| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Msn verschickt Spam!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
01.05.2011, 22:13
| #1 |
 |  Msn verschickt Spam! Ich weiss das das hier schon diskutiert wurde, aber ich habe nichts gefunden, dass auf meinen Fall zutrifft. Es ist so: Ich habe vor ein paar Tagen von einem Freund eine E-Mail bekommen, diese hat einen Link enthalten, ich Dummkopf habe aus Neugier drauf geklickt. Ich kam dann auf eine Seite bei der man Viagra und andere Medikamente bestellen kann. Ich bin dann sofort wieder weg von dieser Seite. Jetzt ein paar Tage später, finde ich in meinem Posteingang Nachrichten, die sagen, dass eine E-Mail an etwa zehn meiner Kontakte nicht versendet werden konnte. Die E-Mail enthätl auch den Link, der auf die Seite mit den Medikamenten führt. Dann ein paar Stunden später erhalte ich eine E-Mail von mir selbst, da ich mich selbst auch als Kontakt habe, in der dieser Li9nk auch wieder drin ist. Nun anschliessend habe i9ch mich im Internet etwas erkundigt und mein Passwort geändert. Hier im Forum steht, dass es sein kann, dass man sich beim Besuch der Seite einen Virus oder Trojaner heruntergeladen hat, daher habe ich einen Vollständigen Systemscann mit Norton gemacht, der hat nichts gefunden. Und jetzt ist noch etwas seltsam. Ich habe diesen Link, der mich auf die Seite mit den Medikamenten gebracht hat, nicht mit dem Computer geöffnet, sondern mit dem Ipod Touch. Daher kann es ja fast kein Virus sein, aber was ist es dann? Und was kann ich dagegen tun? Ich hoffe Ihr könnt mir helfen. glamp |
|
02.05.2011, 09:25
| #2 | ||
| /// Helfer-Team    | Msn verschickt Spam! Hallo und Herzlich Willkommen!
__________________ Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]: Zitat:
Wichtig: Alle Befehle bitte als Administrator ausführen! rechte Maustaste auf die Eingabeaufforderung und "als Administrator ausführen" auswählen Auf der angewählten Anwendung einen Rechtsklick (rechte Maustaste) und "Als Administrator ausführen" wählen! 1. Lade Dir Malwarebytes Anti-Malware von→ malwarebytes.org
2. Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
3. → Lade Dir HJTscanlist.zip herunter → entpacke die Datei auf deinem Desktop → Bei WindowsXP Home musst vor dem Scan zusätzlich tasklist.zip installieren → per Doppelklick starten → Wähle dein Betriebsystem aus - bei Win7 wähle Vista → Wenn Du gefragt wirst, die Option "Einstellung" (1) - scanlist" wählen → Nach kurzer Zeit sollte sich Dein Editor öffnen und die Datei hjtscanlist.txt präsentieren → Bitte kopiere den Inhalt hier in Deinen Thread. ** Falls es klappt auf einmal nicht, kannst den Text in mehrere Teile teilen und so posten 4. Ich würde gerne noch all deine installierten Programme sehen: Lade dir das Tool Ccleaner herunter → Download installieren (Software-Lizenzvereinbarung lesen, falls angeboten wird "Füge CCleaner Yahoo! Toolbar hinzu" abwählen)→ starten→ falls nötig - unter Options settings-> "german" einstellen dann klick auf "Extra (um die installierten Programme auch anzuzeigen)→ weiter auf "Als Textdatei speichern..." wird eine Textdatei (*.txt) erstellt, kopiere dazu den Inhalt und füge ihn da ein Zitat:
** Möglichst nicht ins internet gehen, kein Online-Banking, File-sharing, Chatprogramme usw grußCoverflow
__________________ |
|
02.05.2011, 12:09
| #3 |
| | Msn verschickt Spam! Sie gehen davon aus, dass ich einen Virus oder so was habe richtig?
__________________Nun aber wieso erkennt dann Norton nichts und wie kann ich diesen Virus bekommen haben, ich habe ja wie schon gesagt die Website nur von meinem Ipod Touch besucht. Wäre es nicht einfacher anstatt alle diese Sachen zu tun sich einfach eine neu E-Mail Adresse anzuschaffen und dann halt überall wo man registriert ist die E-Mail Adresse zuändern? |
|
02.05.2011, 16:00
| #4 |
| /// Helfer-Team | Msn verschickt Spam! Sie gehen davon aus, dass ich einen Virus oder so was habe richtig? Laut deinen Angaben ist nicht ausgeschlossen Nun aber wieso erkennt dann Norton nichts Jede Software funktioniert etwas anders und jedes Programm findet etwas anderes! Kannst Du mal mal im Netz schauen, findest unzählige Programme, aber keins ist davon 100%ig perfekt geht auch nicht, weil die Aktivität der PC-Viren-Erzeuger steigen pro Minute. Das heißt, ein Schutzprogramm usw nur nach bestimmten Merkmalen und die in der Datenbank gesammelten Daten können nach Viren suchen, erkennen und diese zu entfernen Wäre es nicht einfacher anstatt alle diese Sachen zu tun sich einfach eine neu E-Mail Adresse anzuschaffen und dann halt überall wo man registriert ist die E-Mail Adresse zuändern? das kann ja wohl nicht dauernd die Lösung sein, muss herausgefunden werden, wo die Ursache der Problematik liegt!
__________________ Warnung!: Vorsicht beim Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einen Verschlüsselungs-Trojaner infiziert sein! Anhang nicht öffnen, in unserem Forum erst nachfragen! Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten! Bitte diese Warnung weitergeben, wo Du nur kannst! |
|
02.05.2011, 20:01
| #5 |
| | Msn verschickt Spam! Okay hier zuerst das von MBAM: : Code:
ATTFilter Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Datenbank Version: 6492
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421
02.05.2011 20:46:12
mbam-log-2011-05-02 (20-46-12).txt
Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|)
Durchsuchte Objekte: 288130
Laufzeit: 1 Stunde(n), 53 Minute(n), 15 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 1
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM\COMPONENTS\WIDGITOOLBARFF.DLL (Adware.WidgiToolbar) -> Value: WIDGITOOLBARFF.DLL -> Quarantined and deleted successfully.
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
c:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
|
|
02.05.2011, 20:03
| #6 |
| | Msn verschickt Spam! Nun das vom 2 Schritt: : Code:
ATTFilter OTL Extras logfile created on: 02.05.2011 20:53:52 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Timo\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 60.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 81.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 289.92 Gb Total Space | 109.03 Gb Free Space | 37.61% Space Free | Partition Type: NTFS
Drive F: | 687.65 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: TIMO-MOBIL | User Name: Timo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{401FF33D-6A49-4D27-BBDC-288AEC1B47AD}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{904A90D9-9334-44C7-84F4-19FBE45F3126}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{FFDFCD60-B8C4-466B-82DE-C37E26F0E777}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0997A8ED-77C6-4B94-9A5F-76027ADAF832}" = protocol=6 | dir=in | app=c:\program files\spamihilator\cdcc.exe |
"{232838F7-EB3D-4154-8350-2D52133D83EE}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{41EAD167-C645-4291-988C-5E5FB5D96D14}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4E86B8B3-90AF-41B2-803E-08F68EF5DD05}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{7BB77A5D-DD19-48C1-94DE-84CEAA164402}" = protocol=6 | dir=in | app=c:\program files\spamihilator\spamihilator.exe |
"{870998A7-077C-44F9-B329-07BB00BFE55B}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{8C5B5EDE-EC52-4FB0-88B2-53ABF6E23750}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{94752534-85DD-439D-9702-CE8A9F95CE99}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{98439142-B30E-4303-A3BE-5078232DB6AE}" = protocol=6 | dir=in | app=c:\program files\spamihilator\dccproc.exe |
"{9F2751DE-ECD1-407C-9DDB-0E12AA96A150}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{A68D62C1-2C51-4B3F-9232-9632E3CD4AEC}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{B2133616-A3F7-49B3-9DCD-EC1840293301}" = protocol=17 | dir=in | app=c:\program files\spamihilator\spamihilator.exe |
"{CE35DEE9-D716-47B8-A16D-D010D06BD81E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DB9F1547-3694-4EF1-914C-0F870F1F6091}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{E08C5138-0E63-4839-BD60-26E3321AB30E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E625A7E7-FFE7-46F7-AB6F-33F118F5F629}" = protocol=17 | dir=in | app=c:\program files\spamihilator\cdcc.exe |
"{F1E851DF-11D8-42F5-947E-6CFDF69F6CDC}" = protocol=17 | dir=in | app=c:\program files\spamihilator\dccproc.exe |
"TCP Query User{BF006466-157E-4246-A8A3-1E8C88211742}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{18A8ACC5-B149-4E3C-A053-817CC2E96366}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{028ED9C4-25EE-4DEE-9CF4-91034BC89B18}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{077A7810-A937-4465-AD08-ACED9807995F}" = ANNO 1602 Königs-Edition
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B9B76C9-4967-59FC-C994-191AEA152F04}" = ATI Catalyst Install Manager
"{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}" = Primo
"{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}" = Readiris Pro 10
"{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}" = VAIO Launcher
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1C2B3CEA-482E-4453-B3E2-C9731337828A}" = Microsoft SQL Server 2008 Native Client
"{1D328E11-3B0C-388C-835D-C9C20E8C7734}" = Microsoft Help Viewer 1.0 Language Pack - DEU
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}" = Google Earth
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{202F2838-156B-FC76-013F-9241B9673F39}" = CCC Help Thai
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 24
"{2B4E24A0-A06F-488D-87D8-16738E5E1104}" = Windows Live Family Safety
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{325ED81A-EC15-7CE8-729B-0392A1DD3854}" = CCC Help Czech
"{326DC400-1FC4-4D7D-946D-06D1EAB93200}" = VAIO Guide
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}" = Microsoft SQL Server 2008 RsFx Driver
"{353FE16B-30FE-469A-BF55-B978F4218003}" = iTunes
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3CCA23DD-CEDA-CC7F-C74C-4D1EDAE919AA}" = Catalyst Control Center Graphics Full New
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{42DD2173-B7CA-8AB3-8AC2-40DFE2CA6FBC}" = CCC Help German
"{430DD2C5-65FD-9781-F9F2-693CAF05CD10}" = Catalyst Control Center InstallProxy
"{477415F5-93DA-46AA-85C5-640047825995}" = Microsoft SQL Server 2008 Database Engine Shared
"{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0
"{49B8916D-1DEA-F18A-731F-BF0FE209C63B}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4AF2248C-B3DF-46FB-9596-87F5DB193689}" = Microsoft SQL Server 2008 Browser
"{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"{4EEAF8D8-CB79-06CA-A566-EAC1726DAABB}" = CCC Help Finnish
"{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Easy Media Creator 10 LJ
"{540DB82A-EE11-BBC1-8BD8-BB7D937A53A4}" = CCC Help Hungarian
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}" = VAIO Data Restore Tool
"{5882396B-9FB3-37AC-1AE1-5EA344BD7705}" = Catalyst Control Center Graphics Previews Vista
"{5BA149D9-D5FA-5AB3-400B-9F1BF424B7CE}" = CCC Help Chinese Traditional
"{5BEE8F1F-BD32-4553-8107-500439E43BD7}" = VAIO Update
"{5C5EE8F2-0B38-4C13-AE4E-A87A237FE718}" =
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F5867F0-2D23-4338-A206-01A76C823924}" = VAIO Energie Verwaltung
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{642F96CC-1D3B-20DE-8673-44EE15B3DC2F}" = CCC Help Portuguese
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}" = Click to Disc
"{6D26ACF9-4919-0744-C509-28EAF53112D4}" = CCC Help Dutch
"{6E9CFEF5-0245-411F-8587-CF83DF9D4B05}" = Microsoft SQL Server 2008 Database Engine Services
"{71256374-2053-CF0F-BD54-20082980B95C}" = Catalyst Control Center Graphics Full Existing
"{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center
"{72EEB695-388B-4835-8EA6-0C04545B06B9}" = Intel(R) PROSet/Wireless WiFi-Software
"{737D8F4D-24D4-D626-DEC0-9E39A6166890}" = CCC Help Danish
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{74B705C2-173A-FFD1-98BC-AD5FB647AB38}" = CCC Help Polish
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{784BDC03-2D22-BCAE-5CAC-84AFA799FBDE}" = CCC Help Turkish
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7C404084-C5A6-42FF-B731-0BAC79A6E134}" = VAIO Original Funktion Einstellungen
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{8572CE7D-46B0-70B3-96CD-534F07B35F5D}" = CCC Help Italian
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{87544F2E-CCA5-01BC-AEBC-D8C1D759EE61}" = CCC Help English
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ED5D0B7-A193-413F-815A-530BE36B38F7}" = Spamihilator 0.9.9.53 (32-Bit)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90A40407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{90B38901-52C8-85A7-D6C8-9A5592C9FCAA}" = CCC Help Greek
"{90F1943D-EA4A-4460-B59F-30023F3BA69A}" = SmarThru 4
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95229EF6-F4A1-413A-BA50-668311FAFE19}" = VAIO Original Function Settings
"{9648D00F-0589-619B-6114-BF2A0620168B}" = CCC Help Korean
"{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}" =
"{9805E4EE-9B66-CABD-AF6B-4B84F2A8EF46}" = Skins
"{9973498D-EA29-4A68-BE0B-C88D6E03E928}" = ArcSoft WebCam Companion 2
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AA2D735-3375-42D4-9A61-3FFEF82599D6}" = Unterstützungsdateien für Microsoft SQL Server 2008-Setup
"{9AC34FA1-BCDE-1D09-5DB7-EB6A064FDEA9}" = CCC Help Spanish
"{9B973FC0-E71F-6F89-10D6-1BFD063D1707}" = CCC Help Swedish
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9EAC0E21-510E-4259-A9C6-F5D5B8969036}" = Catalyst Control Center - Branding
"{A0B139A7-E8D5-49E8-A7BF-12421E652208}" = pdfforge Toolbar v4.3
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A3979A05-6834-D0A7-75CD-71B5A9E5F4C0}" = Catalyst Control Center Localization All
"{A6F21795-E629-35B2-9487-00A8363B28AA}" = Catalyst Control Center Graphics Light
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" = Setting Utility Series
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AEA6A4C2-7C4E-48F9-A770-879DE2EDEE1B}" = OpenMG Secure Module 5.4.00
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B8E9F8A1-9F4D-43D5-ABD6-1DF067FAA469}" = Microsoft SQL Server 2008 Database Engine Services
"{C0AD2831-3398-A078-CBEB-39A6B381BB56}" = CCC Help Japanese
"{C18A02EC-966B-E7A7-9AC9-082F770ABF9B}" = CCC Help Russian
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C9C390CC-F9B9-EFE8-27DF-6EB7FF8F8760}" = CCC Help Norwegian
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CD431A7B-88D8-0823-E66F-CCFAEA6DA7B4}" = ccc-core-static
"{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Music Transfer
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF0F8D1B-5FB9-468D-BD88-E6239906D2B7}" = Click to Disc
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D074DC76-F6C9-440E-A1D0-1DE958417FDB}" = Microsoft SQL Server VSS Writer
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D47E6B9C-F5A5-23B7-AB6A-3806AD4C9529}" = ccc-utility
"{D6DA6836-77C2-5338-10E3-D7A6CD65681D}" = Catalyst Control Center Core Implementation
"{DA8F979E-43B9-3EEC-721C-F297D9509992}" = Catalyst Control Center Graphics Previews Common
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEEB5FE3-40F5-3C5B-8F85-5306EF3C08F4}" = Microsoft Visual C++ 2010 Express - DEU
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}" = Microsoft SQL Server Native Client
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{F570A6CC-53ED-4AA9-8B08-551CD3E38D8B}" =
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FE0782BC-7AB0-CF6A-6E38-D3040462C7EC}" = CCC Help French
"{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Easy Media Creator Home
"{FF6F95A4-E59B-45C8-BEA8-0BDC8D9CAB51}" = Microsoft SQL Server 2008 Common Files
