Grace777 | 18.04.2013 12:35 | Danke für die Info. Noch ne Frage: Ist bei den Scanvorgängen auch der T-Online Browser miteinbezogen oder ist das egal. Den benütze ich nämlich hauptsächlich.
Hier die Logs:
Log von zoek Code:
Zoek.exe Version 4.0.0.2 Updated 17-April-2013
Tool run by Adelmann on 18.04.2013 at 12:39:32,20.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== FireFox Fix ======================
ProfilePath: C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default
user.js not found
---- Lines yontoo removed from prefs.js ----
---- Lines yontoo modified from prefs.js ----
user_pref("extensions.enabledAddons", "plugin%40yontoo.com:1.20.02,%7B2D3F3651-74B9-4795-BDEC-6DA2F431CB62%7D:2012.5.13.5,%7BBBDA0591-3099-440a-AA10-41764D9DB4DB%7D:11.3.0.9%20-%204,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1");
---- Lines specialsavings removed from prefs.js ----
user_pref("extensions.special_savings_fx.dataBase", "{\"cc_dbfetch\":\"720\",\"cc_dburl\":\"http:\\/\\/www.specialsavings.com\\/couponc\\/addon.php\",\"cc_ssl\":\"1\",\"cc_injector\":\"try{(function(){var protocol=(document.location.protocol=='https:')?'https:':'http:'; var s=document.createElement('script');s.type='text\\/javascript';s.async=true;s.src=protocol+'\\/\\/www.specialsavings.com\\/couponc\\/addon.min.js?geo=DE&uuid=8b2b393ee35a3d22059ea25fd1a20906';var x=document.getElementsByTagName('script')[0];x.parentNode.insertBefore(s,x)})();}catch(err){}\",\"cc_norun\":[\"afsrc=1\"],\"cc_whitelist\":[\"specialsavings.com\"],\"cc_tlds\":[\".com\"]}");
user_pref("extensions.special_savings_fx.databaseLink", "hxxp://www.specialsavings.com/couponc/addon.php");
user_pref("extensions.special_savings_fx.databaseLinkResult", "{\"cc_dbfetch\":\"10\",\"cc_dburl\":\"http:\\/\\/www.specialsavings.com\\/couponc\\/addon.php\",\"cc_ssl\":\"0\",\"cc_injector\":\"\",\"cc_tlds\":[]}\n");
---- Lines specialsavings modified from prefs.js ----
---- Lines special_savings removed from prefs.js ----
user_pref("extensions.special_savings_fx.expiresAfter", "720");
user_pref("extensions.special_savings_fx.isFirstRun", "false");
user_pref("extensions.special_savings_fx.lastUpdated", 1363885680);
---- Lines special_savings modified from prefs.js ----
---- FireFox user.js and prefs.js backups ----
prefs__1250_.backup
==== Deleting Files \ Folders ======================
"C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default\extensions\plugin@yontoo.com.xpi" deleted
"C:\WINDOWS\system32\roboot.exe" deleted
"C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default\extensions\plugin@yontoo.com.xpi" deleted
"C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Systweak" deleted
"C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Extensions\specialsavings@vshsolutions.com" deleted
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
====== C:\DOKUME~1\Adelmann\LOKALE~1\Temp ====
2013-04-17 17:52:45 02C4F6C257542FCB7C58B7164D674471 613083 ----a-w- C:\DOKUME~1\Adelmann\LOKALE~1\Temp\AdwCleaner.exe
2013-04-17 17:50:06 FBC207AD85D053D4FD9DD93C595D1A1D 285455 ----a-w- C:\DOKUME~1\Adelmann\LOKALE~1\Temp\Install_HOSTS_Anti-Adware.exe
====== C:\WINDOWS\system32 =====
====== C:\WINDOWS\system32\drivers =====
2013-04-16 13:35:27 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
2013-04-16 06:51:50 A7100EA17ED9EAF365362A05BF430E77 44024 ----a-r- C:\WINDOWS\System32\drivers\SymIM.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Programme =====
2013-03-25 03:41:59 -------- d-----w- C:\Programme\OpenLP
======= C: =====
2013-04-18 00:12:47 2D3A0E2E3E4AE9C2790F099757D56169 1603 ----a-w- C:\AdwCleaner[S3].txt
2013-04-17 23:52:00 D36DB156E4185F113D3E5A9EDEEE3904 1541 ----a-w- C:\AdwCleaner[R7].txt
2013-04-17 23:35:35 FC315202722E88D9294416636122DE16 1481 ----a-w- C:\AdwCleaner[R6].txt
2013-04-17 23:19:06 44D7C8FFA7AB486613165AD7EC257CA9 1421 ----a-w- C:\AdwCleaner[R5].txt
2013-04-17 17:54:08 A087F7B4646A2F17BD9A36DFA32EB998 1228 ----a-w- C:\AdwCleaner[R4].txt
2013-04-17 17:53:12 583CC618AA196CD4E2D6BB9A2C66B42B 1169 ----a-w- C:\AdwCleaner[R3].txt
2013-04-17 17:44:21 1975A75A9431AF4F6D0A2C1172F8E58C 1282 ----a-w- C:\AdwCleaner[S2].txt
2013-04-17 17:43:19 781AE0BCD06517B07CD64C4E4CD4B9E7 1220 ----a-w- C:\AdwCleaner[R2].txt
2013-04-16 20:22:17 BC755B5A6832D1F0B14552C6642F9A48 15713 ----a-w- C:\AdwCleaner[S1].txt
2013-04-16 20:21:53 5EF8B9D3421BD91CB2DD10E6515B1334 15767 ----a-w- C:\AdwCleaner[R1].txt
====== C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten ======
2013-03-25 02:58:31 -------- d-----w- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\enchant
2013-03-25 02:45:43 -------- d-----w- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\openlp
====== C:\Dokumente und Einstellungen\Adelmann ======
====== C: exe-files ==
2013-04-17 17:52:45 02C4F6C257542FCB7C58B7164D674471 613083 ----a-w- C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temp\AdwCleaner.exe
