI --------- 46
12.06.2010 12:00 C:\WINDOWS\KB980218.log --------- 16016
12.06.2010 11:59 C:\WINDOWS\KB980195.log --------- 10536
12.06.2010 11:59 C:\WINDOWS\KB979559.log --------- 15733
12.06.2010 11:58 C:\WINDOWS\KB982381-IE8.log --------- 14143
12.06.2010 11:55 C:\WINDOWS\KB978695.log --------- 6164
12.06.2010 11:55 C:\WINDOWS\KB979482.log --------- 10856
12.06.2010 11:55 C:\WINDOWS\KB975562.log --------- 10922
12.06.2010 00:10 C:\WINDOWS\DirectX.log --------- 268813
26.05.2010 22:13 C:\WINDOWS\KB981793.log --------- 3727
19.05.2010 14:53 C:\WINDOWS\KB961503.log --------- 11781
16.05.2010 15:13 C:\WINDOWS\ATR 72-500 SP Setup Log.txt --------- 276362
16.05.2010 15:08 C:\WINDOWS\ATR 72-500 Setup Log.txt --------- 350816
16.05.2010 15:04 C:\WINDOWS\iun6002.exe --------- 737280
14.05.2010 13:54 C:\WINDOWS\cs.a753un.log --------- 68027
12.05.2010 15:35 C:\WINDOWS\cs.a754.log --------- 13598
12.05.2010 15:27 C:\WINDOWS\cs.a753.log --------- 18330
12.05.2010 12:19 C:\WINDOWS\KB978542.log --------- 10813
05.05.2010 12:28 C:\WINDOWS\KB938759.log --------- 8311
05.05.2010 12:28 C:\WINDOWS\KB978601.log --------- 17527
14.04.2010 20:46 C:\WINDOWS\KB979683.log --------- 8678
14.04.2010 20:46 C:\WINDOWS\KB980232.log --------- 7208
14.04.2010 20:46 C:\WINDOWS\KB978338.log --------- 11922
14.04.2010 20:46 C:\WINDOWS\KB977816.log --------- 11460
14.04.2010 20:46 C:\WINDOWS\KB981332-IE8.log --------- 6931
14.04.2010 20:46 C:\WINDOWS\KB979309.log --------- 10898
31.03.2010 22:14 C:\WINDOWS\KB980182-IE8.log --------- 14970
10.03.2010 22:29 C:\WINDOWS\KB976002-v5.log --------- 3330
10.03.2010 16:44 C:\WINDOWS\KB975561.log --------- 6321
10.03.2010 16:44 C:\WINDOWS\setupapi.log.1.old --------- 1024319
26.02.2010 19:55 C:\WINDOWS\KB976662-IE8.log --------- 10166
26.02.2010 19:55 C:\WINDOWS\KB971961-IE8.log --------- 10242
25.02.2010 19:32 C:\WINDOWS\ie8_main.log --------- 98752
25.02.2010 19:27 C:\WINDOWS\KB978207-IE8.log --------- 40916
25.02.2010 19:26 C:\WINDOWS\KB978506-IE8.log --------- 33089
25.02.2010 19:26 C:\WINDOWS\KB976325-IE8.log --------- 43744
25.02.2010 19:25 C:\WINDOWS\ie8.log --------- 45042
24.02.2010 22:20 C:\WINDOWS\KB979306.log --------- 3782
10.02.2010 13:22 C:\WINDOWS\KB978262.log --------- 6996
10.02.2010 13:22 C:\WINDOWS\KB971468.log --------- 7517
10.02.2010 13:22 C:\WINDOWS\KB978037.log --------- 12011
10.02.2010 13:22 C:\WINDOWS\KB975713.log --------- 11768
10.02.2010 13:22 C:\WINDOWS\KB978251.log --------- 6755
10.02.2010 13:22 C:\WINDOWS\KB975560.log --------- 11737
10.02.2010 13:22 C:\WINDOWS\KB977914.log --------- 12415
10.02.2010 13:22 C:\WINDOWS\KB978706.log --------- 10842
10.02.2010 13:22 C:\WINDOWS\KB977165.log --------- 8485
23.01.2010 14:20 C:\WINDOWS\KB978207.log --------- 14735
13.01.2010 18:27 C:\WINDOWS\KB955759.log --------- 8117
13.01.2010 18:27 C:\WINDOWS\KB972270.log --------- 6568
10.01.2010 14:46 C:\WINDOWS\iun506.exe --------- 286720
26.12.2009 11:11 C:\WINDOWS\cs.e757.log --------- 7102
09.12.2009 13:43 C:\WINDOWS\KB970430.log --------- 17103
09.12.2009 13:43 C:\WINDOWS\KB974318.log --------- 15529
09.12.2009 13:43 C:\WINDOWS\KB976325.log --------- 15625
09.12.2009 13:43 C:\WINDOWS\KB973904.log --------- 8714
09.12.2009 13:43 C:\WINDOWS\KB974392.log --------- 12337
09.12.2009 13:43 C:\WINDOWS\KB971737.log --------- 12161
25.11.2009 22:42 C:\WINDOWS\KB976098-v2.log --------- 5073
25.11.2009 22:42 C:\WINDOWS\KB973687.log --------- 8516
25.11.2009 22:42 C:\WINDOWS\msxml4-KB973688-enu.LOG --------- 315184
11.11.2009 22:52 C:\WINDOWS\KB969947.log --------- 11443
03.11.2009 22:31 C:\WINDOWS\KB976749.log --------- 12330
03.11.2009 11:22 C:\WINDOWS\mdm.ini --------- 122
15.10.2009 21:38 C:\WINDOWS\KB974455.log --------- 16582
15.10.2009 21:38 C:\WINDOWS\KB958869.log --------- 5963
15.10.2009 21:38 C:\WINDOWS\KB969059.log --------- 13249
15.10.2009 21:38 C:\WINDOWS\KB954155.log --------- 7581
15.10.2009 21:38 C:\WINDOWS\KB974112.log --------- 12436
15.10.2009 21:37 C:\WINDOWS\KB975025.log --------- 12367
15.10.2009 21:37 C:\WINDOWS\KB974571.log --------- 12743
15.10.2009 21:37 C:\WINDOWS\KB971486.log --------- 8768
15.10.2009 21:37 C:\WINDOWS\KB973525.log --------- 7129
15.10.2009 21:37 C:\WINDOWS\KB975467.log --------- 12260
01.08.2009 21:10 C:\WINDOWS\?p… --------- 1310
07.10.2009 19:33 C:\WINDOWS\mgxoschk.ini --------- 6642
12.09.2009 19:07 C:\WINDOWS\Ñpà --------- 1310
12.09.2009 17:03 C:\WINDOWS\Ñp† --------- 1310
10.09.2009 11:33 C:\WINDOWS\cs.b752.log --------- 119652
09.09.2009 23:32 C:\WINDOWS\KB968816.log --------- 6217
09.09.2009 23:32 C:\WINDOWS\KB956844.log --------- 6366
09.09.2009 23:32 C:\WINDOWS\KB971961.log --------- 6675
02.08.2009 18:28 C:\WINDOWS\?p¥ --------- 1310
02.09.2009 13:00 C:\WINDOWS\(pã --------- 1310
28.08.2009 13:02 C:\WINDOWS\KB968389.log --------- 15134
26.08.2009 21:44 C:\WINDOWS\KB970653-v3.log --------- 4756
12.08.2009 14:21 C:\WINDOWS\KB960859.log --------- 12694
12.08.2009 14:21 C:\WINDOWS\KB971657.log --------- 12758
12.08.2009 14:21 C:\WINDOWS\KB961118.log --------- 6125
12.08.2009 14:21 C:\WINDOWS\KB971557.log --------- 12264
12.08.2009 14:21 C:\WINDOWS\KB956744.log --------- 8308
12.08.2009 14:21 C:\WINDOWS\KB973869.log --------- 7918
12.08.2009 14:21 C:\WINDOWS\KB973507.log --------- 12911
12.08.2009 14:21 C:\WINDOWS\KB973354.log --------- 7675
12.08.2009 14:21 C:\WINDOWS\KB973540.log --------- 7955
12.08.2009 14:21 C:\WINDOWS\KB973815.log --------- 12137
02.08.2009 18:28 C:\WINDOWS\(p¥ --------- 1310
01.08.2009 21:10 C:\WINDOWS\øp… --------- 1310
29.07.2009 17:45 C:\WINDOWS\KB972260.log --------- 14544
29.07.2009 09:19 C:\WINDOWS\tsnpstd3.exe --------- 356352
28.07.2009 16:18 C:\WINDOWS\amcap.exe --------- 98304
15.07.2009 21:50 C:\WINDOWS\KB973346.log --------- 6129
15.07.2009 21:50 C:\WINDOWS\KB971633.log --------- 10717
15.07.2009 21:50 C:\WINDOWS\KB961371.log --------- 10952
14.07.2009 12:00 C:\WINDOWS\setupapi.log.0.old --------- 1145962