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"BFG-Big Fish Games Spiel-Suite" = Big Fish Games Spiel-Suite
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200" = HDAUDIO SoftV92 Data Fax Modem with SmartCP
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"DivX Setup.divx.com" = DivX-Setup
"dt icon module" =
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free FLV Converter_is1" = Free FLV Converter V 6.96.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.35.324
"Freemake Video Converter_is1" = Freemake Video Converter Version 2.0.1
"gtfirstboot Setting Request" =
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"InstallShield_{AEA6A4C2-7C4E-48F9-A770-879DE2EDEE1B}" = OpenMG Secure Module 5.4.00
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MFU Module" =
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"Microsoft Help Viewer 1.0 Language Pack - DEU" = Microsoft Help Viewer 1.0 Language Pack - DEU
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft Visual C++ 2010 Express - DEU" = Microsoft Visual C++ 2010 Express - DEU
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"NAV" = Norton AntiVirus
"ProInst" = Intel PROSet Wireless
"Samsung CLX-216x Series" = Samsung CLX-216x Series
"Samsung Universal Print Driver" = Samsung Universal Print Driver
"sp6" = Logitech SetPoint 6.20
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Uninstall_is1" = Uninstall 1.0.0.1
"VAIO Help and Support" =
"VLC media player" = VLC media player 1.1.7
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"Worms for Pocket PC" = Worms for Pocket PC
"xp-AntiSpy" = xp-AntiSpy 3.97-9
"Xvid_is1" = Xvid 1.2.2 final uninstall
"Zattoo4" = Zattoo4 4.0.5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 24.04.2011 06:02:37 | Computer Name = Timo-Mobil | Source = WinMgmt | ID = 10
Description =
Error - 24.04.2011 06:39:36 | Computer Name = Timo-Mobil | Source = EventSystem | ID = 4621
Description =
Error - 24.04.2011 09:31:29 | Computer Name = Timo-Mobil | Source = WinMgmt | ID = 10
Description =
Error - 24.04.2011 12:27:53 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 24.04.2011 12:27:53 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1158214
Error - 24.04.2011 12:27:53 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1158214
Error - 24.04.2011 16:55:36 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 24.04.2011 16:55:36 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 9337502
Error - 24.04.2011 16:55:36 | Computer Name = Timo-Mobil | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 9337502
Error - 25.04.2011 07:47:36 | Computer Name = Timo-Mobil | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 11.02.2011 12:16:55 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 11.02.2011 12:16:55 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 11.02.2011 18:41:04 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 11.02.2011 18:41:04 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 04:54:56 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 04:54:56 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 05:14:38 | Computer Name = Timo-Mobil | Source = DCOM | ID = 10005
Description =
Error - 12.02.2011 05:14:39 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7009
Description =
Error - 12.02.2011 05:14:39 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 11:37:39 | Computer Name = Timo-Mobil | Source = Service Control Manager | ID = 7000
Description =
< End of report >
|
|
02.05.2011, 20:04
| #7 |
| | Msn verschickt Spam! Die zweite Datei von Schritt Nummer 2: : Code:
ATTFilter OTL logfile created on: 02.05.2011 20:53:52 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Timo\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 60.00% Memory free 6.00 Gb Paging File | 5.00 Gb Available in Paging File | 81.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 289.92 Gb Total Space | 109.03 Gb Free Space | 37.61% Space Free | Partition Type: NTFS Drive F: | 687.65 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: TIMO-MOBIL | User Name: Timo | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Timo\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) PRC - C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) PRC - C:\Program Files\Application Updater\ApplicationUpdater.exe (Spigot, Inc.) PRC - C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) PRC - C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ccsvchst.exe (Symantec Corporation) PRC - C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech, Inc.) PRC - C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) PRC - C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe (Sony Corporation) PRC - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) PRC - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\RTKAUDIOSERVICE.EXE (Realtek Semiconductor) PRC - C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation) PRC - C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) PRC - C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) PRC - C:\Windows\Samsung\PanelMgr\SSMMgr.exe () PRC - C:\Program Files\Samsung\Samsung CLX-216x Series\SPanel\PSU\Scan2pc.exe () PRC - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) ========== Modules (SafeList) ========== MOD - C:\Users\Timo\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.) SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) SRV - (Application Updater) -- C:\Program Files\Application Updater\ApplicationUpdater.exe (Spigot, Inc.) SRV - (NAV) -- C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ccSvcHst.exe (Symantec Corporation) SRV - (LBTServ) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (Samsung UPD Service) -- C:\Windows\System32\SUPDSvc.exe (Samsung Electronics CO., LTD.) SRV - (VUAgent) -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe (Sony Corporation) SRV - (EvtEng) Intel(R) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) SRV - (RegSrvc) Intel(R) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation) SRV - (PACSPTISVR) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe (Sony Corporation) SRV - (RtkAudioService) -- C:\Windows\RTKAUDIOSERVICE.EXE (Realtek Semiconductor) SRV - (VAIO Power Management) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (IviRegMgr) -- c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) ========== Driver Services (SafeList) ========== DRV - (BHDrvx86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20110419.001\BHDrvx86.sys (Symantec Corporation) DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110502.002\NAVEX15.SYS (Symantec Corporation) DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110502.002\NAVENG.SYS (Symantec Corporation) DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20110429.002\IDSvix86.sys (Symantec Corporation) DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation) DRV - (SYMTDIv) -- C:\Windows\System32\Drivers\NAV\1205000.07D\SYMTDIV.SYS (Symantec Corporation) DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation) DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation) DRV - (SRTSP) -- C:\Windows\System32\Drivers\NAV\1205000.07D\SRTSP.SYS (Symantec Corporation) DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\NAV\1205000.07D\SRTSPX.SYS (Symantec Corporation) DRV - (SymEFA) -- C:\Windows\system32\drivers\NAV\1205000.07D\SYMEFA.SYS (Symantec Corporation) DRV - (SymIRON) -- C:\Windows\system32\drivers\NAV\1205000.07D\Ironx86.SYS (Symantec Corporation) DRV - (SymDS) -- C:\Windows\system32\drivers\NAV\1205000.07D\SYMDS.SYS (Symantec Corporation) DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.) DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.) DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.) DRV - (s1039bus) Sony Ericsson Device 1039 driver (WDM) -- C:\Windows\System32\drivers\s1039bus.sys (MCCI Corporation) DRV - (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS) -- C:\Windows\System32\drivers\s1039nd5.sys (MCCI Corporation) DRV - (s1039mdm) -- C:\Windows\System32\drivers\s1039mdm.sys (MCCI Corporation) DRV - (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM) -- C:\Windows\System32\drivers\s1039unic.sys (MCCI Corporation) DRV - (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM) -- C:\Windows\System32\drivers\s1039mgmt.sys (MCCI Corporation) DRV - (s1039obex) -- C:\Windows\System32\drivers\s1039obex.sys (MCCI Corporation) DRV - (s1039mdfl) -- C:\Windows\System32\drivers\s1039mdfl.sys (MCCI Corporation) DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation) DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.) DRV - (RsFx0103) -- C:\Windows\System32\drivers\RsFx0103.sys (Microsoft Corporation) DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC) DRV - (DMICall) -- C:\Windows\System32\drivers\DMICall.sys (Sony Corporation) DRV - (risdptsk) -- C:\Windows\System32\drivers\risdptsk.sys (REDC) DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.) DRV - (WimFltr) -- C:\Windows\System32\drivers\WimFltr.sys (Microsoft Corporation) DRV - (SFEP) -- C:\Windows\System32\drivers\SFEP.sys (Sony Corporation) DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.) DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo) DRV - (SSPORT) -- C:\Windows\System32\drivers\SSPORT.SYS (Samsung Electronics) DRV - (DgiVecp) -- C:\Windows\System32\drivers\DGIVECP.SYS (Samsung Electronics Co., Ltd.) DRV - (pfc) -- C:\Windows\System32\drivers\pfc.sys (Padus, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.club-vaio.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.club-vaio.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://eu.ask.com?o=15780&l=dis IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "hxxp://www.google.ch/" FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:4.3 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1 FF - prefs.js..extensions.enabledItems: 2020Player@2020Technologies.com:4.5.4.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\IPSFFPlgn\ [2011.01.14 18:35:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.04.30 13:18:27 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.04.30 13:18:27 | 000,000,000 | ---D | M] [2010.11.25 20:45:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Timo\AppData\Roaming\mozilla\Extensions [2011.05.01 22:58:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions [2010.12.21 22:28:11 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011.03.08 22:57:00 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2011.03.28 17:39:36 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011.02.10 18:47:22 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8} [2011.02.02 23:20:09 | 000,000,000 | ---D | M] (20-20 3D Viewer) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\2020Player@2020Technologies.com [2010.09.28 23:39:14 | 000,002,333 | ---- | M] () -- C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\ob9h2uln.default\searchplugins\askcom.xml [2011.04.10 18:46:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010.12.21 18:11:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011.03.15 22:40:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011.03.10 18:53:15 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM [2011.01.14 18:35:42 | 000,000,000 | ---D | M] (Norton IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\IPSFFPLGN [2011.02.02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010.10.27 07:44:13 | 000,001,392 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.10.27 07:44:13 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml [2010.10.27 07:44:13 | 000,006,805 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.10.27 07:44:13 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.10.27 07:44:13 | 000,001,105 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ips\ipsbho.dll (Symantec Corporation) O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.) O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google BAE\BAE.dll (Your Company Name) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found. O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll (Spigot, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [Maple_S2P] C:\Program Files\Samsung\Samsung CLX-216x Series\SPanel\PSU\Scan2pc.exe () O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe () O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - Startup: C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Timo\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - File not found O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\System32\VESWinlogon.dll (Sony Corporation) O24 - Desktop WallPaper: C:\Users\Timo\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\Timo\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [1999.08.31 05:52:00 | 000,598,016 | R--- | M] (MAX DESIGN) - F:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [1999.08.31 05:52:00 | 000,000,766 | R--- | M] () - F:\Autorun.ico -- [ CDFS ] O32 - AutoRun File - [2001.09.06 01:04:00 | 000,000,283 | R--- | M] () - F:\Autorun.inf -- [ CDFS ] O33 - MountPoints2\{085f78fb-6b57-11e0-9495-001dba24bb8b}\Shell - "" = AutoRun O33 - MountPoints2\{085f78fb-6b57-11e0-9495-001dba24bb8b}\Shell\AutoRun\command - "" = G:\Startme.exe O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\Acrobat\command - "" = F:\.\ar500deu.exe -- [2001.09.06 01:04:00 | 009,124,984 | R--- | M] () O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\AutoRun\command - "" = F:\Autorun.exe -- [1999.08.31 05:52:00 | 000,598,016 | R--- | M] (MAX DESIGN) O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\DirectX\command - "" = F:\.\DirectX\dxsetup.exe -- [2001.10.16 12:24:46 | 000,140,288 | R--- | M] () O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\Setup\command - "" = F:\.\Setup.exe -- [2002.12.02 15:33:00 | 000,107,512 | R--- | M] () O33 - MountPoints2\{ced634c9-1cce-11e0-8b7f-001dba24bb8b}\Shell - "" = AutoRun O33 - MountPoints2\{ced634c9-1cce-11e0-8b7f-001dba24bb8b}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a O33 - MountPoints2\{dda96fd3-fbd3-11df-a565-001dba24bb8b}\Shell\AutoRun\command - "" = G:\wd_windows_tools\WDEULA.