2013-04-17 17:50:49 C1DB9BDF885C2F1ADC15264FBEA2788F 302961 ----a-w- C:\RECYCLER\S-1-5-21-725345543-412668190-839522115-1003\Dc164\HOSTS_Anti-Adware_main.exe
2013-04-17 17:50:47 59538D76EA7D0FE8283D72265833E0E4 285795 ----a-w- C:\RECYCLER\S-1-5-21-725345543-412668190-839522115-1003\Dc164\HOSTS_Anti-Adware.exe
2013-04-17 17:50:06 FBC207AD85D053D4FD9DD93C595D1A1D 285455 ----a-w- C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temp\Install_HOSTS_Anti-Adware.exe
2013-04-16 20:21:17 02C4F6C257542FCB7C58B7164D674471 613083 ----a-w- C:\Dokumente und Einstellungen\Adelmann\Eigene Dateien\Downloads\AdwCleaner.exe
2013-04-16 19:51:11 89E8B8672847633155A1B19E90EE8F3B 215096 ----a-w- C:\RECYCLER\S-1-5-21-725345543-412668190-839522115-1003\Dc161.exe
2013-04-16 07:40:14 08B84215BFD37691BA3D6A32F5CEE45E 19622496 ----a-w- C:\RECYCLER\S-1-5-21-725345543-412668190-839522115-1003\Dc162.exe
2013-04-16 06:33:04 847CE6D2D0D517E976C0D12D1985DB1E 156244824 ----a-w- C:\Dokumente und Einstellungen\Adelmann\Eigene Dateien\Downloads\setup_9.0.0.722_18.03.2013_06-04.exe
=== C: other files ==
2013-04-16 13:35:27 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2013-04-16 06:51:50 A7100EA17ED9EAF365362A05BF430E77 44024 ----a-r- C:\WINDOWS\system32\drivers\SymIM.sys
==== Firefox Extensions ======================
ProfilePath: C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default
- Norton Toolbar - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\coFFPlgn
- Norton Vulnerability Protection - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\IPSFFPlgn
- Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
==== Firefox Plugins ======================
Profilepath: C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default
F7E72D3A281F922BACEC1A71A826D4C2 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll - Shockwave Flash
AFD9010DC500096809C2784551909304 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U15
1B197A0ED28DB310AB67591567C3787A - C:\WINDOWS\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.150.3
F647D0BEA553C1D0C251CE07DA6A5511 - C:\Programme\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
F647D0BEA553C1D0C251CE07DA6A5511 - C:\Programme\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat
DB988B4550DB9BCE86F9199D961057FC - C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
A5C14075B571AF1C9592595BE724D9D2 - C:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll - Silverlight Plug-In
140CB152ABCCD9C60B0B5B7C8C75E182 - C:\Programme\innoplus\3D-Viewer-innoPlus\npIno3DViewer.dll - InoViewer Plugin
24E990B1E6D55428001843CF7217DD81 - C:\Programme\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
A17CBF697C4030A5738ABE37BE8F315F - C:\Programme\Mozilla Firefox\plugins\nplv86win32.dll - National Instruments LabVIEW 8.6 Netscape Plug-in for Windows
38A1E65626558B8776C3546BE4491993 - C:\Programme\Windows Media Player\npdrmv2.dll - Microsoft® DRM
AE3A029E3DC4EEB5EF5A4C2C997F78F8 - C:\Programme\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
1D187905079ACC40C420E7C8BD167731 - C:\Programme\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
92AB52FC695C1D459E3BE9AFD6CE218D - C:\Programme\Mozilla Firefox\plugins\NPOFFICE.DLL - Microsoft Office 2003
F630B4A9D9C1AAF6BBABBB41E9BD45B5 - C:\WINDOWS\system32\npptools.dll - Betriebssystem Microsoft® Windows®
2AA3703D87E1327A2290C9D416D89A28 - C:\Programme\Microsoft Silverlight\5.1.20125.0\npctrlui.dll - Microsoft® Silverlight
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Programme\Norton 360\Engine\6.4.1.14\Exts\Chrome.crx[02.04.2013 21:14]
ndibdjnfmopecpmkdieinmbadjfpblof - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx[]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} @ieframe.dll,-12512 Url="hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully
==== Empty IE Cache ======================
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Temporary Internet Files\Content.IE5 emptied successfully
C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Temporary Internet Files\Content.IE5 emptied successfully
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\1ACW5FFK will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\5YRZPE6O will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7SOHS2YO will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\ATOF05Q0 will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\CWRYFQB9 will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\GGCONF57 will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LO7J9CT3 will be deleted at reboot
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default\Cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
After Reboot