24.06.2009 21:05 C:\WINDOWS\Hp„ --------- 1310
24.06.2009 18:31 C:\WINDOWS\xpÑ --------- 1310
11.06.2009 21:39 C:\WINDOWS\KB961501.log --------- 14337
11.06.2009 21:39 C:\WINDOWS\KB969897.log --------- 15353
11.06.2009 21:38 C:\WINDOWS\KB969898.log --------- 7190
11.06.2009 21:38 C:\WINDOWS\KB970238.log --------- 12082
11.06.2009 21:38 C:\WINDOWS\KB968537.log --------- 11757
16.04.2009 09:28 C:\WINDOWS\KB959426.log --------- 20118
16.04.2009 09:28 C:\WINDOWS\KB961373.log --------- 18796
16.04.2009 09:28 C:\WINDOWS\KB956572.log --------- 17504
16.04.2009 09:28 C:\WINDOWS\KB952004.log --------- 16461
16.04.2009 09:28 C:\WINDOWS\KB960803.log --------- 14932
16.04.2009 09:28 C:\WINDOWS\KB963027.log --------- 15640
16.04.2009 09:28 C:\WINDOWS\KB923561.log --------- 9028
15.04.2009 15:05 C:\WINDOWS\ie7_main.log --------- 25267
15.04.2009 15:05 C:\WINDOWS\ie7.log --------- 2250
15.04.2009 15:05 C:\WINDOWS\IDNMitigationAPIs.log --------- 7542
15.04.2009 15:05 C:\WINDOWS\NLSDownlevelMapping.log --------- 5724
15.04.2009 15:04 C:\WINDOWS\KB915865.log --------- 2081
11.03.2009 22:50 C:\WINDOWS\KB960225.log --------- 11370
11.03.2009 22:50 C:\WINDOWS\KB938464-v2.log --------- 4400
11.03.2009 22:50 C:\WINDOWS\KB958690.log --------- 11348
11.03.2009 22:49 C:\WINDOWS\KB959772.log --------- 4619
25.02.2009 22:35 C:\WINDOWS\KB967715.log --------- 12379
22.02.2009 14:53 C:\WINDOWS\Wudf01000Inst.log --------- 12291
22.02.2009 14:52 C:\WINDOWS\WMFDist11.log --------- 77757
11.02.2009 22:20 C:\WINDOWS\KB960715.log --------- 6070
27.01.2009 23:03 C:\WINDOWS\MIR.INI --------- 713
22.01.2009 15:27 C:\WINDOWS\KB951978.log --------- 11887
22.01.2009 15:27 C:\WINDOWS\KB954459.log --------- 10563
21.01.2009 19:26 C:\WINDOWS\OEWABLog.txt --------- 345
21.01.2009 19:26 C:\WINDOWS\DtcInstall.log --------- 226
21.01.2009 19:25 C:\WINDOWS\setuplog.txt --------- 9745
21.01.2009 19:25 C:\WINDOWS\spupdsvc.log.1.log --------- 187
21.01.2009 19:24 C:\WINDOWS\svcpack.log --------- 506579
21.01.2009 19:23 C:\WINDOWS\KB960714.log --------- 204131
21.01.2009 19:23 C:\WINDOWS\KB958687.log --------- 202557
21.01.2009 19:23 C:\WINDOWS\KB958644.log --------- 204832
21.01.2009 19:22 C:\WINDOWS\KB958215.log --------- 216204
21.01.2009 19:22 C:\WINDOWS\KB957097.log --------- 204389
21.01.2009 19:21 C:\WINDOWS\KB957095.log --------- 209590
21.01.2009 19:21 C:\WINDOWS\KB956841.log --------- 209979
21.01.2009 19:20 C:\WINDOWS\KB956803.log --------- 209491
21.01.2009 19:20 C:\WINDOWS\KB956802.log --------- 208729
21.01.2009 19:19 C:\WINDOWS\KB955839.log --------- 33666
21.01.2009 19:19 C:\WINDOWS\KB955069.log --------- 203696
21.01.2009 19:19 C:\WINDOWS\KB954600.log --------- 203065
21.01.2009 19:18 C:\WINDOWS\KB954211.log --------- 205598
21.01.2009 19:18 C:\WINDOWS\KB952954.log --------- 213692
21.01.2009 19:18 C:\WINDOWS\KB952287.log --------- 203105
21.01.2009 19:17 C:\WINDOWS\KB951748.log --------- 220353
21.01.2009 19:17 C:\WINDOWS\KB951698.log --------- 209161
21.01.2009 19:16 C:\WINDOWS\KB951376-v2.log --------- 209000
21.01.2009 19:16 C:\WINDOWS\KB951066.log --------- 203064
21.01.2009 19:15 C:\WINDOWS\KB950974.log --------- 210849
21.01.2009 19:15 C:\WINDOWS\KB950762.log --------- 203723
21.01.2009 19:15 C:\WINDOWS\KB946648.log --------- 208780
21.01.2009 19:14 C:\WINDOWS\KB938464.log --------- 202635
21.01.2009 19:13 C:\WINDOWS\cmsetacl.log --------- 173
21.01.2009 19:13 C:\WINDOWS\sessmgr.setup.log --------- 311
21.01.2009 19:07 C:\WINDOWS\medctroc.Log --------- 597
21.01.2009 18:15 C:\WINDOWS\KB926239.log --------- 17945
13.01.2009 22:12 C:\WINDOWS\KB899587.log --------- 38310
13.01.2009 22:12 C:\WINDOWS\KB927779.log --------- 37687
13.01.2009 22:12 C:\WINDOWS\KB927802.log --------- 34680
13.01.2009 22:12 C:\WINDOWS\KB943460.log --------- 27218
13.01.2009 22:12 C:\WINDOWS\KB928255.log --------- 34945
13.01.2009 22:12 C:\WINDOWS\KB933729.log --------- 26095
13.01.2009 22:12 C:\WINDOWS\KB920685.log --------- 32415
13.01.2009 22:12 C:\WINDOWS\KB923980.log --------- 32771
13.01.2009 22:12 C:\WINDOWS\KB911280.log --------- 32531
13.01.2009 22:12 C:\WINDOWS\KB911562.log --------- 31991
13.01.2009 22:11 C:\WINDOWS\KB938828.log --------- 31011
13.01.2009 22:11 C:\WINDOWS\KB924667.log --------- 29060
13.01.2009 22:11 C:\WINDOWS\KB900485.log --------- 32167
13.01.2009 22:11 C:\WINDOWS\KB924270.log --------- 31302
13.01.2009 22:11 C:\WINDOWS\KB931261.log --------- 30956
13.01.2009 22:11 C:\WINDOWS\KB927891.log --------- 24095
13.01.2009 22:11 C:\WINDOWS\KB946026.log --------- 29953
13.01.2009 22:11 C:\WINDOWS\KB925398.log --------- 22655
13.01.2009 22:11 C:\WINDOWS\KB910437.log --------- 23303
13.01.2009 22:11 C:\WINDOWS\KB911564.log --------- 21708
13.01.2009 22:10 C:\WINDOWS\KB925902.log --------- 29768
13.01.2009 22:10 C:\WINDOWS\KB929123.log --------- 29314
13.01.2009 22:10 C:\WINDOWS\KB920670.log --------- 28578
13.01.2009 22:10 C:\WINDOWS\KB918439.log --------- 28785
13.01.2009 22:10 C:\WINDOWS\KB926436.log --------- 28584
13.01.2009 22:10 C:\WINDOWS\KB920872.log --------- 30553
13.01.2009 22:10 C:\WINDOWS\KB930178.log --------- 28898
13.01.2009 22:10 C:\WINDOWS\KB914388.log --------- 28848
13.01.2009 22:10 C:\WINDOWS\KB905414.log --------- 27860
13.01.2009 22:10 C:\WINDOWS\KB932168.log --------- 28213
13.01.2009 22:10 C:\WINDOWS\KB923191.log --------- 24532
13.01.2009 22:10 C:\WINDOWS\KB922582.log --------- 20376
13.01.2009 22:10 C:\WINDOWS\KB918118.log --------- 23731
13.01.2009 22:10 C:\WINDOWS\KB926255.log --------- 23828
13.01.2009 22:09 C:\WINDOWS\KB938127.log --------- 23601
13.01.2009 22:09 C:\WINDOWS\KB920213.log --------- 23731
13.01.2009 22:09 C:\WINDOWS\KB935840.log --------- 22097
13.01.2009 22:09 C:\WINDOWS\KB943485.log --------- 21734
13.01.2009 22:09 C:\WINDOWS\KB945553.log --------- 21871
13.01.2009 22:09 C:\WINDOWS\KB916595.log --------- 20992
13.01.2009 22:09 C:\WINDOWS\KB930916.log --------- 21039
13.01.2009 22:09 C:\WINDOWS\KB950749.log --------- 19969