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.05.02 20:52:25 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Timo\Desktop\OTL.exe [2011.05.02 16:58:20 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Roaming\Malwarebytes [2011.05.02 16:58:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2011.05.02 16:58:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Malwarebytes' Anti-Malware [2011.05.02 16:58:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011.05.02 16:58:10 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011.05.02 16:58:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011.05.02 12:29:20 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{227CABBB-BF91-469F-8E02-D4D868EB4188} [2011.05.01 15:19:45 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{1C9253E1-D764-429F-85F4-AA2052B834DF} [2011.04.29 15:30:57 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{9802831A-8BF0-472C-921A-BC05E73CEEE3} [2011.04.28 18:13:08 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{C651C691-93ED-4E9E-94B4-02731314E127} [2011.04.27 20:00:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Free FLV Converter [2011.04.27 20:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Free FLV Converter [2011.04.27 17:22:27 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2011.04.27 17:22:26 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2011.04.27 17:22:22 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2011.04.27 17:14:03 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{442D6840-DFC6-4D21-BDAC-44DEF9361D1B} [2011.04.26 18:45:23 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{62042D88-21B2-49D2-9B41-BCCA7ED72F19} [2011.04.25 17:23:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\iTunes [2011.04.25 17:22:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2011.04.25 17:22:44 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2011.04.25 17:19:59 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2011.04.25 17:19:30 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011.04.25 13:48:05 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{23A5F032-A21F-4F28-85D9-A4FE4C85642A} [2011.04.24 12:03:27 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{AFD43F2C-5F4F-495F-898D-F66F7301E02B} [2011.04.23 22:03:20 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{6CE53D7B-F97B-408C-B5FC-386964457F1B} [2011.04.23 00:20:31 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{1AE88077-B54F-49FA-B952-20C02E148367} [2011.04.22 12:20:07 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{EA904536-19B8-4BA0-A089-F1BB29F222EB} [2011.04.21 16:51:26 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{E8790765-5B89-44CD-AB59-0A1C66CE799C} [2011.04.20 19:33:05 | 000,124,016 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mdm.sys [2011.04.20 19:33:05 | 000,123,504 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039unic.sys [2011.04.20 19:33:05 | 000,117,872 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mgmt.sys [2011.04.20 19:33:05 | 000,113,904 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039obex.sys [2011.04.20 19:33:05 | 000,098,672 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039bus.sys [2011.04.20 19:33:05 | 000,025,456 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039nd5.sys [2011.04.20 19:33:05 | 000,014,960 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mdfl.sys [2011.04.20 19:33:05 | 000,012,528 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cmnt.sys [2011.04.20 19:33:05 | 000,012,528 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cm.sys [2011.04.20 19:33:05 | 000,012,400 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039whnt.sys [2011.04.20 19:33:05 | 000,012,400 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039wh.sys [2011.04.20 19:33:05 | 000,010,992 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cr.sys [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Sony Ericsson [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson [2011.04.20 13:21:45 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{A93F3534-7BB5-402A-8155-74318E533724} [2011.04.19 18:10:18 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{845A209A-BC21-4777-9122-6FD7E4A91BAF} [2011.04.19 17:34:37 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011.04.19 17:34:37 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011.04.19 17:34:37 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011.04.19 17:34:37 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.04.19 17:34:36 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.04.19 17:34:36 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011.04.19 17:34:36 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011.04.19 17:34:36 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011.04.19 17:34:35 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011.04.19 17:34:35 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011.04.19 17:34:35 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011.04.19 17:34:35 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011.04.19 17:34:35 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.04.19 17:34:35 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011.04.19 17:34:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011.04.19 17:34:35 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011.04.19 17:34:35 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011.04.19 17:34:34 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011.04.19 17:34:34 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011.04.19 17:34:34 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011.04.19 17:34:34 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011.04.19 17:34:34 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011.04.19 17:34:33 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011.04.19 17:34:33 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011.04.19 17:34:33 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011.04.19 17:34:32 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.04.19 17:34:32 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011.04.19 17:34:32 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011.04.19 17:34:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011.04.19 17:34:32 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011.04.19 17:34:32 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011.04.19 17:34:31 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.04.19 17:34:31 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011.04.19 17:34:31 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011.04.19 17:34:31 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011.04.19 17:34:31 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011.04.19 17:34:31 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011.04.19 17:34:31 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011.04.19 17:34:31 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011.04.16 00:30:31 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011.04.15 17:50:29 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2011.04.15 17:50:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2011.04.15 17:50:13 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll [2011.04.15 17:50:13 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll [2011.04.15 17:50:03 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011.04.15 17:49:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe [2011.04.11 10:37:58 | 000,000,000 | ---D | C] -- C:\divx [2011.04.10 18:37:46 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011.04.10 18:37:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2011.04.10 18:37:40 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Roaming\Real [2011.04.10 18:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\eRightSoft [2011.04.10 17:59:57 | 000,000,000 | ---D | C] -- C:\OutputFolder [2011.04.07 17:15:22 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Roaming\DonationCoder [2011.04.07 17:15:21 | 000,000,000 | ---D | C] -- C:\Users\Timo\Documents\DonationCoder [2011.04.06 16:20:16 | 000,197,920 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll [2011.04.06 16:20:16 | 000,107,808 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe [2011.04.06 16:20:16 | 000,091,424 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll [2011.04.06 16:20:16 | 000,075,040 | ---- | C] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll ========== Files - Modified Within 30 Days ========== [2011.05.02 20:56:14 | 000,002,097 | ---- | M] () -- C:\Users\Timo\Desktop\hjtscanlist.zip [2011.05.02 20:52:27 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Timo\Desktop\OTL.exe [2011.05.02 20:48:19 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011.05.02 20:48:19 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011.05.02 20:48:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.05.02 20:48:10 | 3186,659,328 | -HS- | M] () -- C:\hiberfil.sys [2011.05.02 16:58:13 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011.05.01 23:31:53 | 000,056,832 | ---- | M] () -- C:\Users\Timo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.05.01 22:59:09 | 000,000,764 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011.04.26 22:37:39 | 000,002,593 | ---- | M] () -- C:\Users\Timo\Desktop\Microsoft Office Excel 2007.lnk [2011.04.25 19:43:51 | 000,002,591 | ---- | M] () -- C:\Users\Timo\Desktop\Microsoft Office Word 2007.lnk [2011.04.25 17:23:50 | 000,001,624 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk [2011.04.20 19:37:59 | 000,745,254 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.04.20 19:37:58 | 000,794,826 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.04.20 19:37:58 | 000,193,608 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.04.20 19:37:58 | 000,161,784 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.04.19 17:34:53 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat [2011.04.19 17:34:53 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat [2011.04.19 17:34:37 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011.04.19 17:34:37 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011.04.19 17:34:37 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011.04.19 17:34:37 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.04.19 17:34:36 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.04.19 17:34:36 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011.04.19 17:34:36 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011.04.19 17:34:36 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011.04.19 17:34:35 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011.04.19 17:34:35 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011.04.19 17:34:35 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011.04.19 17:34:35 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011.04.19 17:34:35 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.04.19 17:34:35 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011.04.19 17:34:35 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011.04.19 17:34:35 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011.04.19 17:34:35 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf [2011.04.19 17:34:35 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011.04.19 17:34:34 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011.04.19 17:34:34 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011.04.19 17:34:34 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011.04.19 17:34:34 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011.04.19 17:34:34 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011.04.19 17:34:33 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011.04.19 17:34:33 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011.04.19 17:34:33 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011.04.19 17:34:32 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.04.19 17:34:32 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011.04.19 17:34:32 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011.04.19 17:34:32 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011.04.19 17:34:32 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011.04.19 17:34:32 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011.04.19 17:34:31 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.04.19 17:34:31 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011.04.19 17:34:31 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011.04.19 17:34:31 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011.04.19 17:34:31 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011.04.19 17:34:31 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011.04.19 17:34:31 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011.04.19 17:34:31 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011.04.16 13:51:33 | 000,403,848 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011.04.13 17:24:10 | 000,000,447 | ---- | M] () -- C:\Users\Timo\Desktop\Schule - Verknüpfung.lnk [2011.04.11 10:30:46 | 000,002,032 | ---- | M] () -- C:\Users\Timo\AppData\Local\d3d9caps.dat [2011.04.09 18:13:09 | 000,005,146 | ---- | M] () -- C:\Users\Timo\.recently-used.xbel [2011.04.07 21:38:48 | 000,000,011 | R--- | M] () -- C:\Windows\amunres.lsl [2011.04.07 17:15:22 | 000,000,058 | ---- | M] () -- C:\Users\Timo\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat [2011.04.06 16:20:16 | 000,197,920 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll [2011.04.06 16:20:16 | 000,107,808 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe [2011.04.06 16:20:16 | 000,091,424 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll [2011.04.06 16:20:16 | 000,075,040 | ---- | M] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll ========== Files Created - No Company Name ========== [2011.05.02 20:56:29 | 000,030,259 | ---- | C] () -- C:\Users\Timo\Desktop\hjtscanlist.bat [2011.05.02 20:56:08 | 000,002,097 | ---- | C] () -- C:\Users\Timo\Desktop\hjtscanlist.zip [2011.05.02 16:58:13 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011.04.25 17:23:50 | 000,001,624 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk [2011.04.19 17:34:35 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf [2011.04.13 17:24:10 | 000,000,447 | ---- | C] () -- C:\Users\Timo\Desktop\Schule - Verknüpfung.lnk [2011.04.09 18:13:09 | 000,005,146 | ---- | C] () -- C:\Users\Timo\.recently-used.xbel [2011.04.07 21:38:48 | 000,000,011 | R--- | C] () -- C:\Windows\amunres.lsl [2011.04.07 17:15:22 | 000,000,058 | ---- | C] () -- C:\Users\Timo\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat [2011.01.10 23:04:20 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll [2011.01.10 17:30:47 | 000,010,231 | ---- | C] () -- C:\Users\Timo\AppData\Roaming\SmarThruOptions.xml [2011.01.10 17:30:35 | 000,036,864 | ---- | C] () -- C:\Windows\System32\SvcMan.exe [2011.01.10 17:30:03 | 000,172,032 | ---- | C] () -- C:\Windows\System32\SecSNMP.dll [2011.01.10 17:29:46 | 000,000,124 | ---- | C] () -- C:\Windows\Readiris.ini [2011.01.10 17:29:42 | 000,023,040 | ---- | C] () -- C:\Windows\System32\irisco32.dll [2011.01.10 17:27:03 | 000,458,752 | ---- | C] () -- C:\Windows\ssndii.exe [2011.01.10 17:22:57 | 000,086,016 | R--- | C] () -- C:\Windows\WiaInst.exe [2011.01.10 17:21:48 | 000,217,088 | R--- | C] () -- C:\Windows\System32\ssminidriver.dll [2011.01.10 17:21:48 | 000,027,136 | R--- | C] () -- C:\Windows\System32\ssimgfilter.dll [2011.01.10 17:21:48 | 000,011,264 | R--- | C] () -- C:\Windows\System32\sssegfilter.dll [2011.01.10 17:21:48 | 000,010,752 | R--- | C] () -- C:\Windows\System32\sserrhandler.dll [2011.01.10 17:20:21 | 000,022,723 | ---- | C] () -- C:\Windows\System32\cx21sl3.dll [2010.11.29 23:06:13 | 000,000,079 | -HS- | C] () -- C:\ProgramData\.zreglib [2010.11.29 22:06:15 | 000,017,408 | ---- | C] () -- C:\Users\Timo\AppData\Local\WebpageIcons.db [2010.11.29 20:10:47 | 000,056,832 | ---- | C] () -- C:\Users\Timo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.11.29 18:25:12 | 000,026,624 | ---- | C] () -- C:\Windows\System32\spd__l.dll [2010.11.29 18:25:11 | 000,283,136 | ---- | C] () -- C:\Windows\System32\DscPnt.dll [2010.11.29 18:25:11 | 000,259,888 | ---- | C] () -- C:\Windows\SUPDRun.exe [2010.11.29 18:25:11 | 000,151,552 | ---- | C] () -- C:\Windows\System32\spd__ci.exe [2010.11.29 13:59:13 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll [2010.11.25 20:56:16 | 000,524,288 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2010.11.25 20:56:16 | 000,139,264 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2010.11.25 16:02:30 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010.11.25 16:02:00 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2010.11.25 16:02:00 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2010.11.25 14:09:21 | 000,002,032 | ---- | C] () -- C:\Users\Timo\AppData\Local\d3d9caps.dat [2010.11.25 08:24:42 | 000,000,000 | ---- | C] () -- C:\Windows\VAIOUpdt.INI [2009.08.03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009.08.03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe [2009.05.14 23:22:08 | 000,011,264 | ---- | C] () -- C:\Windows\System32\atimuixx.dll [2008.10.29 18:13:34 | 000,180,720 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2008.07.10 21:07:09 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1511.dll [2008.07.10 21:07:08 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat [2008.07.10 21:07:08 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2008.07.10 21:07:08 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe [2008.07.10 21:04:31 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2008.07.10 11:22:18 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2008.01.21 09:15:58 | 000,794,826 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2008.01.21 09:15:58 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2008.01.21 09:15:58 | 000,193,608 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2008.01.21 09:15:58 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006.11.02 14:47:37 | 000,403,848 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006.11.02 12:33:01 | 000,745,254 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006.11.02 12:33:01 | 000,161,784 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2002.09.18 00:45:00 | 000,119,808 | ---- | C] () -- C:\Windows\lsb_un20.exe ========== Alternate Data Streams ========== @Alternate Data Stream - 728 bytes -> C:\Users\Timo\Documents\Französisch.eml:OECustomProperty < End of report > |