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOKUME~1\Adelmann\LOKALE~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\1ACW5FFK" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\5YRZPE6O" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7SOHS2YO" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\ATOF05Q0" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\CWRYFQB9" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\GGCONF57" not found
"C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LO7J9CT3" not found Logs von OTL Code:
OTL logfile created on: 18.04.2013 13:09:02 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Adelmann\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,00 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 48,47% Memory free
2,60 Gb Paging File | 1,68 Gb Available in Paging File | 64,41% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 48,83 Gb Total Space | 18,52 Gb Free Space | 37,93% Space Free | Partition Type: NTFS
Drive D: | 137,47 Gb Total Space | 85,20 Gb Free Space | 61,97% Space Free | Partition Type: NTFS
Computer Name: ADELMANN-2DCA8F | User Name: Adelmann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.04.18 13:06:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Adelmann\Desktop\OTL.exe
PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013.03.12 09:05:50 | 029,106,336 | ---- | M] (Dropbox, Inc.) -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Dropbox\bin\Dropbox.exe
PRC - [2013.02.21 18:49:56 | 000,170,912 | ---- | M] (Oracle Corporation) -- C:\Programme\Java\jre7\bin\jqs.exe
PRC - [2012.07.03 10:04:58 | 000,507,312 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jucheck.exe
PRC - [2012.07.03 10:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2012.06.27 15:09:32 | 003,997,696 | ---- | M] (Deutsche Telekom AG, www.t-online.de) -- C:\Programme\T-Online\T-Online_Software_6\eMail\Mail.exe
PRC - [2012.06.16 04:24:19 | 000,138,272 | R--- | M] (Symantec Corporation) -- C:\Programme\Norton 360\Engine\6.4.1.14\ccsvchst.exe
PRC - [2012.04.12 17:12:56 | 004,212,344 | ---- | M] (Deutsche Telekom AG) -- C:\Programme\T-Online\T-Online_Software_6\Browser\browser.exe
PRC - [2011.11.08 21:51:22 | 000,796,080 | ---- | M] (Deutsche Telekom AG) -- C:\Programme\T-Online\T-Online_Software_6\Basis-Software\Basis2\profilemgr.exe
PRC - [2011.11.08 21:51:22 | 000,111,960 | ---- | M] (Deutsche Telekom AG) -- C:\Programme\T-Online\T-Online_Software_6\Basis-Software\Basis2\sc_watch.exe
PRC - [2011.11.08 21:51:20 | 001,226,152 | ---- | M] (Deutsche Telekom AG) -- C:\Programme\T-Online\T-Online_Software_6\Basis-Software\Basis2\kernel.exe
PRC - [2011.07.31 15:07:18 | 000,189,808 | ---- | M] (Haufe-Lexware GmbH & Co. KG) -- C:\Programme\Gemeinsame Dateien\Lexware\Update Manager\LxUpdateManager.exe
PRC - [2011.05.10 02:41:12 | 000,049,208 | ---- | M] (Hewlett-Packard) -- C:\Programme\Hewlett-Packard\HP Software Update\hpwuschd2.exe
PRC - [2009.10.21 18:15:38 | 000,288,768 | ---- | M] (T-Systems International GmbH) -- C:\Programme\T-Home\Dialerschutz-Software\DFInject.exe
PRC - [2009.05.21 18:57:00 | 000,362,496 | ---- | M] (Hewlett-Packard) -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe
PRC - [2008.10.16 20:11:26 | 000,569,344 | ---- | M] (Hewlett-Packard Co.) -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
PRC - [2008.10.16 20:11:26 | 000,184,320 | ---- | M] (Hewlett-Packard Co.) -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe
PRC - [2008.10.16 19:23:30 | 000,214,360 | ---- | M] (Hewlett-Packard Co.) -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
PRC - [2008.06.20 16:46:24 | 000,607,848 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\Shared\Tagger\tagsrv.exe
PRC - [2008.06.17 18:38:28 | 000,213,552 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\Shared\Security\nidmsrv.exe
PRC - [2008.06.17 18:38:16 | 000,050,736 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lktsrv.exe
PRC - [2008.06.17 18:38:08 | 000,040,488 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lkads.exe
PRC - [2008.06.17 17:21:50 | 000,695,136 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lkcitdl.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.11.06 16:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nisvcloc.exe
PRC - [2007.10.22 13:34:20 | 000,421,888 | ---- | M] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH) -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MInfraIS\MInfraIS.exe
PRC - [2007.08.03 14:59:24 | 000,012,696 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\MAX\nimxs.exe
PRC - [2007.04.13 15:49:30 | 003,500,544 | ---- | M] (1&1 Internet AG) -- C:\Programme\1&1\SMS-Manager\SMSMngr.exe
PRC - [2007.01.09 17:16:12 | 000,061,440 | ---- | M] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH) -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe
PRC - [2007.01.09 13:39:58 | 000,368,640 | ---- | M] (fun communications GmbH, hxxp://www.fun.de) -- C:\Programme\T-Online\T-Online_Software_6\Notifier\Notifier.exe