13.01.2009 22:09 C:\WINDOWS\KB908531.log --------- 17263
13.01.2009 22:09 C:\WINDOWS\KB913580.log --------- 17496
13.01.2009 22:09 C:\WINDOWS\KB935839.log --------- 15818
13.01.2009 22:09 C:\WINDOWS\KB943055.log --------- 15456
13.01.2009 22:08 C:\WINDOWS\KB908519.log --------- 15143
13.01.2009 22:08 C:\WINDOWS\KB920683.log --------- 15306
13.01.2009 22:08 C:\WINDOWS\KB914389.log --------- 14440
13.01.2009 22:08 C:\WINDOWS\KB944653.log --------- 14357
29.12.2008 12:39 C:\WINDOWS\uninstall_Wonderful Madeira.ini --------- 61986
19.12.2008 15:01 C:\WINDOWS\KB939683.log --------- 6456
18.12.2008 19:18 C:\WINDOWS\ODBCINST.INI --------- 4161
13.12.2008 14:46 C:\WINDOWS\cnerolf.dat --------- 61
13.12.2008 00:14 C:\WINDOWS\KB935448.log --------- 13180
13.12.2008 00:14 C:\WINDOWS\KB952069.log --------- 18283
13.12.2008 00:14 C:\WINDOWS\KB956391.log --------- 13304
13.12.2008 00:12 C:\WINDOWS\KB941569.log --------- 9841
13.12.2008 00:12 C:\WINDOWS\KB929399.log --------- 8231
13.12.2008 00:12 C:\WINDOWS\msxml4-KB954430-enu.LOG --------- 316618
13.12.2008 00:11 C:\WINDOWS\KB954154.log --------- 4170
13.12.2008 00:11 C:\WINDOWS\KB936782.log --------- 6692
13.12.2008 00:11 C:\WINDOWS\KB944338-v2.log --------- 11387
12.12.2008 22:15 C:\WINDOWS\KB898461.log --------- 8784
07.12.2008 14:42 C:\WINDOWS\MSCompPackV1.log --------- 6222
07.12.2008 14:41 C:\WINDOWS\wmp11.log --------- 18194
07.12.2008 14:41 C:\WINDOWS\wmsetup10.log --------- 2542
07.12.2008 14:16 C:\WINDOWS\avminstcli.log --------- 2569
07.12.2008 14:16 C:\WINDOWS\avmadd321.log --------- 3266
07.12.2008 14:16 C:\WINDOWS\avmadd32.log --------- 1304
07.12.2008 14:16 C:\WINDOWS\avmcowlan.log --------- 780
07.12.2008 14:13 C:\WINDOWS\avmsetup.log --------- 3754
07.12.2008 14:13 C:\WINDOWS\accessdll.log --------- 731
06.12.2008 22:32 C:\WINDOWS\lgfwup.ini --------- 0
06.12.2008 20:30 C:\WINDOWS\setuperr.log --------- 0
06.12.2008 11:13 C:\WINDOWS\ODBC.INI --------- 403
06.12.2008 11:13 C:\WINDOWS\NSREX.INI --------- 0
05.12.2008 16:56 C:\WINDOWS\WMSysPr9.prx --------- 316640
05.12.2008 16:24 C:\WINDOWS\nsreg.dat --------- 0
05.12.2008 16:04 C:\WINDOWS\HideWin.exe --------- 315392
05.12.2008 16:03 C:\WINDOWS\Ascd_tmp.ini --------- 2540
05.12.2008 15:57 C:\WINDOWS\Sti_Trace.log --------- 0
05.12.2008 15:09 C:\WINDOWS\REGLOCS.OLD --------- 8192
05.12.2008 15:02 C:\WINDOWS\control.ini --------- 0
05.12.2008 15:02 C:\WINDOWS\WindowsShell.Manifest --------- 749
05.12.2008 15:00 C:\WINDOWS\vb.ini --------- 36
05.12.2008 15:00 C:\WINDOWS\vbaddin.ini --------- 37
20.06.2008 16:10 C:\WINDOWS\KIZ Neuruppin.c3 --------- 768
20.06.2008 16:10 C:\WINDOWS\KIZ Neuruppin.c1 --------- 768
18.06.2008 21:39 C:\WINDOWS\KIZ Neuruppin.swf --------- 235222
14.04.2008 07:53 C:\WINDOWS\winhlp32.exe --------- 288768
14.04.2008 07:53 C:\WINDOWS\slrundll.exe --------- 32866
14.04.2008 07:53 C:\WINDOWS\regedit.exe --------- 153600
14.04.2008 07:52 C:\WINDOWS\notepad.exe --------- 70144
14.04.2008 07:52 C:\WINDOWS\hh.exe --------- 10752
14.04.2008 07:52 C:\WINDOWS\explorer.exe --------- 1036800
14.04.2008 07:52 C:\WINDOWS\twain_32.dll --------- 50688
10.04.2008 09:52 C:\WINDOWS\RTHDCPL.exe --------- 16861184
02.04.2008 02:27 C:\WINDOWS\RtlUpd.exe --------- 1196032
05.03.2008 11:07 C:\WINDOWS\RtlExUpd.dll --------- 520192
20.02.2008 16:50 C:\WINDOWS\KIZ Neuruppin.scr --------- 903680
20.02.2008 16:49 C:\WINDOWS\KIZ Neuruppin.exe --------- 495104
26.11.2007 14:54 C:\WINDOWS\NuNInst.exe --------- 238888
20.11.2007 11:15 C:\WINDOWS\SkyTel.exe --------- 1826816
14.11.2007 08:18 C:\WINDOWS\USetup.iss --------- 553
11.07.2007 15:09 C:\WINDOWS\FixCamera.exe --------- 20480
28.06.2007 09:44 C:\WINDOWS\MicCal.exe --------- 2165760
23.03.2007 12:19 C:\WINDOWS\RTLCPL.exe --------- 9715200
20.03.2007 20:22 C:\WINDOWS\UNNeroBackItUp.exe --------- 972336
05.03.2007 10:51 C:\WINDOWS\eSellerateEngine.dll --------- 360580
12.11.2006 17:55 C:\WINDOWS\KIZ Neuruppin.ico --------- 23558
04.11.2006 21:42 C:\WINDOWS\KIZ Neuruppin.bmp --------- 161078
24.10.2006 17:06 C:\WINDOWS\KIZ Neuruppin.c4 --------- 639
08.10.2006 19:33 C:\WINDOWS\KIZ Neuruppin.ini --------- 0
21.07.2006 09:14 C:\WINDOWS\SoundMan.exe --------- 86016
04.05.2006 09:26 C:\WINDOWS\alcwzrd.exe --------- 2808832
23.11.2005 12:55 C:\WINDOWS\csnpstd3.dll --------- 53248
31.08.2005 12:49 C:\WINDOWS\NuNInst.cfg --------- 50
30.08.2005 20:33 C:\WINDOWS\UNNeroBackItUp.cfg --------- 50
03.05.2005 11:43 C:\WINDOWS\Alcmtr.exe --------- 69632
08.04.2005 01:01 C:\WINDOWS\instwcli.inf --------- 5415
04.08.2004 13:00 C:\WINDOWS\desktop.ini --------- 2
04.08.2004 13:00 C:\WINDOWS\twunk_32.exe --------- 25600
04.08.2004 13:00 C:\WINDOWS\twunk_16.exe --------- 49680
04.08.2004 13:00 C:\WINDOWS\vmmreg32.dll --------- 18944
04.08.2004 13:00 C:\WINDOWS\twain.dll --------- 94800
04.08.2004 13:00 C:\WINDOWS\Blaue Spitzen 16.bmp --------- 1272
04.08.2004 13:00 C:\WINDOWS\TASKMAN.EXE --------- 15872
04.08.2004 13:00 C:\WINDOWS\clock.avi --------- 82944
04.08.2004 13:00 C:\WINDOWS\Kaffeetasse.bmp --------- 17062
04.08.2004 13:00 C:\WINDOWS\Granit.bmp --------- 26582
04.08.2004 13:00 C:\WINDOWS\winhelp.exe --------- 257568
04.08.2004 13:00 C:\WINDOWS\Seifenblase.bmp --------- 65978
04.08.2004 13:00 C:\WINDOWS\Angler.bmp --------- 17336
04.08.2004 13:00 C:\WINDOWS\winnt.bmp --------- 48680
04.08.2004 13:00 C:\WINDOWS\winnt256.bmp --------- 48680
04.08.2004 13:00 C:\WINDOWS\Pr„riewind.bmp --------- 65954
04.08.2004 13:00 C:\WINDOWS\Santa Fe-Stuck.bmp --------- 65832
04.08.2004 13:00 C:\WINDOWS\wmprfDEU.prx --------- 34818
04.08.2004 13:00 C:\WINDOWS\Rhododendron.bmp --------- 17362
04.08.2004 13:00 C:\WINDOWS\emm883d.hd --------- 316
04.08.2004 13:00 C:\WINDOWS\explorer.scf --------- 80
04.08.2004 13:00 C:\WINDOWS\Feder.bmp --------- 16730
04.08.2004 13:00 C:\WINDOWS\msdfmap.ini --------- 1405
04.08.2004 13:00 C:\WINDOWS\Zapotek.bmp --------- 9522