|
02.05.2011, 20:05
| #8 |
| | Msn verschickt Spam! Nun noch das von Schritt Nummer 3: : Code:
ATTFilter $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
º º
hjtscanlist v2.0
º º
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
Microsoft Windows [Version 6.0.6002]
C:
02.05.2011 20:48 C:\System Volume Information --------- 24576
C:\hiberfil.sys ---------
C:\pagefile.sys ---------
02.05.2011 16:58 C:\ProgramData --------- 12288
02.05.2011 16:58 C:\Program Files --------- 32768
01.05.2011 22:59 C:\Windows --------- 24576
26.04.2011 18:43 C:\Config.Msi --------- 0
11.04.2011 10:38 C:\divx --------- 0
10.04.2011 17:59 C:\OutputFolder --------- 0
25.01.2011 19:15 C:\Error.log --------- 638
15.01.2011 01:06 C:\Dev-Cpp --------- 4096
12.01.2011 15:28 C:\Downloads --------- 0
31.12.2010 03:05 C:\IO.SYS --------- 0
31.12.2010 03:05 C:\MSDOS.SYS --------- 0
26.11.2010 11:58 C:\Update --------- 0
26.11.2010 10:07 C:\cc_20101126_090719.reg --------- 73708
25.11.2010 16:33 C:\MSOCache --------- 0
25.11.2010 16:28 C:\Boot --------- 4096
25.11.2010 14:11 C:\$Recycle.Bin --------- 4096
25.11.2010 14:09 C:\Users --------- 4096
25.11.2010 14:05 C:\Programme --------- 0
25.11.2010 14:05 C:\Dokumente und Einstellungen --------- 0
25.11.2010 08:24 C:\Documentation --------- 0
25.11.2010 08:01 C:\Installer_Setup.log --------- 187
25.11.2010 07:41 C:\Intel --------- 0
11.04.2009 00:36 C:\bootmgr --------- 333257
10.07.2008 20:58 C:\BOOTSECT.BAK --------- 8192
21.01.2008 04:32 C:\PerfLogs --------- 0
02.11.2006 15:02 C:\Documents and Settings --------- 0
18.09.2006 23:43 C:\config.sys --------- 10
18.09.2006 23:43 C:\autoexec.bat --------- 24
----------------------------------------
C:\Windows
02.05.2011 20:51 C:\Windows\WindowsUpdate.log --------- 1454512
02.05.2011 20:48 C:\Windows\bootstat.dat --------- 67584
07.04.2011 21:38 C:\Windows\amunres.lsl --------- 11
10.01.2011 23:27 C:\Windows\win.ini --------- 475
10.01.2011 17:29 C:\Windows\Readiris.ini --------- 124
25.11.2010 08:24 C:\Windows\VAIOUpdt.INI --------- 0
25.11.2010 07:49 C:\Windows\csup.txt --------- 12
10.11.2010 03:28 C:\Windows\WLXPGSS.SCR --------- 301936
09.08.2010 04:03 C:\Windows\SUPDRun.exe --------- 259888
11.04.2009 00:27 C:\Windows\explorer.exe --------- 2926592
29.12.2008 15:35 C:\Windows\atiogl.xml --------- 15485
10.07.2008 14:45 C:\Windows\ocsetup_install_OEMHelpCustomization.etl --------- 29425664
10.07.2008 14:45 C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.perf --------- 196608
10.07.2008 14:45 C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.dpx --------- 65536
10.07.2008 11:39 C:\Windows\DIFxAPI.dll --------- 319456
10.07.2008 11:39 C:\Windows\HideWin.exe --------- 315392
10.07.2008 11:22 C:\Windows\ativpsrm.bin --------- 0
03.07.2008 08:06 C:\Windows\SkyTel.exe --------- 1826816
03.07.2008 08:06 C:\Windows\RtlUpd.exe --------- 1196032
03.07.2008 08:06 C:\Windows\RTKAUDIOSERVICE.EXE --------- 104992
03.07.2008 08:06 C:\Windows\RtHDVCpl.exe --------- 6295552
03.07.2008 08:05 C:\Windows\USetup.iss --------- 553
03.07.2008 08:05 C:\Windows\RtlExUpd.dll --------- 520192
28.06.2008 02:33 C:\Windows\snymsico.dll --------- 626688
21.01.2008 04:43 C:\Windows\WindowsShell.Manifest --------- 749
21.01.2008 04:24 C:\Windows\regedit.exe --------- 134656
21.01.2008 04:24 C:\Windows\bfsvc.exe --------- 58880
21.01.2008 04:24 C:\Windows\fveupdate.exe --------- 13312
21.01.2008 04:24 C:\Windows\HelpPane.exe --------- 498176
21.01.2008 04:23 C:\Windows\notepad.exe --------- 151040
15.03.2007 12:07 C:\Windows\ssndii.exe --------- 458752
26.02.2007 03:44 C:\Windows\WiaInst.exe --------- 86016
17.01.2007 11:23 C:\Windows\Dr. Printer Icon.ico --------- 11502
02.11.2006 14:35 C:\Windows\WMSysPr9.prx --------- 316640
02.11.2006 14:34 C:\Windows\twunk_16.exe --------- 49680
02.11.2006 14:34 C:\Windows\twain_32.dll --------- 50688
02.11.2006 14:34 C:\Windows\twunk_32.exe --------- 31232
02.11.2006 14:34 C:\Windows\twain.dll --------- 94784
02.11.2006 11:45 C:\Windows\winhlp32.exe --------- 9216
02.11.2006 11:45 C:\Windows\hh.exe --------- 14848
02.11.2006 09:46 C:\Windows\mib.bin --------- 43131
19.09.2006 13:41 C:\Windows\HomePremium.xml --------- 8328
18.09.2006 23:46 C:\Windows\system.ini --------- 219
18.09.2006 23:43 C:\Windows\_default.pif --------- 707
18.09.2006 23:43 C:\Windows\winhelp.exe --------- 256192
18.09.2006 23:30 C:\Windows\msdfmap.ini --------- 1405
18.09.2002 00:45 C:\Windows\lsb_un20.exe --------- 119808
17.12.1999 11:13 C:\Windows\unvise32.exe --------- 86016
----------------------------------------
C:\Windows\System
02.11.2006 14:34 C:\Windows\System\mciseq.drv --------- 25264
02.11.2006 14:34 C:\Windows\System\mciwave.drv --------- 28160
02.11.2006 14:34 C:\Windows\System\avifile.dll --------- 109456
02.11.2006 14:34 C:\Windows\System\avicap.dll --------- 69584
02.11.2006 14:34 C:\Windows\System\mciavi.drv --------- 73376
02.11.2006 14:34 C:\Windows\System\msvideo.dll --------- 126912
02.11.2006 09:10 C:\Windows\System\OLESVR.DLL --------- 24064
02.11.2006 09:10 C:\Windows\System\WFWNET.DRV --------- 12704
02.11.2006 09:10 C:\Windows\System\COMMDLG.DLL --------- 32816
02.11.2006 09:10 C:\Windows\System\TIMER.DRV --------- 4048
02.11.2006 09:10 C:\Windows\System\MMSYSTEM.DLL --------- 68992
02.11.2006 09:10 C:\Windows\System\mmtask.tsk --------- 1152
02.11.2006 09:10 C:\Windows\System\mouse.drv --------- 2032
02.11.2006 09:10 C:\Windows\System\vga.drv --------- 2176
02.11.2006 09:10 C:\Windows\System\sound.drv --------- 1744
02.11.2006 09:10 C:\Windows\System\keyboard.drv --------- 2000
02.11.2006 09:10 C:\Windows\System\SHELL.DLL --------- 5120
02.11.2006 09:10 C:\Windows\System\system.drv --------- 3360
18.09.2006 23:43 C:\Windows\System\ver.dll --------- 9008
18.09.2006 23:43 C:\Windows\System\olecli.dll --------- 82944
18.09.2006 23:43 C:\Windows\System\lzexpand.dll --------- 9936
18.09.2006 23:35 C:\Windows\System\stdole.tlb --------- 5532
----------------------------------------
C:\Windows\System32
02.05.2011 20:48 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 --------- 3616
02.05.2011 20:48 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 --------- 3616
02.05.2011 20:47 C:\Windows\system32\drivers --------- 65536
27.04.2011 17:20 C:\Windows\system32\catroot --------- 4096
27.04.2011 17:20 C:\Windows\system32\catroot2 --------- 4096
20.04.2011 19:37 C:\Windows\system32\perfh009.dat --------- 745254
20.04.2011 19:37 C:\Windows\system32\perfc009.dat --------- 161784
20.04.2011 19:37 C:\Windows\system32\perfh007.dat --------- 794826
20.04.2011 19:37 C:\Windows\system32\perfc007.dat --------- 193608
20.04.2011 19:37 C:\Windows\system32\PerfStringBackup.INI --------- 1894354
19.04.2011 18:05 C:\Windows\system32\de-DE --------- 327680
19.04.2011 18:05 C:\Windows\system32\migration --------- 4096
19.04.2011 18:05 C:\Windows\system32\wbem --------- 65536
19.04.2011 18:05 C:\Windows\system32\en-US --------- 12288
19.04.2011 17:34 C:\Windows\system32\icrav03.rat --------- 8798
19.04.2011 17:34 C:\Windows\system32\ticrf.rat --------- 1988
19.04.2011 17:34 C:\Windows\system32\msls31.dll --------- 161792
19.04.2011 17:34 C:\Windows\system32\wininet.dll --------- 1126912
19.04.2011 17:34 C:\Windows\system32\jsproxy.dll --------- 65024
19.04.2011 17:34 C:\Windows\system32\iertutil.dll --------- 1785344
19.04.2011 17:34 C:\Windows\system32\msrating.dll --------- 162304
19.04.2011 17:34 C:\Windows\system32\urlmon.dll --------- 1102336
19.04.2011 17:34 C:\Windows\system32\RegisterIEPKEYs.exe --------- 74752
19.04.2011 17:34 C:\Windows\system32\SetIEInstalledDate.exe --------- 76800
19.04.2011 17:34 C:\Windows\system32\mshtmler.dll --------- 48640
19.04.2011 17:34 C:\Windows\system32\iesysprep.dll --------- 86528
19.04.2011 17:34 C:\Windows\system32\ieui.dll --------- 176640
19.04.2011 17:34 C:\Windows\system32\ieframe.dll --------- 9702400
19.04.2011 17:34 C:\Windows\system32\tdc.ocx --------- 63488
19.04.2011 17:34 C:\Windows\system32\html.iec --------- 367104
19.04.2011 17:34 C:\Windows\system32\dxtrans.dll --------- 223232
19.04.2011 17:34 C:\Windows\system32\dxtmsft.dll --------- 353792
19.04.2011 17:34 C:\Windows\system32\ieapfltr.dat --------- 3695416
19.04.2011 17:34 C:\Windows\system32\ieapfltr.dll --------- 434176
19.04.2011 17:34 C:\Windows\system32\icardie.dll --------- 66048
19.04.2011 17:34 C:\Windows\system32\ie4uinit.exe --------- 74240
19.04.2011 17:34 C:\Windows\system32\iernonce.dll --------- 31744
19.04.2011 17:34 C:\Windows\system32\ieuinit.inf --------- 72822
19.04.2011 17:34 C:\Windows\system32\iesetup.dll --------- 74752
19.04.2011 17:34 C:\Windows\system32\url.dll --------- 231936
19.04.2011 17:34 C:\Windows\system32\iedkcs32.dll --------- 353584
19.04.2011 17:34 C:\Windows\system32\inetcpl.cpl --------- 1427456
19.04.2011 17:34 C:\Windows\system32\webcheck.dll --------- 203776
19.04.2011 17:34 C:\Windows\system32\licmgr10.dll --------- 23552
19.04.2011 17:34 C:\Windows\system32\inseng.dll --------- 78848
19.04.2011 17:34 C:\Windows\system32\mshtmled.dll --------- 72704
19.04.2011 17:34 C:\Windows\system32\wextract.exe --------- 152064
19.04.2011 17:34 C:\Windows\system32\iexpress.exe --------- 150528
19.04.2011 17:34 C:\Windows\system32\msfeeds.dll --------- 580608
19.04.2011 17:34 C:\Windows\system32\vbscript.dll --------- 420864
19.04.2011 17:34 C:\Windows\system32\mshtml.dll --------- 12268544
19.04.2011 17:34 C:\Windows\system32\mshtml.tlb --------- 2382848
19.04.2011 17:34 C:\Windows\system32\ieUnatt.exe --------- 142848
19.04.2011 17:34 C:\Windows\system32\occache.dll --------- 123392
19.04.2011 17:34 C:\Windows\system32\pngfilt.dll --------- 54272
19.04.2011 17:34 C:\Windows\system32\mshta.exe --------- 11776
19.04.2011 17:34 C:\Windows\system32\admparse.dll --------- 101888
19.04.2011 17:34 C:\Windows\system32\ieaksie.dll --------- 227840
19.04.2011 17:34 C:\Windows\system32\ieakui.dll --------- 163840
19.04.2011 17:34 C:\Windows\system32\jscript9.dll --------- 1797632
19.04.2011 17:34 C:\Windows\system32\jscript.dll --------- 716800
19.04.2011 17:34 C:\Windows\system32\imgutil.dll --------- 35840
19.04.2011 17:34 C:\Windows\system32\advpack.dll --------- 114176
19.04.2011 17:34 C:\Windows\system32\iepeers.dll --------- 118784
19.04.2011 17:34 C:\Windows\system32\msfeedsbs.dll --------- 41472
19.04.2011 17:34 C:\Windows\system32\msfeedssync.exe --------- 10752
19.04.2011 17:34 C:\Windows\system32\IEAdvpack.dll --------- 110592
19.04.2011 17:34 C:\Windows\system32\ieakeng.dll --------- 130560
18.04.2011 15:46 C:\Windows\system32\mrt.exe --------- 42181064
16.04.2011 13:51 C:\Windows\system32\FNTCACHE.DAT --------- 403848
11.04.2011 10:29 C:\Windows\system32\Tasks --------- 4096
06.04.2011 16:20 C:\Windows\system32\dnssd.dll --------- 91424
06.04.2011 16:20 C:\Windows\system32\dnssdX.dll --------- 197920
06.04.2011 16:20 C:\Windows\system32\jdns_sd.dll --------- 75040
06.04.2011 16:20 C:\Windows\system32\dns-sd.exe --------- 107808
15.03.2011 22:39 C:\Windows\system32\jupdate-1.6.0_24-b07.log --------- 3305
14.03.2011 15:57 C:\Windows\system32\TubeFinder.exe --------- 307200
13.03.2011 14:00 C:\Windows\system32\config --------- 12288
13.03.2011 14:00 C:\Windows\system32\Msdtc --------- 4096
13.03.2011 14:00 C:\Windows\system32\spool --------- 4096
12.03.2011 23:55 C:\Windows\system32\XpsPrint.dll --------- 876032
10.03.2011 19:03 C:\Windows\system32\mfc42u.dll --------- 1162240
10.03.2011 19:03 C:\Windows\system32\mfc42.dll --------- 1136640
03.03.2011 17:42 C:\Windows\system32\inetcomm.dll --------- 739328
03.03.2011 17:40 C:\Windows\system32\Apphlpdm.dll --------- 28672
03.03.2011 15:35 C:\Windows\system32\GameUXLegacyGDFs.dll --------- 4240384
03.03.2011 15:25 C:\Windows\system32\win32k.sys --------- 2041856
02.03.2011 17:44 C:\Windows\system32\dnsrslvr.dll --------- 86528
02.03.2011 17:44 C:\Windows\system32\dnsapi.dll --------- 168448
22.02.2011 16:13 C:\Windows\system32\XpsGdiConverter.dll --------- 288768
22.02.2011 15:33 C:\Windows\system32\DWrite.dll --------- 1068544
22.02.2011 15:33 C:\Windows\system32\FntCache.dll --------- 797696
18.02.2011 17:36 C:\Windows\system32\usbaaplrc.dll --------- 4184352
16.02.2011 18:16 C:\Windows\system32\atmlib.dll --------- 34304
16.02.2011 16:02 C:\Windows\system32\atmfd.dll --------- 292864
02.02.2011 22:40 C:\Windows\system32\javaws.exe --------- 157472
02.02.2011 22:40 C:\Windows\system32\javaw.exe --------- 145184
02.02.2011 22:40 C:\Windows\system32\java.exe --------- 145184
02.02.2011 22:40 C:\Windows\system32\deployJava1.dll --------- 472808
02.02.2011 18:11 C:\Windows\system32\MpSigStub.exe --------- 222080
----------------------------------------
C:\Windows\Prefetch
----------------------------------------
C:\Windows\Tasks
02.05.2011 20:48 C:\Windows\Tasks\SA.DAT --------- 6
02.05.2011 20:47 C:\Windows\Tasks\SCHEDLGU.TXT --------- 32554
----------------------------------------
C:\Windows\Temp
----------------------------------------
C:\Users\Timo\AppData\Local\Temp
02.05.2011 20:53 C:\Users\Timo\AppData\Local\Temp\jusched.log --------- 401
02.05.2011 20:49 C:\Users\Timo\AppData\Local\Temp\LuUpdater.log --------- 0
02.05.2011 20:49 C:\Users\Timo\AppData\Local\Temp\div9A0.tmp --------- 0
02.05.2011 20:48 C:\Users\Timo\AppData\Local\Temp\AdobeARM.log --------- 815
02.05.2011 20:48 C:\Users\Timo\AppData\Local\Temp\WPDNSE --------- 0
02.05.2011 20:48 C:\Users\Timo\AppData\Local\Temp\Adobe --------- 0
02.05.2011 20:48 C:\Users\Timo\AppData\Local\Temp\Timo.bmp --------- 31832
02.05.2011 15:11 C:\Users\Timo\AppData\Local\Temp\History --------- 0
02.05.2011 15:11 C:\Users\Timo\AppData\Local\Temp\Cookies --------- 0
02.05.2011 15:11 C:\Users\Timo\AppData\Local\Temp\Temporary Internet Files --------- 0
01.05.2011 22:59 C:\Users\Timo\AppData\Local\Temp\Low --------- 0
----------------------------------------
C:\Program Files
02.05.2011 16:58 C:\Program Files\Malwarebytes' Anti-Malware --------- 4096
01.05.2011 22:59 C:\Program Files\CCleaner --------- 0
30.04.2011 13:18 C:\Program Files\Mozilla Firefox --------- 24576
27.04.2011 20:00 C:\Program Files\Free FLV Converter --------- 8192
25.04.2011 17:23 C:\Program Files\iTunes --------- 8192
25.04.2011 17:22 C:\Program Files\iPod --------- 0
25.04.2011 17:20 C:\Program Files\Bonjour --------- 4096
21.04.2011 21:57 C:\Program Files\Microsoft Silverlight --------- 4096
20.04.2011 19:32 C:\Program Files\InstallShield Installation Information --------- 20480