PRC - [2002.10.30 11:40:34 | 000,028,672 | R--- | M] () -- C:\WINDOWS\htpatch.exe
PRC - [2002.05.29 14:57:06 | 000,323,646 | ---- | M] (Hewlett-Packard Co.) -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
PRC - [2002.04.11 04:19:36 | 000,077,824 | ---- | M] () -- C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
PRC - [2002.04.11 04:19:34 | 000,069,632 | ---- | M] (Hewlett-Packard) -- C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
PRC - [1999.10.22 12:00:32 | 000,043,520 | ---- | M] () -- C:\Programme\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
PRC - [1998.04.15 17:14:46 | 000,082,944 | ---- | M] (Corel Corporation) -- C:\Programme\Programs\MFIndexer.exe
========== Modules (No Company Name) ==========
MOD - [2013.02.14 00:35:59 | 013,198,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\de3e6b59e3949f8086973d53518a9ecb\System.Windows.Forms.ni.dll
MOD - [2013.01.10 01:27:05 | 000,980,480 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\197761bb3230bf9d4f540305dcf6717c\System.Configuration.ni.dll
MOD - [2013.01.10 01:26:53 | 005,618,176 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6d9da56c9f607615b55d6742d8427d\System.Xml.ni.dll
MOD - [2013.01.10 01:26:20 | 001,667,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\8ba0620535aa28d509b9397500b7d530\System.Drawing.ni.dll
MOD - [2013.01.10 01:25:33 | 009,093,120 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\c182d7a0bd88caf2cddccb7491a5fa6e\System.ni.dll
MOD - [2013.01.10 01:25:21 | 014,412,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll
MOD - [2012.12.18 16:28:26 | 000,301,056 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU
MOD - [2007.12.04 11:01:38 | 000,143,360 | ---- | M] () -- C:\Programme\T-Online\T-Online_Software_6\eMail\libexpat.dll
MOD - [2005.07.20 12:34:08 | 000,700,497 | ---- | M] () -- C:\Programme\T-Online\T-Online_Software_6\Notifier\libcurl.dll
MOD - [2004.04.16 15:45:52 | 000,143,360 | ---- | M] () -- C:\Programme\T-Online\T-Online_Software_6\Notifier\libexpat.dll
MOD - [2002.10.30 11:40:34 | 000,028,672 | R--- | M] () -- C:\WINDOWS\htpatch.exe
MOD - [2002.05.29 15:31:20 | 000,192,512 | ---- | M] () -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpodvd08.dll
MOD - [2002.04.11 04:19:42 | 000,024,576 | ---- | M] () -- C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll
MOD - [2002.04.11 04:19:36 | 000,077,824 | ---- | M] () -- C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
MOD - [1999.11.30 09:25:40 | 000,032,768 | ---- | M] () -- C:\Programme\Adobe\Acrobat 4.0\Distillr\ADistRes.DEU
MOD - [1999.10.22 12:00:32 | 000,043,520 | ---- | M] () -- C:\Programme\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
MOD - [1997.06.03 06:31:00 | 000,108,032 | ---- | M] () -- C:\WINDOWS\system32\sh33w32.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe -- (vToolbarUpdater14.2.0)
SRV - [2013.04.16 21:43:39 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.04.12 08:29:37 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013.02.21 18:49:56 | 000,170,912 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Programme\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012.06.16 04:24:19 | 000,138,272 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Programme\Norton 360\Engine\6.4.1.14\ccSvcHst.exe -- (N360)
SRV - [2009.10.21 18:15:38 | 000,288,768 | ---- | M] (T-Systems International GmbH) [Auto | Running] -- C:\Programme\T-Home\Dialerschutz-Software\DFInject.exe -- (DFSVC)
SRV - [2009.05.21 20:21:18 | 000,248,832 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2008.10.16 19:30:28 | 000,634,880 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\HPSLPSVC32.DLL -- (HPSLPSVC)
SRV - [2008.10.16 19:24:24 | 000,135,168 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2008.06.20 16:46:24 | 000,607,848 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\Shared\Tagger\tagsrv.exe -- (NITaggerService)
SRV - [2008.06.17 18:38:28 | 000,213,552 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\Shared\Security\nidmsrv.exe -- (NIDomainService)
SRV - [2008.06.17 18:38:16 | 000,050,736 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lktsrv.exe -- (lkTimeSync)
SRV - [2008.06.17 18:38:08 | 000,040,488 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lkads.exe -- (lkClassAds)
SRV - [2008.06.17 17:21:50 | 000,695,136 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lkcitdl.exe -- (LkCitadelServer)
SRV - [2007.11.06 16:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nisvcloc.exe -- (niSvcLoc)
SRV - [2007.10.31 09:20:36 | 001,007,616 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\National Instruments\Shared\License Manager\Bin\lmgrd.exe -- (NILM License Manager)
SRV - [2007.08.03 14:59:24 | 000,012,696 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\MAX\nimxs.exe -- (mxssvr)
SRV - [2007.05.09 16:34:34 | 000,098,304 | ---- | M] (OPC Foundation) [On_Demand | Stopped] -- C:\WINDOWS\system32\Opcenum.exe -- (OpcEnum)