04.08.2004 13:00 C:\WINDOWS\_default.pif --------- 707
04.08.2004 13:00 C:\WINDOWS\F„cher.bmp --------- 26680
27.02.2004 16:36 C:\WINDOWS\snpstd3.src --------- 13023
27.02.2004 16:36 C:\WINDOWS\snpstd3.ini --------- 15498
16.12.2003 11:48 C:\WINDOWS\uninstall_canary_islands.ini --------- 2675
17.11.1998 14:44 C:\WINDOWS\IsUn0407.exe --------- 328704
----------------------------------------
C:\WINDOWS\System
14.04.2008 07:53 C:\WINDOWS\System\winspool.drv --------- 146944
04.08.2004 13:00 C:\WINDOWS\System\AVIFILE.DLL --------- 109504
04.08.2004 13:00 C:\WINDOWS\System\COMMDLG.DLL --------- 33744
04.08.2004 13:00 C:\WINDOWS\System\KEYBOARD.DRV --------- 2000
04.08.2004 13:00 C:\WINDOWS\System\LZEXPAND.DLL --------- 9936
04.08.2004 13:00 C:\WINDOWS\System\MCIAVI.DRV --------- 73760
04.08.2004 13:00 C:\WINDOWS\System\MCISEQ.DRV --------- 25296
04.08.2004 13:00 C:\WINDOWS\System\MCIWAVE.DRV --------- 28160
04.08.2004 13:00 C:\WINDOWS\System\MMSYSTEM.DLL --------- 69632
04.08.2004 13:00 C:\WINDOWS\System\MMTASK.TSK --------- 1152
04.08.2004 13:00 C:\WINDOWS\System\MOUSE.DRV --------- 2032
04.08.2004 13:00 C:\WINDOWS\System\AVICAP.DLL --------- 70368
04.08.2004 13:00 C:\WINDOWS\System\OLECLI.DLL --------- 82944
04.08.2004 13:00 C:\WINDOWS\System\OLESVR.DLL --------- 24064
04.08.2004 13:00 C:\WINDOWS\System\setup.inf --------- 59167
04.08.2004 13:00 C:\WINDOWS\System\SHELL.DLL --------- 5120
04.08.2004 13:00 C:\WINDOWS\System\SOUND.DRV --------- 1744
04.08.2004 13:00 C:\WINDOWS\System\stdole.tlb --------- 5532
04.08.2004 13:00 C:\WINDOWS\System\SYSTEM.DRV --------- 3360
04.08.2004 13:00 C:\WINDOWS\System\TAPI.DLL --------- 19200
04.08.2004 13:00 C:\WINDOWS\System\TIMER.DRV --------- 4048
04.08.2004 13:00 C:\WINDOWS\System\VER.DLL --------- 9200
04.08.2004 13:00 C:\WINDOWS\System\VGA.DRV --------- 2176
04.08.2004 13:00 C:\WINDOWS\System\WFWNET.DRV --------- 13600
04.08.2004 13:00 C:\WINDOWS\System\MSVIDEO.DLL --------- 127104
----------------------------------------
C:\WINDOWS\System32
12.11.2010 19:30 C:\WINDOWS\system32\perfh009.dat --------- 441124
12.11.2010 19:30 C:\WINDOWS\system32\perfc009.dat --------- 71060
12.11.2010 19:30 C:\WINDOWS\system32\perfh007.dat --------- 458822
12.11.2010 19:30 C:\WINDOWS\system32\perfc007.dat --------- 84326
12.11.2010 19:30 C:\WINDOWS\system32\PerfStringBackup.INI --------- 1070144
12.11.2010 19:27 C:\WINDOWS\system32\nvapps.xml --------- 199590
12.11.2010 19:26 C:\WINDOWS\system32\CatRoot2 --------- 0
11.11.2010 23:32 C:\WINDOWS\system32\FNTCACHE.DAT --------- 1592440
11.11.2010 23:32 C:\WINDOWS\system32\drivers --------- 0
11.11.2010 03:00 C:\WINDOWS\system32\MRT.exe --------- 35758536
11.11.2010 02:45 C:\WINDOWS\system32\NtmsData --------- 0
09.11.2010 12:24 C:\WINDOWS\system32\wpa.dbl --------- 2422
24.10.2010 14:07 C:\WINDOWS\system32\PnkBstrB.xtr --------- 215128
24.10.2010 14:07 C:\WINDOWS\system32\PnkBstrB.exe --------- 215128
14.10.2010 07:47 C:\WINDOWS\system32\dllcache --------- 0
11.10.2010 12:46 C:\WINDOWS\system32\ReinstallBackups --------- 0
11.10.2010 12:44 C:\WINDOWS\system32\DRVSTORE --------- 0
29.09.2010 12:07 C:\WINDOWS\system32\TZLog.log --------- 229034
18.09.2010 11:22 C:\WINDOWS\system32\mfc42u.dll --------- 974848
18.09.2010 07:52 C:\WINDOWS\system32\mfc40u.dll --------- 953856
18.09.2010 07:52 C:\WINDOWS\system32\mfc40.dll --------- 954368
18.09.2010 07:52 C:\WINDOWS\system32\mfc42.dll --------- 974848
11.09.2010 01:08 C:\WINDOWS\system32\d3d9caps.dat --------- 664
10.09.2010 06:47 C:\WINDOWS\system32\wininet.dll --------- 916480
10.09.2010 06:47 C:\WINDOWS\system32\urlmon.dll --------- 1210880
10.09.2010 06:47 C:\WINDOWS\system32\occache.dll --------- 206848
10.09.2010 06:47 C:\WINDOWS\system32\mstime.dll --------- 611840
10.09.2010 06:47 C:\WINDOWS\system32\mshtmled.dll --------- 66560
10.09.2010 06:47 C:\WINDOWS\system32\mshtml.dll --------- 5957120
10.09.2010 06:47 C:\WINDOWS\system32\inetcpl.cpl --------- 1469440
10.09.2010 06:47 C:\WINDOWS\system32\licmgr10.dll --------- 43520
10.09.2010 06:47 C:\WINDOWS\system32\jsproxy.dll --------- 25600
10.09.2010 06:47 C:\WINDOWS\system32\msfeeds.dll --------- 602112
10.09.2010 06:47 C:\WINDOWS\system32\msfeedsbs.dll --------- 55296
10.09.2010 06:47 C:\WINDOWS\system32\iertutil.dll --------- 1986560
10.09.2010 06:47 C:\WINDOWS\system32\ieframe.dll --------- 11080192
10.09.2010 06:47 C:\WINDOWS\system32\iepeers.dll --------- 184320
10.09.2010 06:47 C:\WINDOWS\system32\iedkcs32.dll --------- 387584
01.09.2010 12:50 C:\WINDOWS\system32\atmfd.dll --------- 285824
01.09.2010 08:54 C:\WINDOWS\system32\win32k.sys --------- 1852928
27.08.2010 09:01 C:\WINDOWS\system32\t2embed.dll --------- 119808
27.08.2010 06:57 C:\WINDOWS\system32\srvsvc.dll --------- 99840
27.08.2010 02:43 C:\WINDOWS\system32\xpsp4res.dll --------- 5632
26.08.2010 13:22 C:\WINDOWS\system32\ie4uinit.exe --------- 173056
25.08.2010 22:36 C:\WINDOWS\system32\wmp.dll --------- 10841088
23.08.2010 17:11 C:\WINDOWS\system32\comctl32.dll --------- 617472
17.08.2010 15:48 C:\WINDOWS\system32\DirectX --------- 0
17.08.2010 14:17 C:\WINDOWS\system32\spoolsv.exe --------- 58880
16.08.2010 09:44 C:\WINDOWS\system32\rpcrt4.dll --------- 590848
27.07.2010 07:29 C:\WINDOWS\system32\shell32.dll --------- 8503296
19.07.2010 17:01 C:\WINDOWS\system32\rmoc3260.dll --------- 185920
19.07.2010 17:00 C:\WINDOWS\system32\pndx5032.dll --------- 5632
19.07.2010 17:00 C:\WINDOWS\system32\pndx5016.dll --------- 6656
19.07.2010 17:00 C:\WINDOWS\system32\msvcr71.dll --------- 348160
19.07.2010 17:00 C:\WINDOWS\system32\msvcp71.dll --------- 499712
19.07.2010 17:00 C:\WINDOWS\system32\pncrt.dll --------- 278528
19.07.2010 00:05 C:\WINDOWS\system32\DonationCoder_urlsnooper_InstallInfo.dat --------- 46
19.07.2010 00:04 C:\WINDOWS\system32\-1 --------- 64
16.07.2010 13:05 C:\WINDOWS\system32\ole32.dll --------- 1288192
30.06.2010 13:28 C:\WINDOWS\system32\schannel.dll --------- 149504