20.04.2011 19:32 C:\Program Files\Sony Ericsson --------- 0
19.04.2011 18:05 C:\Program Files\Internet Explorer --------- 4096
16.04.2011 13:48 C:\Program Files\Windows Mail --------- 4096
11.04.2011 10:32 C:\Program Files\DivX --------- 4096
11.04.2011 10:29 C:\Program Files\Real --------- 0
11.04.2011 10:29 C:\Program Files\Common Files --------- 8192
11.04.2011 10:28 C:\Program Files\eRightSoft --------- 0
03.04.2011 16:37 C:\Program Files\Microsoft SQL Server --------- 4096
28.03.2011 17:38 C:\Program Files\DVDVideoSoft --------- 0
26.03.2011 11:58 C:\Program Files\Microsoft --------- 0
20.03.2011 19:47 C:\Program Files\Windows Live --------- 4096
15.03.2011 22:39 C:\Program Files\Java --------- 4096
10.03.2011 18:53 C:\Program Files\Application Updater --------- 0
10.03.2011 18:53 C:\Program Files\pdfforge Toolbar --------- 0
01.02.2011 22:58 C:\Program Files\Freemake --------- 0
29.01.2011 13:48 C:\Program Files\Tersus Visual Programming Platform --------- 4096
26.01.2011 21:30 C:\Program Files\FreeTime --------- 0
25.01.2011 19:18 C:\Program Files\QuickMediaConverter --------- 0
15.01.2011 00:49 C:\Program Files\Microsoft Visual Studio 9.0 --------- 0
15.01.2011 00:42 C:\Program Files\Microsoft Synchronization Services --------- 0
15.01.2011 00:42 C:\Program Files\Microsoft SQL Server Compact Edition --------- 0
15.01.2011 00:38 C:\Program Files\Microsoft Visual Studio 10.0 --------- 4096
15.01.2011 00:36 C:\Program Files\Microsoft Help Viewer --------- 0
15.01.2011 00:36 C:\Program Files\Microsoft SDKs --------- 0
15.01.2011 00:36 C:\Program Files\MSBuild --------- 0
10.01.2011 23:09 C:\Program Files\Riva --------- 0
10.01.2011 23:04 C:\Program Files\AviSynth 2.5 --------- 0
10.01.2011 17:43 C:\Program Files\VideoLAN --------- 0
10.01.2011 17:30 C:\Program Files\SmarThru 4 --------- 28672
10.01.2011 17:29 C:\Program Files\Readiris10 --------- 40960
10.01.2011 17:20 C:\Program Files\Samsung --------- 0
08.01.2011 12:56 C:\Program Files\AVS4YOU --------- 0
08.01.2011 12:49 C:\Program Files\ALLCapture 3.0 Testversion --------- 8192
08.01.2011 12:43 C:\Program Files\Mainconcept --------- 0
08.01.2011 12:42 C:\Program Files\ProgDVB --------- 0
07.01.2011 19:43 C:\Program Files\SlySoft --------- 0
02.01.2011 17:30 C:\Program Files\ANNO 1602 K”nigs-Edition --------- 4096
02.01.2011 17:30 C:\Program Files\directx --------- 0
30.12.2010 20:38 C:\Program Files\Adobe --------- 0
14.12.2010 22:37 C:\Program Files\QuickTime --------- 4096
06.12.2010 18:34 C:\Program Files\Google --------- 4096
29.11.2010 22:03 C:\Program Files\Zattoo4 --------- 4096
29.11.2010 18:57 C:\Program Files\Apple Software Update --------- 4096
29.11.2010 18:51 C:\Program Files\GIMP-2.0 --------- 0
29.11.2010 18:34 C:\Program Files\Spamihilator --------- 8192
29.11.2010 18:26 C:\Program Files\Samsung Printers --------- 0
29.11.2010 13:59 C:\Program Files\PDFCreator --------- 4096
26.11.2010 13:22 C:\Program Files\Logitech --------- 0
26.11.2010 12:14 C:\Program Files\xp-AntiSpy --------- 4096
26.11.2010 11:56 C:\Program Files\Sony --------- 12288
26.11.2010 11:13 C:\Program Files\Cisco --------- 0
26.11.2010 11:10 C:\Program Files\ATI Technologies --------- 0
25.11.2010 23:53 C:\Program Files\Windows Portable Devices --------- 0
25.11.2010 20:56 C:\Program Files\Xvid --------- 4096
25.11.2010 20:54 C:\Program Files\WinRAR --------- 4096
25.11.2010 20:35 C:\Program Files\Windows Media Player --------- 4096
25.11.2010 20:35 C:\Program Files\Movie Maker --------- 4096
25.11.2010 17:35 C:\Program Files\Microsoft.NET --------- 4096
25.11.2010 16:53 C:\Program Files\Microsoft Works --------- 4096
25.11.2010 16:41 C:\Program Files\Microsoft Office --------- 4096
25.11.2010 16:20 C:\Program Files\Windows Calendar --------- 0
25.11.2010 16:20 C:\Program Files\Windows Sidebar --------- 4096
25.11.2010 16:20 C:\Program Files\Windows Collaboration --------- 4096
25.11.2010 16:20 C:\Program Files\Windows Journal --------- 4096
25.11.2010 16:20 C:\Program Files\Windows Photo Gallery --------- 4096
25.11.2010 16:20 C:\Program Files\Windows Defender --------- 4096
25.11.2010 15:48 C:\Program Files\Symantec --------- 0
25.11.2010 15:48 C:\Program Files\Norton AntiVirus --------- 0
25.11.2010 15:46 C:\Program Files\NortonInstaller --------- 0
25.11.2010 14:05 C:\Program Files\Gemeinsame Dateien --------- 0
25.11.2010 14:05 C:\Program Files\Windows NT --------- 4096
25.11.2010 08:29 C:\Program Files\Intel --------- 0
25.11.2010 08:28 C:\Program Files\InterVideo --------- 0
25.11.2010 08:24 C:\Program Files\ArcSoft --------- 0
25.11.2010 08:16 C:\Program Files\Skype --------- 0
25.11.2010 08:16 C:\Program Files\Roxio --------- 4096
25.11.2010 07:59 C:\Program Files\Google BAE --------- 0
25.11.2010 07:58 C:\Program Files\ATI --------- 0
25.11.2010 07:54 C:\Program Files\Big Fish Games Spiel-Suite --------- 4096
25.11.2010 07:53 C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites --------- 8192
10.07.2008 11:41 C:\Program Files\Synaptics --------- 0
10.07.2008 11:41 C:\Program Files\CONEXANT --------- 0
10.07.2008 11:39 C:\Program Files\Realtek --------- 0
21.01.2008 04:43 C:\Program Files\desktop.ini --------- 174
02.11.2006 15:01 C:\Program Files\Uninstall Information --------- 0
02.11.2006 14:37 C:\Program Files\Microsoft Games --------- 4096
02.11.2006 14:37 C:\Program Files\Reference Assemblies --------- 0
----------------------------------------
C:\ProgramData\..
Timo
Public
Default
desktop.ini
Default User
All Users
----------------------------------------
C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
----------------------------------------
Abbildname PID Sitzungsname Sitz.-Nr. Speichernutzung
========================= ======== ================ =========== ===============
System Idle Process 0 Services 0 24 K
System 4 Services 0 15'364 K
smss.exe 504 Services 0 772 K
csrss.exe 636 Services 0 6'196 K
wininit.exe 700 Services 0 4'084 K
csrss.exe 712 Console 1 10'376 K
services.exe 744 Services 0 6'968 K
lsass.exe 760 Services 0 2'316 K
lsm.exe 768 Services 0 3'992 K
winlogon.exe 836 Console 1 5'784 K
svchost.exe 960 Services 0 5'820 K
svchost.exe 1020 Services 0 6'808 K
svchost.exe 1056 Services 0 38'192 K
Ati2evxx.exe 1156 Services 0 4'244 K
svchost.exe 1208 Services 0 13'444 K
svchost.exe 1248 Services 0 74'036 K
svchost.exe 1268 Services 0 28'920 K
audiodg.exe 1336 Services 0 17'176 K
svchost.exe 1360 Services 0 4'772 K
SLsvc.exe 1376 Services 0 11'592 K
svchost.exe 1400 Services 0 10'684 K
RTKAUDIOSERVICE.EXE 1496 Services 0 3'136 K
dwm.exe 1684 Console 1 45'656 K
explorer.exe 1716 Console 1 48'316 K
Ati2evxx.exe 1816 Console 1 6'296 K
svchost.exe 1900 Services 0 14'916 K
wlanext.exe 2008 Services 0 14'804 K
spoolsv.exe 316 Services 0 10'560 K
svchost.exe 440 Services 0 15'688 K
taskeng.exe 592 Console 1 10'680 K
AppleMobileDeviceService. 1620 Services 0 6'912 K
ApplicationUpdater.exe 1424 Services 0 3'504 K
mDNSResponder.exe 1896 Services 0 4'976 K
EvtEng.exe 1120 Services 0 15'912 K
iviRegMgr.exe 2080 Services 0 3'312 K
sqlservr.exe 2116 Services 0 1'952 K
sqlservr.exe 2204 Services 0 43'360 K
ccsvchst.exe 2272 Services 0 10'424 K
svchost.exe 2356 Services 0 5'240 K
RegSrvc.exe 2376 Services 0 4'392 K
SeaPort.EXE 2400 Services 0 8'316 K
sqlbrowser.exe 2448 Services 0 3'588 K
sqlwriter.exe 2492 Services 0 7'076 K
svchost.exe 2572 Services 0 6'900 K
SPMService.exe 2608 Services 0 28'544 K
WLIDSVC.EXE 2696 Services 0 8'936 K
SearchIndexer.exe 2732 Services 0 18'376 K
XAudio.exe 2868 Services 0 2'480 K
WLIDSVCM.EXE 2916 Services 0 2'812 K
WUDFHost.exe 3088 Services 0 5'040 K
ccsvchst.exe 3224 Console 1 10'332 K
WmiPrvSE.exe 3332 Services 0 6'132 K
SPMgr.exe 3632 Console 1 4'900 K
taskeng.exe 3680 Console 1 4'908 K
VAIOUpdt.exe 3780 Console 1 7'308 K
MSASCui.exe 1236 Console 1 17'828 K
SynTPEnh.exe 2220 Console 1 6'612 K
ISBMgr.exe 2344 Console 1 5'956 K
taskeng.exe 3608 Services 0 5'508 K
dllhost.exe 3016 Services 0 3'968 K
MOM.exe 4124 Console 1 11'088 K
SetPoint.exe 4220 Console 1 13'228 K
Scan2pc.exe 4336 Console 1 8'700 K
SSMMgr.exe 4352 Console 1 4'812 K
SearchSettings.exe 4384 Console 1 8'656 K
jusched.exe 4608 Console 1 3'720 K
mobsync.exe 4624 Console 1 6'876 K
DivXUpdate.exe 4652 Console 1 14'360 K
iTunesHelper.exe 4696 Console 1 11'924 K
ONENOTEM.EXE 4980 Console 1 700 K
spamihilator.exe 4988 Console 1 4'844 K
KHALMNPR.exe 5016 Console 1 9'716 K
iPodService.exe 5584 Services 0 5'236 K
CCC.exe 5792 Console 1 24'964 K
svchost.exe 1672 Services 0 6'180 K
firefox.exe 1048 Console 1 78'924 K
plugin-container.exe 3524 Console 1 19'432 K
OTL.exe 5528 Console 1 29'020 K
SearchProtocolHost.exe 4720 Services 0 8'704 K
cmd.exe 4900 Console 1 3'032 K
conime.exe 3244 Console 1 3'376 K
notepad.exe 5944 Console 1 4'624 K
notepad.exe 3876 Console 1 7'428 K
dllhost.exe 5188 Console 1 4'176 K
tasklist.exe 5716 Console 1 4'736 K
WmiPrvSE.exe 3592 Services 0 5'800 K
SearchFilterHost.exe 2480 Services 0 4'452 K
***** Ende des Scans 02.05.2011 um 20:58:10.57 ***
: Code:
ATTFilter Activation Assistant for the 2007 Microsoft Office suites Microsoft Corporation 24.11.2010 13.1MB
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 25.04.2011 10.2.159.1
Adobe Flash Player ActiveX Adobe Systems Incorporated 24.11.2010 9.0.124.0
Adobe Reader X (10.0.1) - Deutsch Adobe Systems Incorporated 11.02.2011 114.8MB 10.0.1
ANNO 1602 Königs-Edition 01.01.2011 100.3MB 1.00
Apple Application Support Apple Inc. 24.04.2011 50.5MB 1.5.1
Apple Mobile Device Support Apple Inc. 07.03.2011 21.3MB 3.4.0.25
Apple Software Update Apple Inc. 28.11.2010 2.21MB 2.1.2.120
ArcSoft WebCam Companion 2 ArcSoft 24.11.2010 22.5MB
ATI Catalyst Install Manager ATI Technologies, Inc. 25.11.2010 13.7MB 3.0.710.0
Big Fish Games Spiel-Suite 24.11.2010 160.5MB
Bing Bar Microsoft Corporation 25.03.2011 18.8MB 7.0.609.0
Bonjour Apple Inc. 24.04.2011 1.09MB 2.0.5.0
Browser Address Error Redirector 24.11.2010
CCleaner Piriform 30.04.2011 2.90MB 3.06
Click to Disc Sony Corporation 25.11.2010 67.9MB 1.2.73.04270
Click to Disc Editor Sony Corporation 25.11.2010 185.4MB 2.0.03.04150
Dev-C++ 5 beta 9 release (4.9.9.2) 14.01.2011
DivX-Setup DivX, LLC 10.04.2011 2.24MB 2.4.1.4
Free Audio CD Burner version 1.4.7 DVDVideoSoft Limited. 27.03.2011 3.04MB
Free FLV Converter V 6.96.0 Koyote Soft 26.04.2011 11.5MB 6.96.0.0
Free YouTube to MP3 Converter version 3.9.35.324 DVDVideoSoft Limited. 27.03.2011 3.71MB
Freemake Video Converter Version 2.0.1 Ellora Assets Corporation 31.01.2011 39.6MB 2.0.1
GIMP 2.6.11 The GIMP Team 28.11.2010 109.0MB 2.6.11
Google Chrome Google Inc. 05.12.2010 156.2MB 8.0.552.215
Google Earth Google 24.11.2010 31.9MB 4.2.198.2451
HDAUDIO SoftV92 Data Fax Modem with SmartCP 09.07.2008 1.01MB
Intel(R) PROSet/Wireless WiFi-Software Intel(R) Corporation 25.11.2010 79.0MB 12.04.3000
iTunes Apple Inc. 24.04.2011 141.8MB 10.2.2.12
Java(TM) 6 Update 24 Oracle 20.12.2010 95.0MB 6.0.240
Java(TM) 6 Update 6 Sun Microsystems, Inc. 09.07.2008 171.1MB 1.6.0.60
Logitech SetPoint 6.20 Logitech 25.11.2010 6.20.64
Malwarebytes' Anti-Malware Malwarebytes Corporation 01.05.2011 4.73MB
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU Microsoft Corporation 24.11.2010 36.7MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 24.11.2010 36.7MB
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 24.11.2010 120.2MB 4.0.30319
Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 24.11.2010 24.5MB 4.0.30319
Microsoft .NET Framework 4 Extended Microsoft Corporation 14.01.2011 45.9MB 4.0.30319
Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Corporation 14.01.2011 11.6MB 4.0.30319
Microsoft .NET Framework 4 Multi-Targeting Pack Microsoft Corporation 13.01.2011 83.2MB 4.0.30319
Microsoft Help Viewer 1.0 Microsoft Corporation 14.01.2011 6.04MB 1.0.30319
Microsoft Help Viewer 1.0 Language Pack - DEU Microsoft Corporation 14.01.2011 6.04MB 1.0.30319
Microsoft Office 2003 Web Components Microsoft Corporation 25.11.2010 21.7MB 11.0.8003.0
Microsoft Office Home and Student 2007 Microsoft Corporation 24.11.2010 307MB 12.0.6425.1000
Microsoft Silverlight Microsoft Corporation 20.04.2011 20.1MB 4.0.60310.0
Microsoft SQL Server 2005 Microsoft Corporation 24.11.2010 42.5MB
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 28.11.2010 1.73MB 3.1.0000
Microsoft SQL Server 2008 Microsoft Corporation 14.01.2011 563MB
Microsoft SQL Server 2008 Browser Microsoft Corporation 13.01.2011 7.99MB 10.1.2531.0
Microsoft SQL Server 2008 Native Client Microsoft Corporation 13.01.2011 3.23MB 10.1.2531.0
Microsoft SQL Server Compact 3.5 SP2 DEU Microsoft Corporation 13.01.2011 3.66MB 3.5.8080.0
Microsoft SQL Server Native Client Microsoft Corporation 02.04.2011 2.63MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 13.01.2011 1.79MB 10.1.2531.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 25.11.2010 0.24MB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable - KB2467175 Microsoft Corporation 18.04.2011 0.30MB 8.0.51011
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 25.11.2010 0.19MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 18.04.2011 0.58MB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 25.11.2010 0.57MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 Microsoft Corporation 13.01.2011 0.58MB 9.0.30729.4974
Microsoft Visual C++ 2010 Express - DEU Microsoft Corporation 14.01.2011 387MB 10.0.30319
Mozilla Firefox (3.6.17) Mozilla 29.04.2011 29.3MB 3.6.17 (de)
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 24.11.2010 35.00KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 24.11.2010 1.33MB 4.20.9876.0
Music Transfer Sony Corporation 24.11.2010 40.6MB 1.2.00.17290
Norton AntiVirus Symantec Corporation 24.11.2010 69.3MB 18.5.0.125
OpenMG Secure Module 5.4.00 Sony Corporation 25.11.2010 5.4.00.04020
PDFCreator Frank Heindörfer, Philip Chinery 28.11.2010 24.9MB 1.1.0
pdfforge Toolbar v4.3 Spigot, Inc. 09.03.2011 2.44MB 4.3
QuickTime Apple Inc. 13.12.2010 72.9MB 7.69.80.9
Readiris Pro 10 09.01.2011 99.8MB
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 09.07.2008 22.0MB 6.0.1.5653
Roxio Easy Media Creator 10 LJ Roxio 24.11.2010 5.22MB 10.1
Samsung CLX-216x Series Samsung Electronics CO.,LTD 09.01.2011 238MB
Samsung Universal Print Driver Samsung Electronics Co., Ltd. 28.11.2010 2.39MB 2.02.05.00:24
Setting Utility Series Sony Corporation 09.07.2008 10.3MB 4.1.00.07030
Skype™ 3.8 Skype Technologies S.A. 24.11.2010 27.9MB 3.8.115
SmarThru 4 09.01.2011 12.9MB
Spamihilator 0.9.9.53 (32-Bit) Michel Krämer 28.11.2010 5.41MB 0.9.9.53
Synaptics Pointing Device Driver Synaptics 09.07.2008 12.9MB 9.1.13.0
Uninstall 1.0.0.1 27.03.2011 31.1MB
Unity Web Player Unity Technologies ApS 17.12.2010 0.20MB
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) Microsoft Corporation 02.04.2011 23.2MB 9.00.5000.00
Unterstützungsdateien für Microsoft SQL Server 2008-Setup Microsoft Corporation 13.01.2011 29.8MB 10.1.2731.0
VAIO Control Center Sony Corporation 09.07.2008 4.63MB 3.1.00.07040
VAIO Data Restore Tool Sony Corporation 24.11.2010 6.49MB 1.0.04.01170
VAIO Energie Verwaltung Sony Corporation 09.07.2008 6.33MB 3.1.00.06190
VAIO Guide Sony Corporation 24.11.2010 10.3MB 2.4.00.06190
VAIO Launcher Sony Corporation 24.11.2010 7.45MB 2.1.00.06130
VAIO Original Funktion Einstellungen Sony Corporation 25.11.2010 1.76MB 2.0.2.02240
VAIO Update Sony Corporation 25.11.2010 17.3MB 5.1.1.04090
VLC media player 1.1.7 VideoLAN 05.02.2011 77.4MB 1.1.7
Windows Live Essentials Microsoft Corporation 20.03.2011 15.4.3508.1109
Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 28.11.2010 5.57MB 15.4.5722.2
WinDVD for VAIO InterVideo Inc. 24.11.2010 96.5MB 8.0-B9.513
WinRAR 24.11.2010 3.77MB
Worms for Pocket PC 25.12.2010
xp-AntiSpy 3.97-9 Christian Taubenheim 25.11.2010 0.65MB