SRV - [2007.01.09 17:16:12 | 000,061,440 | ---- | M] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe -- (MZCCntrl)
SRV - [2003.07.28 12:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013.04.13 01:53:06 | 001,000,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20130412.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013.02.18 15:38:03 | 000,033,112 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013.02.05 22:13:59 | 001,603,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130417.025\NAVEX15.SYS -- (NAVEX15)
DRV - [2013.02.05 22:13:58 | 000,093,296 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130417.025\NAVENG.SYS -- (NAVENG)
DRV - [2012.09.06 04:54:30 | 000,373,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\IPSDefs\20130417.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2012.08.15 14:43:46 | 000,141,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2012.08.09 09:26:05 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2012.08.09 09:26:05 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012.07.06 04:17:57 | 000,574,112 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\srtsp.sys -- (SRTSP)
DRV - [2012.07.06 04:17:57 | 000,032,928 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\srtspx.sys -- (SRTSPX)
DRV - [2012.06.07 06:43:43 | 000,132,768 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\ccsetx86.sys -- (ccSet_N360)
DRV - [2012.05.22 03:37:12 | 000,924,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\symefa.sys -- (SymEFA)
DRV - [2011.11.23 20:23:20 | 000,044,024 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP)
DRV - [2011.11.23 20:23:20 | 000,044,024 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM)
DRV - [2011.11.16 21:38:00 | 000,388,216 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\symtdi.sys -- (SYMTDI)
DRV - [2011.11.16 21:17:48 | 000,149,624 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\ironx86.sys -- (SymIRON)
DRV - [2011.08.16 00:51:40 | 000,340,088 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\N360\0604010.00E\symds.sys -- (SymDS)
DRV - [2010.08.27 14:23:08 | 000,019,200 | ---- | M] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH) [Kernel | On_Demand | Stopped] -- C:\Programme\T-Online\T-Online_Software_6\Basis-Software\Basis1\MTOnlPktAlyx.sys -- (MTOnlPktAlyX)
DRV - [2010.05.14 14:14:22 | 000,082,380 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)
DRV - [2009.10.15 18:14:38 | 000,024,352 | ---- | M] (T-Systems International GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SipIMNDI.sys -- (SipIMNDI)
DRV - [2009.10.15 18:14:38 | 000,014,624 | ---- | M] (T-Systems International GmbH) [Kernel | On_Demand | Running] -- C:\Programme\T-Home\Dialerschutz-Software\DFSYS.sys -- (DFSYS)
DRV - [2008.04.13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.07 11:00:00 | 000,004,096 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\cvintdrv.sys -- (cvintdrv)
DRV - [2008.01.10 16:18:44 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\NiViPxiKl.sys -- (NiViPxiK)
DRV - [2008.01.10 16:18:44 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NiViPciKl.sys -- (NiViPciK)
DRV - [2007.12.14 13:41:28 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nidimkl.sys -- (nidimk)
DRV - [2007.12.14 13:18:50 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niorbkl.sys -- (niorbk)
DRV - [2007.12.13 00:23:46 | 000,011,904 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipalfwedl.sys -- (nipalfwedl)
DRV - [2007.12.13 00:22:56 | 000,588,376 | ---- | M] (National Instruments Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nipalk.sys -- (NIPALK)
DRV - [2007.12.13 00:22:42 | 000,011,896 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipalusbedl.sys -- (nipalusbedl)
DRV - [2007.07.19 11:48:36 | 000,011,384 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NiViFWKl.sys -- (NiViFWK)
DRV - [2007.07.10 20:08:14 | 000,015,448 | ---- | M] (National Instruments Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nipbcfk.sys -- (nipbcfk)
DRV - [2006.10.09 15:03:56 | 000,017,152 | ---- | M] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH) [Kernel | On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MInfraIS\MIINPazx.sys -- (MIINPazX)
DRV - [2006.10.04 09:14:26 | 000,017,280 | ---- | M] (Marmiko IT-Solutions GmbH) [Kernel | On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MAcNdis5.sys -- (MACNDIS5)
DRV - [2004.08.04 00:38:58 | 000,701,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2002.10.31 05:58:42 | 000,030,848 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SISAGPX.SYS -- (SISAGP)
DRV - [2002.07.10 17:39:34 | 000,032,256 | R--- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-725345543-412668190-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKU\S-1-5-21-725345543-412668190-839522115-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-725345543-412668190-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-725345543-412668190-839522115-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