21.06.2010 15:46 C:\WINDOWS\system32\tzchange.exe --------- 46080
18.06.2010 18:44 C:\WINDOWS\system32\winsrv.dll --------- 293888
17.06.2010 15:03 C:\WINDOWS\system32\iccvid.dll --------- 80384
15.06.2010 17:16 C:\WINDOWS\system32\l3codecx.ax --------- 143422
14.06.2010 08:41 C:\WINDOWS\system32\msxml3.dll --------- 1172480
09.06.2010 08:43 C:\WINDOWS\system32\inetcomm.dll --------- 692736
01.06.2010 17:39 C:\WINDOWS\system32\TubeFinder.exe --------- 311296
28.05.2010 09:20 C:\WINDOWS\system32\jupdate-1.6.0_20-b02.log --------- 4551
15.05.2010 19:46 C:\WINDOWS\system32\PnkBstrA.exe --------- 75064
15.05.2010 19:46 C:\WINDOWS\system32\pbsvc_bc2.exe --------- 2434856
05.05.2010 12:28 C:\WINDOWS\system32\CatRoot --------- 0
04.05.2010 12:17 C:\WINDOWS\system32\vsnpstd3.dll --------- 61440
28.04.2010 06:41 C:\WINDOWS\system32\ntoskrnl.exe --------- 2148864
28.04.2010 06:41 C:\WINDOWS\system32\ntkrnlpa.exe --------- 2027008
27.04.2010 13:45 C:\WINDOWS\system32\xliveinstall.dll --------- 187544
27.04.2010 13:45 C:\WINDOWS\system32\xliveinstallhost.exe --------- 72856
16.04.2010 21:12 C:\WINDOWS\system32\sirenacm.dll --------- 48464
16.04.2010 16:36 C:\WINDOWS\system32\usp10.dll --------- 406016
12.04.2010 16:29 C:\WINDOWS\system32\javaws.exe --------- 153376
12.04.2010 16:29 C:\WINDOWS\system32\javaw.exe --------- 145184
12.04.2010 16:29 C:\WINDOWS\system32\java.exe --------- 145184
12.04.2010 16:29 C:\WINDOWS\system32\deployJava1.dll --------- 411368
12.04.2010 14:19 C:\WINDOWS\system32\javacpl.cpl --------- 73728
06.04.2010 03:52 C:\WINDOWS\system32\WMVCore.dll --------- 2462720
05.04.2010 12:31 C:\WINDOWS\system32\mp4sds32.ax --------- 241664
03.04.2010 14:50 C:\WINDOWS\system32\LogFiles --------- 0
02.04.2010 16:17 C:\WINDOWS\system32\xlive.dll --------- 15426200
02.04.2010 16:17 C:\WINDOWS\system32\xlivefnt.dll --------- 13642904
02.04.2010 16:17 C:\WINDOWS\system32\xlive.dll.cat --------- 179091
30.03.2010 23:16 C:\WINDOWS\system32\PresentationHostProxy.dll --------- 99176
30.03.2010 23:10 C:\WINDOWS\system32\PresentationHost.exe --------- 295264
30.03.2010 11:24 C:\WINDOWS\system32\mp4sdecd.dll --------- 317440
29.03.2010 23:52 C:\WINDOWS\system32\mpg4ds32.ax --------- 262416
10.03.2010 07:15 C:\WINDOWS\system32\vbscript.dll --------- 420352
05.03.2010 15:37 C:\WINDOWS\system32\asycfilt.dll --------- 65536
28.02.2010 14:50 C:\WINDOWS\system32\jupdate-1.6.0_17-b04.log --------- 4611
25.02.2010 19:34 C:\WINDOWS\system32\de-DE --------- 0
25.02.2010 19:25 C:\WINDOWS\system32\config --------- 0
12.02.2010 11:03 C:\WINDOWS\system32\browserchoice.exe --------- 293376
12.02.2010 05:33 C:\WINDOWS\system32\6to4svc.dll --------- 100864
----------------------------------------
C:\WINDOWS\Prefetch
12.11.2010 20:19 C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf --------- 12226
12.11.2010 20:19 C:\WINDOWS\Prefetch\TASKLIST.EXE-19160EA2.pf --------- 20844
12.11.2010 20:19 C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf --------- 48432
12.11.2010 20:19 C:\WINDOWS\Prefetch\WINRAR.EXE-3588DFE8.pf --------- 47500
12.11.2010 20:19 C:\WINDOWS\Prefetch\TASKLIST.EXE-04F2D7EE.pf --------- 20750
12.11.2010 20:17 C:\WINDOWS\Prefetch\AVWSC.EXE-24612965.pf --------- 29636
12.11.2010 20:17 C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf --------- 81568
12.11.2010 20:16 C:\WINDOWS\Prefetch\***.EXE-145C657E.pf --------- 13846
12.11.2010 20:16 C:\WINDOWS\Prefetch\RSIT.EXE-222B8A73.pf --------- 18352
12.11.2010 20:01 C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf --------- 17656
12.11.2010 20:01 C:\WINDOWS\Prefetch\RUNDLL32.EXE-499A05E7.pf --------- 40638
12.11.2010 20:01 C:\WINDOWS\Prefetch\RUNDLL32.EXE-32A8B389.pf --------- 16258
12.11.2010 20:01 C:\WINDOWS\Prefetch\PHOTOSHOP.EXE-14976370.pf --------- 69810
12.11.2010 19:50 C:\WINDOWS\Prefetch\PHOTOSHOPCS5PORTABLE.EXE-04BC3FC4.pf --------- 102028
12.11.2010 19:50 C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf --------- 13058
12.11.2010 19:50 C:\WINDOWS\Prefetch\FNPLICENSINGSERVICE.EXE-1A968544.pf --------- 48052
12.11.2010 19:49 C:\WINDOWS\Prefetch\PHOTOSHOPELEMENTSEDITOR.EXE-15B43B13.pf --------- 61446
12.11.2010 19:44 C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969338.pf --------- 83562
12.11.2010 19:37 C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-187AE91D.pf --------- 32318
12.11.2010 19:30 C:\WINDOWS\Prefetch\WMIADAP.EXE-2DF425B2.pf --------- 32240
12.11.2010 19:29 C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-170C935C.pf --------- 65428
12.11.2010 19:29 C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-1E60A522.pf --------- 7538
12.11.2010 19:29 C:\WINDOWS\Prefetch\FIREFOX.EXE-1D57670A.pf --------- 104890
12.11.2010 19:28 C:\WINDOWS\Prefetch\ICQ.EXE-2C098F66.pf --------- 116326
12.11.2010 19:28 C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969333.pf --------- 77224
12.11.2010 19:27 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1340EF7F.pf --------- 66248
12.11.2010 19:27 C:\WINDOWS\Prefetch\REALPLAY.EXE-39F79CBD.pf --------- 79782
12.11.2010 19:27 C:\WINDOWS\Prefetch\SVCHOST.EXE-3530F672.pf --------- 16662
12.11.2010 19:27 C:\WINDOWS\Prefetch\RTHDCPL.EXE-06918CFA.pf --------- 49884
12.11.2010 19:27 C:\WINDOWS\Prefetch\TSNPSTD3.EXE-11E56340.pf --------- 13064
12.11.2010 19:27 C:\WINDOWS\Prefetch\NBHGUI.EXE-1CBF9AAE.pf --------- 19910
12.11.2010 19:27 C:\WINDOWS\Prefetch\JUSCHED.EXE-0137DEC5.pf --------- 12438
12.11.2010 19:27 C:\WINDOWS\Prefetch\READER_SL.EXE-2FAFE67A.pf --------- 11984
12.11.2010 19:27 C:\WINDOWS\Prefetch\WLANGUI.EXE-0299A31C.pf --------- 10810
12.11.2010 19:27 C:\WINDOWS\Prefetch\AVGNT.EXE-39CD89BF.pf --------- 55910
12.11.2010 19:27 C:\WINDOWS\Prefetch\QTTASK.EXE-2D7EEF34.pf --------- 8402
12.11.2010 19:27 C:\WINDOWS\Prefetch\NWIZ.EXE-2D0F9FBC.pf --------- 25650
12.11.2010 19:27 C:\WINDOWS\Prefetch\ALCMTR.EXE-235F9538.pf --------- 11978
12.11.2010 19:27 C:\WINDOWS\Prefetch\RUNDLL32.EXE-415F88EC.pf --------- 49020