Xvid 1.2.2 final uninstall Xvid team (Koepi) 24.11.2010 0.75MB 1.2
Zattoo4 4.0.5 Zattoo Inc. 28.11.2010 39.9MB 4.0.5
|
|
02.05.2011, 22:31
| #9 | |
| /// Helfer-Team | Msn verschickt Spam! 1. Die alte Java-Versionen verbleiben auf dem PC...aus Sicherheitsgründen müssen entfernt werden,auch in Zukunft darauf achten! Falls nach einen neuen Systemstart noch existieren, die alten Einträge bitte deinstallieren Code:
ATTFilter Java(TM) 6 Update 6
deinstalliere: unter `Systemsteuerung -->Software -->Ändern/Entfernen...` Code:
ATTFilter pdfforge Toolbar <- Adware -Toolbar Immer die benutzerdefinierte Installation wählen, nicht die Standardinstallation, weil dann oft Sachen mitinstalliert werden, die man nicht braucht oder nicht möchte. Bei Installation bitte die Lizenzbestimmungen immer lesen, und nicht sofort überall den Haken setzen bzw gesetzten Haken belassen, weil damit stimmt man nämlich zu, dass andere "Fremdprogramm", oder sogar Adware (Werbe-Pop-ups) durch Partnerprogrammen, Sponsoren etc - mitinstalliert wird, weil sich Freeware damit finanziert. in diese Kategorie gehören noch einige, wie z.B: -> Unerwünschte Toolbars deinstallieren 3. Zitat:
lösche nur den Inhalt der Ordner, nicht die Ordner selbst! - Dateien, die noch in Benutzung sind,nicht löschbar. gib in der Suchleiste unter dem Windows Start Button folgendes ein: Code:
ATTFilter %temp%
- anschließend den Papierkorb leeren 4. reinige dein System mit Ccleaner:
5. erneut einen Scan mit OTL:
__________________ Warnung!: Vorsicht beim Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einen Verschlüsselungs-Trojaner infiziert sein! Anhang nicht öffnen, in unserem Forum erst nachfragen! Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten! Bitte diese Warnung weitergeben, wo Du nur kannst! |
|
03.05.2011, 12:39
| #10 |
| | Msn verschickt Spam! Ich kann den %temp% Ordner nicht finden, wenn ich nach ihm suche findet es Ihn nicht. Wie kann ich Ihn sonst noch finden? Aber kann ich den nicht auch mit dem CCleaner leeren? Ach ja und noch eine Frage die beiden Dateien, die bei MBAM unter Quarantäne stehen, kann ich die endgültig löschen? |
|
03.05.2011, 21:14
| #11 |
| /// Helfer-Team | Msn verschickt Spam! Start-> Alle Programme-> Zubehör-> Ausführen-> dort %temp% reinschreiben... mit CCleaner geht ja auch: CCleaner als Admin starten => gehe auf den Button links oben "Cleaner", setze Häkchen unter Reiter "Windows" (alle außer "Eingabefeld Verlauf" und bei "Erweitert" nur ein Häkchen bei "Alte Prefetchdaten" und "Benutzerdefinierte Dateien und Ordner"). Einstellungen => Benutzerdefiniert => Zu bereinigende Dateien und Ordner => Ordner hinzufügen => Anstelle von <DeinBenutzername> trägst Du den Namen ein, mit dem Du bei Vista eingeloggt bist. C:\Users\<DeinBenutzername>\AppData\Local\Temp\*.* C:\Users\Default\AppData\Local\Temp\*.* C:\Windows\Temp\*.*
__________________ Warnung!: Vorsicht beim Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einen Verschlüsselungs-Trojaner infiziert sein! Anhang nicht öffnen, in unserem Forum erst nachfragen! Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten! Bitte diese Warnung weitergeben, wo Du nur kannst! |
|
03.05.2011, 21:58
| #12 |
| | Msn verschickt Spam! Ich habe bereits diese Ordner. C:\Users\xxxx\AppData\Local\Temp\*.* C:\Windows\Temp\*.* Wie kann ich diesen (C:\Users\Default\AppData\Local\Temp\*.*) erstellen, brauche ich den überhaupt? Wie bereits gefragt, kann ich die beiden Datein die bei MBAM unter Quarantäne stehen endgültig löschen? |
|
03.05.2011, 22:48
| #13 |
| /// Helfer-Team | Msn verschickt Spam! brauche ich den überhaupt? nein, muss nicht Wie bereits gefragt, kann ich die beiden Datein die bei MBAM unter Quarantäne stehen endgültig löschen? ja natürlich
__________________ Warnung!: Vorsicht beim Rechnungen per Email mit ZIP-Datei als Anhang! Kann mit einen Verschlüsselungs-Trojaner infiziert sein! Anhang nicht öffnen, in unserem Forum erst nachfragen! Sichere regelmäßig deine Daten, auf CD/DVD, USB-Sticks oder externe Festplatten, am besten 2x an verschiedenen Orten! Bitte diese Warnung weitergeben, wo Du nur kannst! |
|
03.05.2011, 23:05
| #14 |
| | Msn verschickt Spam! Also hier dir Ergebnisse von OTL: : Code:
ATTFilter OTL logfile created on: 03.05.2011 23:53:28 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\xxx Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000807 | Country: xxxxxxx| Language: DES | Date Format: dd.MM.yyyy 3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free 6.00 Gb Paging File | 5.00 Gb Available in Paging File | 79.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 289.92 Gb Total Space | 106.34 Gb Free Space | 36.68% Space Free | Partition Type: NTFS Drive F: | 687.65 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: xxxxxx | User Name: xxxx| Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Timo\Documents\sonstiges\Sonstiges\Sicherheit\OTL.exe (OldTimer Tools) PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) PRC - C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) PRC - C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ccsvchst.exe (Symantec Corporation) PRC - C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech, Inc.) PRC - C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) PRC - C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe (Sony Corporation) PRC - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) PRC - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\RTKAUDIOSERVICE.EXE (Realtek Semiconductor) PRC - C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation) PRC - C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) PRC - C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) PRC - C:\Windows\Samsung\PanelMgr\SSMMgr.exe () PRC - C:\Program Files\Samsung\Samsung CLX-216x Series\SPanel\PSU\Scan2pc.exe () PRC - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) ========== Modules (SafeList) ========== MOD - C:\Users\x\Documents\sonstiges\Sonstiges\Sicherheit\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.) SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) SRV - (NAV) -- C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ccSvcHst.exe (Symantec Corporation) SRV - (LBTServ) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (Samsung UPD Service) -- C:\Windows\System32\SUPDSvc.exe (Samsung Electronics CO., LTD.) SRV - (VUAgent) -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe (Sony Corporation) SRV - (EvtEng) Intel(R) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) SRV - (RegSrvc) Intel(R) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation) SRV - (PACSPTISVR) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe (Sony Corporation) SRV - (RtkAudioService) -- C:\Windows\RTKAUDIOSERVICE.EXE (Realtek Semiconductor) SRV - (VAIO Power Management) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (IviRegMgr) -- c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) ========== Driver Services (SafeList) ========== DRV - (BHDrvx86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20110430.001\BHDrvx86.sys (Symantec Corporation) DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110503.003\NAVEX15.SYS (Symantec Corporation) DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110503.003\NAVENG.SYS (Symantec Corporation) DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20110429.002\IDSvix86.sys (Symantec Corporation) DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation) DRV - (SYMTDIv) -- C:\Windows\System32\Drivers\NAV\1205000.07D\SYMTDIV.SYS (Symantec Corporation) DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation) DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation) DRV - (SRTSP) -- C:\Windows\System32\Drivers\NAV\1205000.07D\SRTSP.SYS (Symantec Corporation) DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\NAV\1205000.07D\SRTSPX.SYS (Symantec Corporation) DRV - (SymEFA) -- C:\Windows\system32\drivers\NAV\1205000.07D\SYMEFA.SYS (Symantec Corporation) DRV - (SymIRON) -- C:\Windows\system32\drivers\NAV\1205000.07D\Ironx86.SYS (Symantec Corporation) DRV - (SymDS) -- C:\Windows\system32\drivers\NAV\1205000.07D\SYMDS.SYS (Symantec Corporation) DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.) DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.) DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.) DRV - (s1039bus) Sony Ericsson Device 1039 driver (WDM) -- C:\Windows\System32\drivers\s1039bus.sys (MCCI Corporation) DRV - (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS) -- C:\Windows\System32\drivers\s1039nd5.sys (MCCI Corporation) DRV - (s1039mdm) -- C:\Windows\System32\drivers\s1039mdm.sys (MCCI Corporation) DRV - (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM) -- C:\Windows\System32\drivers\s1039unic.sys (MCCI Corporation) DRV - (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM) -- C:\Windows\System32\drivers\s1039mgmt.sys (MCCI Corporation) DRV - (s1039obex) -- C:\Windows\System32\drivers\s1039obex.sys (MCCI Corporation) DRV - (s1039mdfl) -- C:\Windows\System32\drivers\s1039mdfl.sys (MCCI Corporation) DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation) DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.) DRV - (RsFx0103) -- C:\Windows\System32\drivers\RsFx0103.sys (Microsoft Corporation) DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC) DRV - (DMICall) -- C:\Windows\System32\drivers\DMICall.sys (Sony Corporation) DRV - (risdptsk) -- C:\Windows\System32\drivers\risdptsk.sys (REDC) DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.) DRV - (WimFltr) -- C:\Windows\System32\drivers\WimFltr.sys (Microsoft Corporation) DRV - (SFEP) -- C:\Windows\System32\drivers\SFEP.sys (Sony Corporation) DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.) DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo) DRV - (SSPORT) -- C:\Windows\System32\drivers\SSPORT.SYS (Samsung Electronics) DRV - (DgiVecp) -- C:\Windows\System32\drivers\DGIVECP.SYS (Samsung Electronics Co., Ltd.) DRV - (pfc) -- C:\Windows\System32\drivers\pfc.sys (Padus, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.club-vaio.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.club-vaio.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://eu.ask.com?o=15780&l=dis IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "hxxp://www.google.ch/" FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1 FF - prefs.js..extensions.enabledItems: 2020Player@2020Technologies.com:4.5.4.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\IPSFFPlgn\ [2011.01.14 18:35:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.04.30 13:18:27 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.04.30 13:18:27 | 000,000,000 | ---D | M] [2010.11.25 20:45:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Timo\AppData\Roaming\mozilla\Extensions [2011.05.03 13:38:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\x\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions [2010.12.21 22:28:11 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\xxxx\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011.02.10 18:47:22 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- C:\Users\xxxx\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8} [2011.02.02 23:20:09 | 000,000,000 | ---D | M] (20-20 3D Viewer) -- C:\Users\Timo\AppData\Roaming\mozilla\Firefox\Profiles\ob9h2uln.default\extensions\2020Player@2020Technologies.com [2010.09.28 23:39:14 | 000,002,333 | ---- | M] () -- C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\ob9h2uln.default\searchplugins\askcom.xml [2011.05.03 13:38:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010.12.21 18:11:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011.03.15 22:40:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011.01.14 18:35:42 | 000,000,000 | ---D | M] (Norton IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\IPSFFPLGN [2011.02.02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010.10.27 07:44:13 | 000,001,392 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.10.27 07:44:13 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml [2010.10.27 07:44:13 | 000,006,805 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.10.27 07:44:13 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.10.27 07:44:13 | 000,001,105 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\18.5.0.125\ips\ipsbho.dll (Symantec Corporation) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google BAE\BAE.dll (Your Company Name) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found. O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [Maple_S2P] C:\Program Files\Samsung\Samsung CLX-216x Series\SPanel\PSU\Scan2pc.exe () O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - Startup: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Timo\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - File not found O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\System32\VESWinlogon.dll (Sony Corporation) O24 - Desktop WallPaper: C:\Users\x\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\x\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [1999.08.31 05:52:00 | 000,598,016 | R--- | M] (MAX DESIGN) - F:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [1999.08.31 05:52:00 | 000,000,766 | R--- | M] () - F:\Autorun.ico -- [ CDFS ] O32 - AutoRun File - [2001.09.06 01:04:00 | 000,000,283 | R--- | M] () - F:\Autorun.inf -- [ CDFS ] O33 - MountPoints2\{085f78fb-6b57-11e0-9495-001dba24bb8b}\Shell - "" = AutoRun O33 - MountPoints2\{085f78fb-6b57-11e0-9495-001dba24bb8b}\Shell\AutoRun\command - "" = G:\Startme.exe O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\Acrobat\command - "" = F:\.\ar500deu.exe -- [2001.09.06 01:04:00 | 009,124,984 | R--- | M] () O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\AutoRun\command - "" = F:\Autorun.exe -- [1999.08.31 05:52:00 | 000,598,016 | R--- | M] (MAX DESIGN) O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\DirectX\command - "" = F:\.\DirectX\dxsetup.exe -- [2001.10.16 12:24:46 | 000,140,288 | R--- | M] () O33 - MountPoints2\{6d3612f7-f856-11df-9c3f-806e6f6e6963}\Shell\Setup\command - "" = F:\.\Setup.exe -- [2002.12.02 15:33:00 | 000,107,512 | R--- | M] () O33 - MountPoints2\{ced634c9-1cce-11e0-8b7f-001dba24bb8b}\Shell - "" = AutoRun O33 - MountPoints2\{ced634c9-1cce-11e0-8b7f-001dba24bb8b}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a O33 - MountPoints2\{dda96fd3-fbd3-11df-a565-001dba24bb8b}\Shell\AutoRun\command - "" = G:\wd_windows_tools\WDEULA.