IE - HKU\S-1-5-21-725345543-412668190-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: plugin%40disabled.com:1.20.02
FF - prefs.js..extensions.enabledAddons: %7B2D3F3651-74B9-4795-BDEC-6DA2F431CB62%7D:2012.5.13.5
FF - prefs.js..extensions.enabledAddons: %7BBBDA0591-3099-440a-AA10-41764D9DB4DB%7D:11.3.0.9%20-%204
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@innoplus.de/ino3DViewer: C:\Programme\innoplus\3D-Viewer-innoPlus\npIno3DViewer.dll (INNOVA-engineering GmbH Dresden)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\IPSFFPlgn\ [2012.08.16 10:57:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\coFFPlgn\ [2013.04.18 13:00:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Programme\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2010.08.05 20:06:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2013.04.12 08:29:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2013.04.12 08:29:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Programme\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2010.08.05 20:06:14 | 000,000,000 | ---D | M]
[2013.04.18 12:51:04 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Extensions
[2013.04.18 12:51:13 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default\extensions
[2013.01.22 11:40:55 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Mozilla\Firefox\Profiles\v1yxvkb2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013.04.12 08:29:25 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2013.04.12 08:29:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
File not found (No name found) -- C:\DOKUMENTE UND EINSTELLUNGEN\ADELMANN\ANWENDUNGSDATEN\MOZILLA\FIREFOX\PROFILES\V1YXVKB2.DEFAULT\EXTENSIONS\PLUGIN@YONTOO.COM.XPI
[2013.04.18 13:00:15 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOKUMENTE UND EINSTELLUNGEN\ALL USERS\ANWENDUNGSDATEN\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\COFFPLGN
[2012.08.16 10:57:36 | 000,000,000 | ---D | M] (Norton Vulnerability Protection) -- C:\DOKUMENTE UND EINSTELLUNGEN\ALL USERS\ANWENDUNGSDATEN\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\IPSFFPLGN
[2013.04.12 08:29:38 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2008.06.25 23:51:02 | 000,023,040 | ---- | M] (National Instruments) -- C:\Programme\mozilla firefox\plugins\nplv86win32.dll
[2013.04.04 12:15:23 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013.04.04 12:15:23 | 000,002,465 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2013.04.04 12:15:23 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2013.04.04 12:15:22 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2013.04.04 12:15:22 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2013.04.04 12:15:22 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2013.04.17 19:51:01 | 000,049,455 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 00aaf101a7.gougava.asia # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 08sr.combineads.info # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 08srvr.combineads.info # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 12srvr.combineads.info # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 1a2e115593.efacen.pro # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 1f1.fr # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 2010-fr.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 2012-new.biz # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 2319825.ourtoolbar.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 24h00business.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 4672ee0bc8.laibritec.waw.pl # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 4990usd.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 4xp.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 74.80.131.123 # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 78031d2298.tradorad.waw.pl # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 80323fcc6e.starsogor.waw.pl # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 8e47c22037.temavi.pro # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 96910cbcd4.nicero.pro # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 96fb625592.tysofque.waw.pl:82 # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 98eu.info # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 ack.cdnperformance.info # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 acking.conversionads.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 a.daasafterdusk.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 ad.adn360.com # hosts anti-adware / pups
O1 - Hosts: 127.0.0.1 adeartss.eu # hosts anti-adware / pups
O1 - Hosts: 847 more lines...