12.11.2010 19:27 C:\WINDOWS\Prefetch\NOTEPAD.EXE-189578DA.pf --------- 15480
12.11.2010 19:27 C:\WINDOWS\Prefetch\OTL.EXE-16919C42.pf --------- 29916
12.11.2010 19:27 C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 1430120
12.11.2010 11:04 C:\WINDOWS\Prefetch\INCD.EXE-348E921D.pf --------- 42416
12.11.2010 00:13 C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf --------- 44372
11.11.2010 23:33 C:\WINDOWS\Prefetch\REALSCHED.EXE-0A2A7558.pf --------- 18902
11.11.2010 23:33 C:\WINDOWS\Prefetch\MBAM.EXE-11D8BBD8.pf --------- 75376
11.11.2010 23:33 C:\WINDOWS\Prefetch\OSA9.EXE-07EC1F61.pf --------- 14220
11.11.2010 23:33 C:\WINDOWS\Prefetch\REALUPGRADE.EXE-20E79CD7.pf --------- 33858
11.11.2010 23:33 C:\WINDOWS\Prefetch\USERINIT.EXE-30B18140.pf --------- 14340
11.11.2010 23:33 C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf --------- 24968
11.11.2010 23:33 C:\WINDOWS\Prefetch\MBAMGUI.EXE-1E06AB95.pf --------- 9680
11.11.2010 23:33 C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf --------- 17312
11.11.2010 23:33 C:\WINDOWS\Prefetch\WMIAPSRV.EXE-1E2270A5.pf --------- 19346
11.11.2010 23:33 C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-2E7929F3.pf --------- 13398
11.11.2010 23:17 C:\WINDOWS\Prefetch\DWWIN.EXE-30875ADC.pf --------- 75982
11.11.2010 23:17 C:\WINDOWS\Prefetch\DUMPREP.EXE-1B46F901.pf --------- 51788
11.11.2010 23:17 C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf --------- 37450
11.11.2010 23:13 C:\WINDOWS\Prefetch\REGSVR32.EXE-25EEFE2F.pf --------- 16660
11.11.2010 23:13 C:\WINDOWS\Prefetch\MBAM-SETUP.TMP-2D97474E.pf --------- 26536
11.11.2010 23:13 C:\WINDOWS\Prefetch\MBAM-SETUP.EXE-09C16525.pf --------- 16664
11.11.2010 22:14 C:\WINDOWS\Prefetch\RUNDLL32.EXE-4CC9A7F7.pf --------- 31382
11.11.2010 22:14 C:\WINDOWS\Prefetch\RUNDLL32.EXE-38196B2E.pf --------- 30716
11.11.2010 22:14 C:\WINDOWS\Prefetch\RUNDLL32.EXE-39D9D810.pf --------- 30836
11.11.2010 22:14 C:\WINDOWS\Prefetch\RUNDLL32.EXE-15419942.pf --------- 31460
11.11.2010 22:13 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2A74E8B4.pf --------- 30980
11.11.2010 22:13 C:\WINDOWS\Prefetch\RUNDLL32.EXE-34178B7E.pf --------- 31048
11.11.2010 22:13 C:\WINDOWS\Prefetch\RUNDLL32.EXE-282EADC8.pf --------- 31852
11.11.2010 21:59 C:\WINDOWS\Prefetch\GOOGLEEARTH.EXE-0B6A9C1A.pf --------- 51266
11.11.2010 21:33 C:\WINDOWS\Prefetch\FFMPEG.EXE-1FECD5C9.pf --------- 22362
11.11.2010 21:33 C:\WINDOWS\Prefetch\1STRUN.EXE-27A33825.pf --------- 9316
11.11.2010 21:33 C:\WINDOWS\Prefetch\MPLAYER.EXE-291B9C13.pf --------- 28512
11.11.2010 21:32 C:\WINDOWS\Prefetch\X264.EXE-2FBB12B2.pf --------- 8410
11.11.2010 21:32 C:\WINDOWS\Prefetch\RUNDLL32.EXE-21D32A0C.pf --------- 13556
11.11.2010 21:32 C:\WINDOWS\Prefetch\SUPER.EXE-210FB95B.pf --------- 60356
11.11.2010 21:29 C:\WINDOWS\Prefetch\REALCONVERTER.EXE-01979A77.pf --------- 64216
11.11.2010 21:29 C:\WINDOWS\Prefetch\REALSHARE.EXE-38BA34C4.pf --------- 53488
11.11.2010 21:29 C:\WINDOWS\Prefetch\REALONEMESSAGECENTER.EXE-0A4B9E3A.pf --------- 14154
11.11.2010 21:28 C:\WINDOWS\Prefetch\RPHELPERAPP.EXE-1A0D7CAC.pf --------- 20142
11.11.2010 21:28 C:\WINDOWS\Prefetch\FSQUIRT.EXE-3954ECEA.pf --------- 20028
11.11.2010 21:16 C:\WINDOWS\Prefetch\DRWTSN32.EXE-2B4B52AC.pf --------- 18556
11.11.2010 20:25 C:\WINDOWS\Prefetch\MSPAINT.EXE-11CBB631.pf --------- 23598
11.11.2010 20:20 C:\WINDOWS\Prefetch\RUNDLL32.EXE-33BF5A70.pf --------- 33956
11.11.2010 19:15 C:\WINDOWS\Prefetch\THUNDERBIRD.EXE-031A6371.pf --------- 68332
11.11.2010 18:31 C:\WINDOWS\Prefetch\SSMYPICS.SCR-01C62024.pf --------- 87396
11.11.2010 14:21 C:\WINDOWS\Prefetch\WINWORD.EXE-0AEA99D4.pf --------- 59716
11.11.2010 13:48 C:\WINDOWS\Prefetch\Layout.ini --------- 405764
11.11.2010 13:01 C:\WINDOWS\Prefetch\FSGK32.EXE-03447D04.pf --------- 22850
11.11.2010 13:01 C:\WINDOWS\Prefetch\FSSM32.EXE-3A483FA6.pf --------- 82916
11.11.2010 12:52 C:\WINDOWS\Prefetch\FSONLINESCANNER.EXE-3A651D8E.pf --------- 84024
11.11.2010 12:52 C:\WINDOWS\Prefetch\FSOLS_LAUNCHER.EXE-10C83883.pf --------- 26764
11.11.2010 12:51 C:\WINDOWS\Prefetch\JAVA.EXE-2167859B.pf --------- 63938
11.11.2010 12:44 C:\WINDOWS\Prefetch\_IU14D2N.TMP-11A11631.pf --------- 20718
11.11.2010 12:44 C:\WINDOWS\Prefetch\UNINS000.EXE-019B5229.pf --------- 25556
11.11.2010 12:42 C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf --------- 14618
11.11.2010 12:29 C:\WINDOWS\Prefetch\MBAM146-SETUP.TMP-0CA2A622.pf --------- 26880
11.11.2010 12:29 C:\WINDOWS\Prefetch\MBAM146-SETUP.EXE-25365F9F.pf --------- 16348
11.11.2010 03:00 C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.13-DELTA.-0D26F3DD.pf --------- 31296
11.11.2010 03:00 C:\WINDOWS\Prefetch\MRT.EXE-1B4A8D49.pf --------- 54032
11.11.2010 03:00 C:\WINDOWS\Prefetch\MRTSTUB.EXE-1BAFE38E.pf --------- 50734
11.11.2010 03:00 C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf --------- 107514
11.11.2010 02:45 C:\WINDOWS\Prefetch\RSMSINK.EXE-032F2BAB.pf --------- 21932
11.11.2010 02:45 C:\WINDOWS\Prefetch\VSSVC.EXE-0F74375A.pf --------- 29868
11.11.2010 02:45 C:\WINDOWS\Prefetch\DLLHOST.EXE-3249F1FF.pf --------- 84862
11.11.2010 02:02 C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf --------- 70560
10.11.2010 21:40 C:\WINDOWS\Prefetch\MSDTC.EXE-0E6E4AF7.pf --------- 24044
10.11.2010 21:40 C:\WINDOWS\Prefetch\DLLHOST.EXE-5353C76C.pf --------- 34782
10.11.2010 21:40 C:\WINDOWS\Prefetch\AVSCAN.EXE-25724B6E.pf --------- 51528
10.11.2010 21:40 C:\WINDOWS\Prefetch\AVCENTER.EXE-1D2DB8A2.pf --------- 58214
10.11.2010 15:18 C:\WINDOWS\Prefetch\DVDVIDEOSOFTTBTOOLBARHELPER.E-07091EA7.pf --------- 58728
10.11.2010 15:18 C:\WINDOWS\Prefetch\IEXPLORE.EXE-2CA9778D.pf --------- 91202
10.11.2010 14:46 C:\WINDOWS\Prefetch\GOOGLEUPDATERSERVICE.EXE-19F5FCF4.pf --------- 18320
10.11.2010 14:43 C:\WINDOWS\Prefetch\RUNDLL32.EXE-13404D23.pf --------- 76042