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.05.03 13:18:50 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{B8DE6097-E19B-4757-8F9E-BA1FCD00B02E} [2011.05.02 16:58:20 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Roaming\Malwarebytes [2011.05.02 16:58:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2011.05.02 16:58:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Malwarebytes' Anti-Malware [2011.05.02 16:58:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011.05.02 16:58:10 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011.05.02 16:58:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011.05.02 12:29:20 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{227CABBB-BF91-469F-8E02-D4D868EB4188} [2011.05.01 15:19:45 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{1C9253E1-D764-429F-85F4-AA2052B834DF} [2011.04.29 15:30:57 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{9802831A-8BF0-472C-921A-BC05E73CEEE3} [2011.04.28 18:13:08 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{C651C691-93ED-4E9E-94B4-02731314E127} [2011.04.27 20:00:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Free FLV Converter [2011.04.27 20:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Free FLV Converter [2011.04.27 17:22:27 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2011.04.27 17:22:26 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2011.04.27 17:22:22 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2011.04.27 17:14:03 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{442D6840-DFC6-4D21-BDAC-44DEF9361D1B} [2011.04.26 18:45:23 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{62042D88-21B2-49D2-9B41-BCCA7ED72F19} [2011.04.25 17:23:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\iTunes [2011.04.25 17:22:46 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2011.04.25 17:22:44 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2011.04.25 17:19:59 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2011.04.25 13:48:05 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{23A5F032-A21F-4F28-85D9-A4FE4C85642A} [2011.04.24 12:03:27 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{AFD43F2C-5F4F-495F-898D-F66F7301E02B} [2011.04.23 22:03:20 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{6CE53D7B-F97B-408C-B5FC-386964457F1B} [2011.04.23 00:20:31 | 000,000,000 | ---D | C] -- C:\Users\x\AppData\Local\{1AE88077-B54F-49FA-B952-20C02E148367} [2011.04.22 12:20:07 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\{EA904536-19B8-4BA0-A089-F1BB29F222EB} [2011.04.21 16:51:26 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\{E8790765-5B89-44CD-AB59-0A1C66CE799C} [2011.04.20 19:33:05 | 000,124,016 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mdm.sys [2011.04.20 19:33:05 | 000,123,504 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039unic.sys [2011.04.20 19:33:05 | 000,117,872 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mgmt.sys [2011.04.20 19:33:05 | 000,113,904 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039obex.sys [2011.04.20 19:33:05 | 000,098,672 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039bus.sys [2011.04.20 19:33:05 | 000,025,456 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039nd5.sys [2011.04.20 19:33:05 | 000,014,960 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039mdfl.sys [2011.04.20 19:33:05 | 000,012,528 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cmnt.sys [2011.04.20 19:33:05 | 000,012,528 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cm.sys [2011.04.20 19:33:05 | 000,012,400 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039whnt.sys [2011.04.20 19:33:05 | 000,012,400 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039wh.sys [2011.04.20 19:33:05 | 000,010,992 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\s1039cr.sys [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programme\Sony Ericsson [2011.04.20 19:32:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson [2011.04.20 13:21:45 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{A93F3534-7BB5-402A-8155-74318E533724} [2011.04.19 18:10:18 | 000,000,000 | ---D | C] -- C:\Users\Timo\AppData\Local\{845A209A-BC21-4777-9122-6FD7E4A91BAF} [2011.04.19 17:34:37 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011.04.19 17:34:37 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011.04.19 17:34:37 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011.04.19 17:34:37 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.04.19 17:34:36 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.04.19 17:34:36 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011.04.19 17:34:36 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011.04.19 17:34:36 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011.04.19 17:34:35 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011.04.19 17:34:35 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011.04.19 17:34:35 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011.04.19 17:34:35 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011.04.19 17:34:35 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.04.19 17:34:35 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011.04.19 17:34:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011.04.19 17:34:35 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011.04.19 17:34:35 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011.04.19 17:34:34 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011.04.19 17:34:34 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011.04.19 17:34:34 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011.04.19 17:34:34 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011.04.19 17:34:34 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011.04.19 17:34:33 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011.04.19 17:34:33 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011.04.19 17:34:33 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011.04.19 17:34:32 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.04.19 17:34:32 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011.04.19 17:34:32 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011.04.19 17:34:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011.04.19 17:34:32 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011.04.19 17:34:32 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011.04.19 17:34:31 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.04.19 17:34:31 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011.04.19 17:34:31 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011.04.19 17:34:31 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011.04.19 17:34:31 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011.04.19 17:34:31 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011.04.19 17:34:31 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011.04.19 17:34:31 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011.04.16 00:30:31 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011.04.15 17:50:29 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2011.04.15 17:50:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2011.04.15 17:50:13 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll [2011.04.15 17:50:13 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll [2011.04.15 17:50:03 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011.04.15 17:49:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe [2011.04.11 10:37:58 | 000,000,000 | ---D | C] -- C:\divx [2011.04.10 18:37:46 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011.04.10 18:37:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2011.04.10 18:37:40 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Real [2011.04.10 18:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\eRightSoft [2011.04.10 17:59:57 | 000,000,000 | ---D | C] -- C:\OutputFolder [2011.04.07 17:15:22 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\DonationCoder [2011.04.07 17:15:21 | 000,000,000 | ---D | C] -- C:\Users\xxxx\Documents\DonationCoder [2011.04.06 16:20:16 | 000,197,920 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll [2011.04.06 16:20:16 | 000,107,808 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe [2011.04.06 16:20:16 | 000,091,424 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll [2011.04.06 16:20:16 | 000,075,040 | ---- | C] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll ========== Files - Modified Within 30 Days ========== [2011.05.03 23:17:32 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011.05.03 23:17:32 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011.05.03 21:17:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.05.03 21:17:31 | 3186,659,328 | -HS- | M] () -- C:\hiberfil.sys [2011.05.01 23:31:53 | 000,056,832 | ---- | M] () -- C:\Users\xxxx\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.05.01 22:59:09 | 000,000,764 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011.04.26 22:37:39 | 000,002,593 | ---- | M] () -- C:\Users\xxxx\Desktop\Microsoft Office Excel 2007.lnk [2011.04.25 19:43:51 | 000,002,591 | ---- | M] () -- C:\Users\xxxx\Desktop\Microsoft Office Word 2007.lnk [2011.04.25 17:23:50 | 000,001,624 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk [2011.04.20 19:37:59 | 000,745,254 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.04.20 19:37:58 | 000,794,826 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.04.20 19:37:58 | 000,193,608 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.04.20 19:37:58 | 000,161,784 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.04.19 17:34:53 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat [2011.04.19 17:34:53 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat [2011.04.19 17:34:37 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011.04.19 17:34:37 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011.04.19 17:34:37 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011.04.19 17:34:37 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.04.19 17:34:36 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.04.19 17:34:36 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011.04.19 17:34:36 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011.04.19 17:34:36 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011.04.19 17:34:35 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011.04.19 17:34:35 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011.04.19 17:34:35 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011.04.19 17:34:35 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011.04.19 17:34:35 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.04.19 17:34:35 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011.04.19 17:34:35 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011.04.19 17:34:35 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011.04.19 17:34:35 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf [2011.04.19 17:34:35 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011.04.19 17:34:34 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011.04.19 17:34:34 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011.04.19 17:34:34 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011.04.19 17:34:34 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011.04.19 17:34:34 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011.04.19 17:34:33 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011.04.19 17:34:33 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011.04.19 17:34:33 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011.04.19 17:34:32 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.04.19 17:34:32 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011.04.19 17:34:32 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011.04.19 17:34:32 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011.04.19 17:34:32 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011.04.19 17:34:32 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011.04.19 17:34:31 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.04.19 17:34:31 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011.04.19 17:34:31 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011.04.19 17:34:31 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011.04.19 17:34:31 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011.04.19 17:34:31 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011.04.19 17:34:31 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011.04.19 17:34:31 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011.04.16 13:51:33 | 000,403,848 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011.04.13 17:24:10 | 000,000,447 | ---- | M] () -- C:\Users\xxxx\Desktop\Schule - Verknüpfung.lnk [2011.04.11 10:30:46 | 000,002,032 | ---- | M] () -- C:\Users\xxxx\AppData\Local\d3d9caps.dat [2011.04.09 18:13:09 | 000,005,146 | ---- | M] () -- C:\Users\Timo\.recently-used.xbel [2011.04.07 21:38:48 | 000,000,011 | R--- | M] () -- C:\Windows\amunres.lsl [2011.04.07 17:15:22 | 000,000,058 | ---- | M] () -- C:\Users\xxxx\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat [2011.04.06 16:20:16 | 000,197,920 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll [2011.04.06 16:20:16 | 000,107,808 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe [2011.04.06 16:20:16 | 000,091,424 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll [2011.04.06 16:20:16 | 000,075,040 | ---- | M] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll ========== Files Created - No Company Name ========== [2011.04.25 17:23:50 | 000,001,624 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk [2011.04.19 17:34:35 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf [2011.04.13 17:24:10 | 000,000,447 | ---- | C] () -- C:\Users\xxxx\Desktop\Schule - Verknüpfung.lnk [2011.04.09 18:13:09 | 000,005,146 | ---- | C] () -- C:\Users\Timo\.recently-used.xbel [2011.04.07 21:38:48 | 000,000,011 | R--- | C] () -- C:\Windows\amunres.lsl [2011.04.07 17:15:22 | 000,000,058 | ---- | C] () -- C:\Users\xxxx\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat [2011.01.10 23:04:20 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll [2011.01.10 17:30:47 | 000,010,231 | ---- | C] () -- C:\Users\xxxx\AppData\Roaming\SmarThruOptions.xml [2011.01.10 17:30:35 | 000,036,864 | ---- | C] () -- C:\Windows\System32\SvcMan.exe [2011.01.10 17:30:03 | 000,172,032 | ---- | C] () -- C:\Windows\System32\SecSNMP.dll [2011.01.10 17:29:46 | 000,000,124 | ---- | C] () -- C:\Windows\Readiris.ini [2011.01.10 17:29:42 | 000,023,040 | ---- | C] () -- C:\Windows\System32\irisco32.dll [2011.01.10 17:27:03 | 000,458,752 | ---- | C] () -- C:\Windows\ssndii.exe [2011.01.10 17:22:57 | 000,086,016 | R--- | C] () -- C:\Windows\WiaInst.exe [2011.01.10 17:21:48 | 000,217,088 | R--- | C] () -- C:\Windows\System32\ssminidriver.dll [2011.01.10 17:21:48 | 000,027,136 | R--- | C] () -- C:\Windows\System32\ssimgfilter.dll [2011.01.10 17:21:48 | 000,011,264 | R--- | C] () -- C:\Windows\System32\sssegfilter.dll [2011.01.10 17:21:48 | 000,010,752 | R--- | C] () -- C:\Windows\System32\sserrhandler.dll [2011.01.10 17:20:21 | 000,022,723 | ---- | C] () -- C:\Windows\System32\cx21sl3.dll [2010.11.29 23:06:13 | 000,000,079 | -HS- | C] () -- C:\ProgramData\.zreglib [2010.11.29 22:06:15 | 000,017,408 | ---- | C] () -- C:\Users\xxxx\AppData\Local\WebpageIcons.db [2010.11.29 20:10:47 | 000,056,832 | ---- | C] () -- C:\Users\xxxx\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.11.29 18:25:12 | 000,026,624 | ---- | C] () -- C:\Windows\System32\spd__l.dll [2010.11.29 18:25:11 | 000,283,136 | ---- | C] () -- C:\Windows\System32\DscPnt.dll [2010.11.29 18:25:11 | 000,259,888 | ---- | C] () -- C:\Windows\SUPDRun.exe [2010.11.29 18:25:11 | 000,151,552 | ---- | C] () -- C:\Windows\System32\spd__ci.exe [2010.11.29 13:59:13 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll [2010.11.25 20:56:16 | 000,524,288 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2010.11.25 20:56:16 | 000,139,264 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2010.11.25 16:02:30 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010.11.25 16:02:00 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2010.11.25 16:02:00 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2010.11.25 14:09:21 | 000,002,032 | ---- | C] () -- C:\Users\xxxx\AppData\Local\d3d9caps.dat [2010.11.25 08:24:42 | 000,000,000 | ---- | C] () -- C:\Windows\VAIOUpdt.INI [2009.08.03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009.08.03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe [2009.05.14 23:22:08 | 000,011,264 | ---- | C] () -- C:\Windows\System32\atimuixx.dll [2008.10.29 18:13:34 | 000,180,720 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2008.07.10 21:07:09 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1511.dll [2008.07.10 21:07:08 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat [2008.07.10 21:07:08 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2008.07.10 21:07:08 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe [2008.07.10 21:04:31 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2008.07.10 11:22:18 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2008.01.21 09:15:58 | 000,794,826 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2008.01.21 09:15:58 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2008.01.21 09:15:58 | 000,193,608 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2008.01.21 09:15:58 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006.11.02 14:47:37 | 000,403,848 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006.11.02 12:33:01 | 000,745,254 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006.11.02 12:33:01 | 000,161,784 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2002.09.18 00:45:00 | 000,119,808 | ---- | C] () -- C:\Windows\lsb_un20.exe ========== Alternate Data Streams ========== @Alternate Data Stream - 728 bytes -> C:\Users\xxxx\Documents\Französisch.eml:OECustomProperty < End of report > |