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Programme\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programme\Norton 360\Engine\6.4.1.14\coieplg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programme\Norton 360\Engine\6.4.1.14\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Programme\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton 360\Engine\6.4.1.14\coieplg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-725345543-412668190-839522115-1003\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton 360\Engine\6.4.1.14\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [HP Software Update] C:\Programme\Hewlett-Packard\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HTpatch] C:\WINDOWS\htpatch.exe ()
O4 - HKLM..\Run: [LexwareInfoService] C:\Programme\Gemeinsame Dateien\Lexware\Update Manager\LxUpdateManager.exe (Haufe-Lexware GmbH & Co. KG)
O4 - HKLM..\Run: [Share-to-Web Namespace Daemon] C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe (Hewlett-Packard)
O4 - HKLM..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe (Silicon Integrated Systems Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [T-Home Dialerschutz-Software] C:\Programme\T-Home\Dialerschutz-Software\Defender.exe (T-Systems International GmbH)
O4 - HKLM..\Run: [vProt] "C:\Programme\AVG Secure Search\vprot.exe" File not found
O4 - HKU\.DEFAULT..\Run: [InfoCockpit] C:\Programme\T-Online\T-Online_Software_6\Info-Cockpit\IC_START.EXE (Deutsche Telekom AG, T-Com)
O4 - HKU\S-1-5-18..\Run: [InfoCockpit] C:\Programme\T-Online\T-Online_Software_6\Info-Cockpit\IC_START.EXE (Deutsche Telekom AG, T-Com)
O4 - HKU\S-1-5-19..\Run: [InfoCockpit] C:\Programme\T-Online\T-Online_Software_6\Info-Cockpit\IC_START.EXE (Deutsche Telekom AG, T-Com)
O4 - HKU\S-1-5-20..\Run: [InfoCockpit] C:\Programme\T-Online\T-Online_Software_6\Info-Cockpit\IC_START.EXE (Deutsche Telekom AG, T-Com)
O4 - HKU\S-1-5-21-725345543-412668190-839522115-1003..\Run: [1&1 SMS-Manager] C:\Programme\1&1\SMS-Manager\SMSMngr.exe (1&1 Internet AG)
O4 - HKU\S-1-5-21-725345543-412668190-839522115-1003..\Run: [RDReminder] C:\Programme\RegClean Pro\RegCleanPro.exe -rem File not found
O4 - Startup: C:\Dokumente und Einstellungen\Adelmann\Startmenü\Programme\Autostart\Dropbox.lnk = C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Acrobat Assistant.lnk = C:\Programme\Adobe\Acrobat 4.0\Distillr\AcroTray.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Corel MEDIA FOLDERS INDEXER 8.LNK = C:\Programme\Programs\MFIndexer.exe (Corel Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\HP Digital Imaging Monitor.lnk = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hp psc 2000 Series.lnk = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe (Hewlett-Packard Co.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-725345543-412668190-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_02\bin\npjpi160_02.dll (Sun Microsystems, Inc.)