10.11.2010 14:06 C:\WINDOWS\Prefetch\JAVAWS.EXE-1714DD62.pf --------- 17772
10.11.2010 12:15 C:\WINDOWS\Prefetch\JUCHECK.EXE-219F257F.pf --------- 40196
07.11.2010 16:23 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2E5AF1D7.pf --------- 21584
----------------------------------------
C:\WINDOWS\Tasks
12.11.2010 19:37 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job --------- 1088
12.11.2010 19:26 C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1935655697-725345543-839522115-1004.job --------- 268
12.11.2010 19:26 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job --------- 1084
12.11.2010 19:25 C:\WINDOWS\Tasks\SA.DAT --------- 6
12.11.2010 11:03 C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1935655697-725345543-839522115-1004.job --------- 276
04.08.2004 13:00 C:\WINDOWS\Tasks\desktop.ini --------- 65
----------------------------------------
C:\WINDOWS\Temp
12.11.2010 20:18 C:\WINDOWS\Temp\msetupd.log --------- 32
12.11.2010 20:18 C:\WINDOWS\Temp\$$$dq3e --------- 1082549
12.11.2010 19:50 C:\WINDOWS\Temp\libFNP_events.log --------- 530
12.11.2010 19:26 C:\WINDOWS\Temp\mmw4 --------- 4
12.11.2010 19:25 C:\WINDOWS\Temp\Perflib_Perfdata_7dc.dat --------- 16384
11.11.2010 21:45 C:\WINDOWS\Temp\$67we.$ --------- 16585
----------------------------------------
C:\DOKUME~1\***\LOKALE~1\Temp
12.11.2010 20:10 C:\DOKUME~1\***\LOKALE~1\Temp\amt3.log --------- 50958
12.11.2010 20:01 C:\DOKUME~1\***\LOKALE~1\Temp\lilo.3060 --------- 0
12.11.2010 20:01 C:\DOKUME~1\***\LOKALE~1\Temp\swtag.log --------- 4650
12.11.2010 19:50 C:\DOKUME~1\***\LOKALE~1\Temp\alm.log --------- 989
12.11.2010 19:50 C:\DOKUME~1\***\LOKALE~1\Temp\amt.log --------- 2545
12.11.2010 19:50 C:\DOKUME~1\***\LOKALE~1\Temp\libFNP_events.log --------- 118
12.11.2010 19:32 C:\DOKUME~1\***\LOKALE~1\Temp\jusched.log --------- 397
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Norwegian.bin --------- 21975
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Turkish.bin --------- 22263
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Hungarian.bin --------- 26094
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Hebrew.bin --------- 19564
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Finnish.bin --------- 22868
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Czech.bin --------- 24321
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Portuguese(Brazil).bin --------- 25082
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Polish.bin --------- 24232
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Greek.bin --------- 25093
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Thai.bin --------- 21987
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Arabic.bin --------- 20991
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\SimChin.bin --------- 16420
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\English.bin --------- 21944
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Portuguese.bin --------- 26271
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\SWEDISH.bin --------- 24093
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Spanish.bin --------- 27764
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Russian.bin --------- 26136
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Italian.bin --------- 27421
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\German.bin --------- 25764
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\French.bin --------- 27246
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\TradChin.bin --------- 16962
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Dutch.bin --------- 25758
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Danish.bin --------- 22794
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Korean.bin --------- 20145
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\Japanese.bin --------- 24340
12.11.2010 19:27 C:\DOKUME~1\***\LOKALE~1\Temp\WPDNSE --------- 0
----------------------------------------
C:\Programme
12.11.2010 20:16 C:\Programme\trend micro --------- 0
12.11.2010 19:56 C:\Programme\Gemeinsame Dateien --------- 0
11.11.2010 23:13 C:\Programme\Malwarebytes' Anti-Malware --------- 0
10.11.2010 15:20 C:\Programme\Google --------- 0
10.11.2010 15:13 C:\Programme\Mozilla Firefox --------- 0
10.11.2010 14:46 C:\Programme\JDownloader --------- 0
09.11.2010 22:05 C:\Programme\Bonjour --------- 0
08.11.2010 23:04 C:\Programme\Emsisoft HiJackFree --------- 0
07.11.2010 20:19 C:\Programme\DVDVideoSoftTB --------- 0
07.11.2010 19:09 C:\Programme\Mozilla Thunderbird --------- 0
14.10.2010 07:46 C:\Programme\Internet Explorer --------- 0
11.10.2010 12:44 C:\Programme\Sony Ericsson --------- 0
11.10.2010 12:41 C:\Programme\Sony Ericsson USB --------- 0
11.10.2010 12:37 C:\Programme\MyPhoneExplorer --------- 0
13.09.2010 12:35 C:\Programme\No23 Recorder --------- 0
12.09.2010 19:13 C:\Programme\Graffiti Studio 2.0 --------- 0
27.08.2010 00:47 C:\Programme\InstallShield Installation Information --------- 0
11.08.2010 16:26 C:\Programme\Movie Maker --------- 0
07.08.2010 20:14 C:\Programme\Abfluege Online 5 --------- 0
20.07.2010 14:39 C:\Programme\Conduit --------- 0
19.07.2010 17:00 C:\Programme\Real --------- 0
19.07.2010 00:25 C:\Programme\URLSnooper2 --------- 0
19.07.2010 00:04 C:\Programme\WinPcap --------- 0
17.07.2010 00:30 C:\Programme\Inkscape --------- 0
12.07.2010 23:00 C:\Programme\Animake --------- 0
07.07.2010 22:36 C:\Programme\ICQ-Banner-Remover --------- 0
07.07.2010 22:23 C:\Programme\ICQ7.2 --------- 0
07.07.2010 22:22 C:\Programme\ICQ6Toolbar --------- 0
28.06.2010 16:11 C:\Programme\AviSynth 2.5 --------- 0
28.06.2010 16:11 C:\Programme\eRightSoft --------- 0
12.06.2010 16:57 C:\Programme\EA Sports --------- 0
12.06.2010 16:54 C:\Programme\KONAMI --------- 0
07.06.2010 22:45 C:\Programme\Lame for Audacity --------- 0
30.05.2010 17:01 C:\Programme\Unlocker --------- 0
29.05.2010 22:02 C:\Programme\Counter-Strike Source --------- 0