|
03.05.2011, 23:09
| #15 |
| | Msn verschickt Spam! Hier noch das zweite Ergebniss: :OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 03.05.2011 23:53:28 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\x\Documents\sonstiges\Sonstiges\Sicherheit
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000807 | Country: xxxx| Language: xxx| Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 79.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 289.92 Gb Total Space | 106.34 Gb Free Space | 36.68% Space Free | Partition Type: NTFS
Drive F: | 687.65 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: x-MOBIL | User Name: x| Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{401FF33D-6A49-4D27-BBDC-288AEC1B47AD}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{904A90D9-9334-44C7-84F4-19FBE45F3126}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{FFDFCD60-B8C4-466B-82DE-C37E26F0E777}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0997A8ED-77C6-4B94-9A5F-76027ADAF832}" = protocol=6 | dir=in | app=c:\program files\spamihilator\cdcc.exe |
"{232838F7-EB3D-4154-8350-2D52133D83EE}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{41EAD167-C645-4291-988C-5E5FB5D96D14}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4E86B8B3-90AF-41B2-803E-08F68EF5DD05}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{7BB77A5D-DD19-48C1-94DE-84CEAA164402}" = protocol=6 | dir=in | app=c:\program files\spamihilator\spamihilator.exe |
"{870998A7-077C-44F9-B329-07BB00BFE55B}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{8C5B5EDE-EC52-4FB0-88B2-53ABF6E23750}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{94752534-85DD-439D-9702-CE8A9F95CE99}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{98439142-B30E-4303-A3BE-5078232DB6AE}" = protocol=6 | dir=in | app=c:\program files\spamihilator\dccproc.exe |
"{9F2751DE-ECD1-407C-9DDB-0E12AA96A150}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{A68D62C1-2C51-4B3F-9232-9632E3CD4AEC}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{B2133616-A3F7-49B3-9DCD-EC1840293301}" = protocol=17 | dir=in | app=c:\program files\spamihilator\spamihilator.exe |
"{CE35DEE9-D716-47B8-A16D-D010D06BD81E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DB9F1547-3694-4EF1-914C-0F870F1F6091}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{E08C5138-0E63-4839-BD60-26E3321AB30E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E625A7E7-FFE7-46F7-AB6F-33F118F5F629}" = protocol=17 | dir=in | app=c:\program files\spamihilator\cdcc.exe |
"{F1E851DF-11D8-42F5-947E-6CFDF69F6CDC}" = protocol=17 | dir=in | app=c:\program files\spamihilator\dccproc.exe |
"TCP Query User{BF006466-157E-4246-A8A3-1E8C88211742}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{18A8ACC5-B149-4E3C-A053-817CC2E96366}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{028ED9C4-25EE-4DEE-9CF4-91034BC89B18}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{077A7810-A937-4465-AD08-ACED9807995F}" = ANNO 1602 Königs-Edition
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B9B76C9-4967-59FC-C994-191AEA152F04}" = ATI Catalyst Install Manager
"{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}" = Primo
"{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}" = Readiris Pro 10
"{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}" = VAIO Launcher
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1C2B3CEA-482E-4453-B3E2-C9731337828A}" = Microsoft SQL Server 2008 Native Client
"{1D328E11-3B0C-388C-835D-C9C20E8C7734}" = Microsoft Help Viewer 1.0 Language Pack - DEU
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}" = Google Earth
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{202F2838-156B-FC76-013F-9241B9673F39}" = CCC Help Thai
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 24
"{2B4E24A0-A06F-488D-87D8-16738E5E1104}" = Windows Live Family Safety
"{325ED81A-EC15-7CE8-729B-0392A1DD3854}" = CCC Help Czech
"{326DC400-1FC4-4D7D-946D-06D1EAB93200}" = VAIO Guide
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}" = Microsoft SQL Server 2008 RsFx Driver
"{353FE16B-30FE-469A-BF55-B978F4218003}" = iTunes
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3CCA23DD-CEDA-CC7F-C74C-4D1EDAE919AA}" = Catalyst Control Center Graphics Full New
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{42DD2173-B7CA-8AB3-8AC2-40DFE2CA6FBC}" = CCC Help German
"{430DD2C5-65FD-9781-F9F2-693CAF05CD10}" = Catalyst Control Center InstallProxy
"{477415F5-93DA-46AA-85C5-640047825995}" = Microsoft SQL Server 2008 Database Engine Shared
"{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0
"{49B8916D-1DEA-F18A-731F-BF0FE209C63B}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4AF2248C-B3DF-46FB-9596-87F5DB193689}" = Microsoft SQL Server 2008 Browser
"{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"{4EEAF8D8-CB79-06CA-A566-EAC1726DAABB}" = CCC Help Finnish
"{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Easy Media Creator 10 LJ
"{540DB82A-EE11-BBC1-8BD8-BB7D937A53A4}" = CCC Help Hungarian
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}" = VAIO Data Restore Tool
"{5882396B-9FB3-37AC-1AE1-5EA344BD7705}" = Catalyst Control Center Graphics Previews Vista
"{5BA149D9-D5FA-5AB3-400B-9F1BF424B7CE}" = CCC Help Chinese Traditional
"{5BEE8F1F-BD32-4553-8107-500439E43BD7}" = VAIO Update
"{5C5EE8F2-0B38-4C13-AE4E-A87A237FE718}" =
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F5867F0-2D23-4338-A206-01A76C823924}" = VAIO Energie Verwaltung
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{642F96CC-1D3B-20DE-8673-44EE15B3DC2F}" = CCC Help Portuguese
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}" = Click to Disc
"{6D26ACF9-4919-0744-C509-28EAF53112D4}" = CCC Help Dutch
"{6E9CFEF5-0245-411F-8587-CF83DF9D4B05}" = Microsoft SQL Server 2008 Database Engine Services
"{71256374-2053-CF0F-BD54-20082980B95C}" = Catalyst Control Center Graphics Full Existing
"{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center
"{72EEB695-388B-4835-8EA6-0C04545B06B9}" = Intel(R) PROSet/Wireless WiFi-Software
"{737D8F4D-24D4-D626-DEC0-9E39A6166890}" = CCC Help Danish
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{74B705C2-173A-FFD1-98BC-AD5FB647AB38}" = CCC Help Polish
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{784BDC03-2D22-BCAE-5CAC-84AFA799FBDE}" = CCC Help Turkish
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7C404084-C5A6-42FF-B731-0BAC79A6E134}" = VAIO Original Funktion Einstellungen
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{8572CE7D-46B0-70B3-96CD-534F07B35F5D}" = CCC Help Italian
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{87544F2E-CCA5-01BC-AEBC-D8C1D759EE61}" = CCC Help English
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ED5D0B7-A193-413F-815A-530BE36B38F7}" = Spamihilator 0.9.9.53 (32-Bit)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90A40407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{90B38901-52C8-85A7-D6C8-9A5592C9FCAA}" = CCC Help Greek
"{90F1943D-EA4A-4460-B59F-30023F3BA69A}" = SmarThru 4
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95229EF6-F4A1-413A-BA50-668311FAFE19}" = VAIO Original Function Settings
"{9648D00F-0589-619B-6114-BF2A0620168B}" = CCC Help Korean
"{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}" =
"{9805E4EE-9B66-CABD-AF6B-4B84F2A8EF46}" = Skins
"{9973498D-EA29-4A68-BE0B-C88D6E03E928}" = ArcSoft WebCam Companion 2
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AA2D735-3375-42D4-9A61-3FFEF82599D6}" = Unterstützungsdateien für Microsoft SQL Server 2008-Setup
"{9AC34FA1-BCDE-1D09-5DB7-EB6A064FDEA9}" = CCC Help Spanish
"{9B973FC0-E71F-6F89-10D6-1BFD063D1707}" = CCC Help Swedish
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9EAC0E21-510E-4259-A9C6-F5D5B8969036}" = Catalyst Control Center - Branding
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A3979A05-6834-D0A7-75CD-71B5A9E5F4C0}" = Catalyst Control Center Localization All
"{A6F21795-E629-35B2-9487-00A8363B28AA}" = Catalyst Control Center Graphics Light
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" = Setting Utility Series
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AEA6A4C2-7C4E-48F9-A770-879DE2EDEE1B}" = OpenMG Secure Module 5.4.00
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B8E9F8A1-9F4D-43D5-ABD6-1DF067FAA469}" = Microsoft SQL Server 2008 Database Engine Services
"{C0AD2831-3398-A078-CBEB-39A6B381BB56}" = CCC Help Japanese
"{C18A02EC-966B-E7A7-9AC9-082F770ABF9B}" = CCC Help Russian
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C9C390CC-F9B9-EFE8-27DF-6EB7FF8F8760}" = CCC Help Norwegian
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CD431A7B-88D8-0823-E66F-CCFAEA6DA7B4}" = ccc-core-static
"{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Music Transfer
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF0F8D1B-5FB9-468D-BD88-E6239906D2B7}" = Click to Disc
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D074DC76-F6C9-440E-A1D0-1DE958417FDB}" = Microsoft SQL Server VSS Writer
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D47E6B9C-F5A5-23B7-AB6A-3806AD4C9529}" = ccc-utility
"{D6DA6836-77C2-5338-10E3-D7A6CD65681D}" = Catalyst Control Center Core Implementation
"{DA8F979E-43B9-3EEC-721C-F297D9509992}" = Catalyst Control Center Graphics Previews Common
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEEB5FE3-40F5-3C5B-8F85-5306EF3C08F4}" = Microsoft Visual C++ 2010 Express - DEU
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}" = Microsoft SQL Server Native Client
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{F570A6CC-53ED-4AA9-8B08-551CD3E38D8B}" =
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FE0782BC-7AB0-CF6A-6E38-D3040462C7EC}" = CCC Help French
"{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Easy Media Creator Home
"{FF6F95A4-E59B-45C8-BEA8-0BDC8D9CAB51}" = Microsoft SQL Server 2008 Common Files
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"BFG-Big Fish Games Spiel-Suite" = Big Fish Games Spiel-Suite
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200" = HDAUDIO SoftV92 Data Fax Modem with SmartCP
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"DivX Setup.divx.com" = DivX-Setup
"dt icon module" =
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free FLV Converter_is1" = Free FLV Converter V 6.96.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.35.324
"Freemake Video Converter_is1" = Freemake Video Converter Version 2.0.1
"gtfirstboot Setting Request" =
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"InstallShield_{AEA6A4C2-7C4E-48F9-A770-879DE2EDEE1B}" = OpenMG Secure Module 5.4.00
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MFU Module" =
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"Microsoft Help Viewer 1.0 Language Pack - DEU" = Microsoft Help Viewer 1.0 Language Pack - DEU
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft Visual C++ 2010 Express - DEU" = Microsoft Visual C++ 2010 Express - DEU
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"NAV" = Norton AntiVirus
"ProInst" = Intel PROSet Wireless
"Samsung CLX-216x Series" = Samsung CLX-216x Series
"Samsung Universal Print Driver" = Samsung Universal Print Driver
"sp6" = Logitech SetPoint 6.20
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Uninstall_is1" = Uninstall 1.0.0.1
"VAIO Help and Support" =
"VLC media player" = VLC media player 1.1.7
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"Worms for Pocket PC" = Worms for Pocket PC
"xp-AntiSpy" = xp-AntiSpy 3.97-9
"Xvid_is1" = Xvid 1.2.2 final uninstall
"Zattoo4" = Zattoo4 4.0.5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 26.04.2011 12:44:27 | Computer Name = x-Mobil | Source = WinMgmt | ID = 10
Description =
Error - 26.04.2011 13:07:56 | Computer Name = x-Mobil | Source = EventSystem | ID = x
Description =
Error - 26.04.2011 16:12:40 | Computer Name = x-Mobil | Source = WinMgmt | ID = 10
Description =
Error - 26.04.2011 17:16:02 | Computer Name = x-Mobil | Source = EventSystem | ID = 4621
Description =
Error - 27.04.2011 11:13:22 | Computer Name = x-Mobil | Source = WinMgmt | ID = 10
Description =
Error - 27.04.2011 14:07:05 | Computer Name = x-Mobil | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung FLVToX.exe, Version 2.0.0.29, Zeitstempel 0x4be49305,
fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode
0xc0000005, Fehleroffset 0x7265766e, Prozess-ID 0x150, Anwendungsstartzeit 01cc0505a59fd47e.
Error - 27.04.2011 14:08:09 | Computer Name = x-Mobil | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung FLVToX.exe, Version 2.0.0.29, Zeitstempel 0x4be49305,
fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode
0xc0000005, Fehleroffset 0x7265766e, Prozess-ID 0x1754, Anwendungsstartzeit 01cc0505a2c479ee.
Error - 27.04.2011 14:08:10 | Computer Name = x-Mobil | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung FLVToX.exe, Version 2.0.0.29, Zeitstempel 0x4be49305,
fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode
0xc0000005, Fehleroffset 0x7265766e, Prozess-ID 0x154c, Anwendungsstartzeit 01cc0505a08f235e.
Error - 27.04.2011 14:08:12 | Computer Name = x-Mobil | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung FLVToX.exe, Version 2.0.0.29, Zeitstempel 0x4be49305,
fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode
0xc0000005, Fehleroffset 0x7265766e, Prozess-ID 0x768, Anwendungsstartzeit 01cc0505a46b4c1e.
Error - 28.04.2011 12:12:31 | Computer Name = x-Mobil | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 11.02.2011 18:41:04 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 04:54:56 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 04:54:56 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 05:14:38 | Computer Name = x-Mobil | Source = DCOM | ID = 10005
Description =
Error - 12.02.2011 05:14:39 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7009
Description =
Error - 12.02.2011 05:14:39 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 11:37:39 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 11:37:39 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 14:18:13 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
Error - 12.02.2011 14:18:13 | Computer Name = x-Mobil | Source = Service Control Manager | ID = 7000
Description =
< End of report >
|
|
| Themen zu Msn verschickt Spam! |
| andere, besuch, computer, e-mail, enthalten, erhalte, forum, freund, hoffe, interne, internet, link, msn, nachrichten, nichts, norton, passwort, posteingang, seite, sofort, spam, stunden, trojaner, verschickt, virus, wieder weg |
Hybrid-Darstellung