28.05.2010 09:20 C:\Programme\Java --------- 0
24.05.2010 16:28 C:\Programme\Adobe --------- 0
24.05.2010 13:28 C:\Programme\Maps2Bgl --------- 0
22.05.2010 21:30 C:\Programme\RCT 3 --------- 0
18.05.2010 20:55 C:\Programme\Windows Media Connect 2 --------- 0
17.05.2010 20:36 C:\Programme\Microsoft --------- 0
17.05.2010 20:36 C:\Programme\Windows Live --------- 0
17.05.2010 20:36 C:\Programme\Windows Live SkyDrive --------- 0
15.05.2010 19:38 C:\Programme\Electronic Arts --------- 0
12.05.2010 12:19 C:\Programme\Outlook Express --------- 0
17.04.2010 16:05 C:\Programme\Rockstar Games --------- 0
16.04.2010 15:18 C:\Programme\Image-Line --------- 0
16.04.2010 15:13 C:\Programme\Outsim --------- 0
12.04.2010 14:16 C:\Programme\Microsoft Games --------- 0
31.03.2010 16:41 C:\Programme\FSFDT --------- 0
14.02.2010 12:08 C:\Programme\Tobacco Secure --------- 0
07.02.2010 13:53 C:\Programme\FS2004SDK --------- 0
07.02.2010 12:53 C:\Programme\FastStone Capture --------- 0
02.02.2010 12:32 C:\Programme\Leung Software --------- 0
30.01.2010 22:38 C:\Programme\directx --------- 0
21.01.2010 14:18 C:\Programme\German Truck Simulator --------- 0
19.01.2010 20:06 C:\Programme\A400M The Game --------- 0
13.01.2010 17:20 C:\Programme\MIKSOFT --------- 0
07.01.2010 15:59 C:\Programme\Microsoft WSE --------- 0
19.11.2009 17:10 C:\Programme\VirtualDJ --------- 0
01.11.2009 13:50 C:\Programme\Haufe --------- 0
20.10.2009 16:39 C:\Programme\DAEMON Tools Lite --------- 0
07.10.2009 19:33 C:\Programme\MAGIX --------- 0
20.09.2009 20:25 C:\Programme\Skype --------- 0
11.09.2009 23:18 C:\Programme\Zylom Games --------- 0
11.09.2009 20:48 C:\Programme\Steinberg --------- 0
10.09.2009 11:25 C:\Programme\Sandboxie --------- 0
09.09.2009 14:21 C:\Programme\PDFCreator --------- 0
03.09.2009 21:21 C:\Programme\XP Codec Pack --------- 0
28.08.2009 21:34 C:\Programme\GIMP-2.0 --------- 0
13.07.2009 20:18 C:\Programme\FS Recorder for FS2004 --------- 0
28.06.2009 11:38 C:\Programme\Avira --------- 0
27.06.2009 14:29 C:\Programme\ICQ6 --------- 0
11.06.2009 14:13 C:\Programme\VisualFlight --------- 0
04.05.2009 13:15 C:\Programme\QuickTime --------- 0
04.05.2009 13:15 C:\Programme\Apple Software Update --------- 0
24.04.2009 16:35 C:\Programme\HP --------- 0
11.04.2009 18:03 C:\Programme\Audacity --------- 0
11.04.2009 18:02 C:\Programme\NCH Swift Sound --------- 0
06.04.2009 20:34 C:\Programme\Shockwave 3D Lights Redux for FS9 --------- 0
06.03.2009 11:30 C:\Programme\Nero --------- 0
16.02.2009 20:40 C:\Programme\Teamspeak2_RC2 --------- 0
01.02.2009 19:41 C:\Programme\BlogTorrent --------- 0
29.01.2009 22:21 C:\Programme\Mp3tag --------- 0
21.01.2009 19:40 C:\Programme\Microsoft Games for Windows - LIVE --------- 0
21.01.2009 19:15 C:\Programme\Messenger --------- 0
21.01.2009 19:11 C:\Programme\NetMeeting --------- 0
21.01.2009 19:11 C:\Programme\Windows Media Player --------- 0
21.01.2009 19:11 C:\Programme\Windows NT --------- 0
21.01.2009 17:35 C:\Programme\MSBuild --------- 0
21.01.2009 17:32 C:\Programme\Reference Assemblies --------- 0
14.01.2009 17:54 C:\Programme\CR-Software --------- 0
30.12.2008 21:50 C:\Programme\Bevelstone Production --------- 0
22.12.2008 23:14 C:\Programme\DivX --------- 0
22.12.2008 22:48 C:\Programme\VideoLAN --------- 0
21.12.2008 22:58 C:\Programme\Real Environment Pro --------- 0
13.12.2008 00:12 C:\Programme\MSXML 4.0 --------- 0
07.12.2008 15:54 C:\Programme\Teachmaster 4.2 --------- 0
07.12.2008 15:52 C:\Programme\PhotoFiltre --------- 0
07.12.2008 14:16 C:\Programme\avmwlanstick --------- 0
07.12.2008 12:14 C:\Programme\EndItAll --------- 0
06.12.2008 12:10 C:\Programme\Monopoly Star Wars --------- 0
06.12.2008 11:35 C:\Programme\WinRAR --------- 0
06.12.2008 11:35 C:\Programme\CCleaner --------- 0
06.12.2008 11:21 C:\Programme\Zoner --------- 0
06.12.2008 11:12 C:\Programme\Microsoft Visual Studio --------- 0
06.12.2008 11:11 C:\Programme\Snapshot Viewer --------- 0
06.12.2008 11:10 C:\Programme\Microsoft Office --------- 0
06.12.2008 11:10 C:\Programme\microsoft frontpage --------- 0
05.12.2008 16:41 C:\Programme\CyberLink --------- 0
05.12.2008 16:04 C:\Programme\Realtek --------- 0
05.12.2008 15:27 C:\Programme\Uninstall Information --------- 0
05.12.2008 15:07 C:\Programme\xerox --------- 0
05.12.2008 15:02 C:\Programme\WindowsUpdate --------- 0
05.12.2008 15:02 C:\Programme\Online-Dienste --------- 0
05.12.2008 15:00 C:\Programme\ComPlus Applications --------- 0
05.12.2008 15:00 C:\Programme\Online Services --------- 0
05.12.2008 15:00 C:\Programme\MSN Gaming Zone --------- 0
05.12.2008 14:59 C:\Programme\MSN --------- 0
----------------------------------------
C:\Dokumente und Einstellungen\All Users\..
***
LocalService
All Users
Default User
NetworkService
----------------------------------------
C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
----------------------------------------
***** Ende des Scans 12.11.2010 um 20:19:48.39 ***
|
|
12.11.2010, 22:06
| #5 |
| /// Helfer-Team | Links bei Google werden umgeleitet und Internet scheint allgemein langsamer/stockend Punkt 5 fehlt noch:-> http://www.trojaner-board.de/92762-l...tml#post588288 ausserdem: 1. läuft unter XP, Vista mit (32Bit) und Windows 7 (32Bit) Achtung!: WENN GMER NICHT AUSGEFÜHRT WERDEN KANN ODER PROBMLEME VERURSACHT, fahre mit dem nächsten Punkt fort!- Es ist NICHT sinnvoll einen zweiten Versuch zu starten! Um einen tieferen Einblick in dein System, um eine mögliche Infektion mit einem Rootkit/Info v.wikipedia.org) aufzuspüren, werden wir ein Tool - Gmer - einsetzen :
** keine Verbindung zu einem Netzwerk und Internet - WLAN nicht vergessen Wenn der Scan beendet ist, bitte alle Programme und Tools wieder aktivieren! 2. ► NUR DOWNLOADEN, WENN GMER NICHT AUSGEFÜHRT WERDEN KANN: läuft unter XP, Vista mit (32Bit) und Windows 7 (32Bit) Lade und installiere das Tool RootRepeal herunter
|
.
Hybrid-Darstellung