O9 - Extra Button: HP Intelligente Auswahl - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Programme\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{25458895-DCAC-453B-8959-6243141E24B7}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.05.14 13:15:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2fb97f56-6970-11df-a8b1-000b6a4db911}\Shell\AutoRun\command - "" = browser.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2013.04.18 13:05:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Adelmann\Desktop\OTL.exe
[2013.04.18 12:57:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2013.04.16 15:36:06 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Malwarebytes
[2013.04.16 15:35:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2013.04.16 15:35:27 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.04.16 15:35:26 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2013.04.16 08:51:50 | 000,044,024 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SymIM.sys
[2013.04.12 08:29:24 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox
[2013.03.25 05:42:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\OpenLP 2.0
[2013.03.25 05:41:59 | 000,000,000 | ---D | C] -- C:\Programme\OpenLP
[2013.03.25 04:58:31 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\enchant
[2013.03.25 04:45:43 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\openlp
[2010.09.24 14:58:25 | 025,480,984 | ---- | C] (NAVIGON AG) -- C:\Programme\NAVIGON_Fresh_setup.exe
[2010.07.29 18:47:18 | 054,219,360 | ---- | C] (Macrovision Corporation) -- C:\Programme\ElsterFormular2007-Setup.exe
[2010.07.29 18:33:39 | 058,139,008 | ---- | C] (Landesfinanzdirektion Thüringen) -- C:\Programme\ElsterFormular-11.5.0.4546.exe
[2010.06.21 16:22:31 | 008,188,856 | ---- | C] (Mozilla) -- C:\Programme\Firefox%20Setup%203.6.3.exe
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.04.18 13:18:15 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.04.18 13:06:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Adelmann\Desktop\OTL.exe
[2013.04.18 13:00:41 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.04.18 12:59:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.04.18 12:59:03 | 2147,012,608 | -HS- | M] () -- C:\hiberfil.sys
[2013.04.18 12:38:06 | 001,267,788 | ---- | M] () -- C:\Dokumente und Einstellungen\Adelmann\Desktop\zoek.exe
[2013.04.17 19:51:01 | 000,049,455 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013.04.17 15:49:00 | 000,000,388 | ---- | M] () -- C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2100 series#1274104149.job
[2013.04.16 21:43:39 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.04.16 21:43:39 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.04.16 15:35:34 | 000,000,756 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013.04.12 09:18:59 | 000,002,419 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Lexware financial office.lnk
[2013.04.11 09:51:48 | 000,313,176 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.04.10 23:34:19 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.04.02 17:10:19 | 000,003,077 | ---- | M] () -- C:\WINDOWS\WO4.INI
[2013.04.01 07:34:47 | 000,475,808 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.04.01 07:34:46 | 000,495,914 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2013.04.01 07:34:46 | 000,091,822 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2013.04.01 07:34:46 | 000,076,842 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.03.27 11:47:01 | 000,001,047 | ---- | M] () -- C:\Dokumente und Einstellungen\Adelmann\Startmenü\Programme\Autostart\Dropbox.lnk
[2013.03.27 11:44:24 | 000,001,045 | ---- | M] () -- C:\Dokumente und Einstellungen\Adelmann\Desktop\Dropbox.lnk
[2013.03.25 05:42:12 | 000,000,626 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\OpenLP.lnk
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.04.18 12:37:58 | 001,267,788 | ---- | C] () -- C:\Dokumente und Einstellungen\Adelmann\Desktop\zoek.exe
[2013.04.16 15:35:33 | 000,000,756 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013.03.25 05:42:12 | 000,000,626 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\OpenLP.lnk
[2012.10.07 13:23:10 | 000,207,488 | ---- | C] () -- C:\WINDOWS\System32\LXPrnUtil10.dll
[2012.10.07 13:23:08 | 000,138,368 | ---- | C] () -- C:\WINDOWS\System32\LxDNTvmc100.dll
[2012.10.07 13:23:08 | 000,074,368 | ---- | C] () -- C:\WINDOWS\System32\LxDNTvm100.dll
[2012.10.07 13:23:06 | 000,318,592 | ---- | C] () -- C:\WINDOWS\System32\LxDNT100.dll
[2012.06.26 23:11:43 | 000,017,408 | ---- | C] () -- C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Anwendungsdaten\WebpageIcons.db
[2012.02.16 00:41:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.08.23 16:26:59 | 000,001,292 | ---- | C] () -- C:\Dokumente und Einstellungen\Adelmann\bk_rufcustomerdata.xml
[2011.06.27 18:03:37 | 000,000,144 | ---- | C] () -- C:\WINDOWS\PCFK32.INI
[2011.05.13 10:03:16 | 000,303,104 | ---- | C] () -- C:\WINDOWS\System32\dnt27VC8.dll
[2011.05.13 10:01:22 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\dntvmc27VC8.dll
[2011.05.13 10:01:00 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\dntvm27VC8.dll
[2010.12.01 17:05:50 | 008,383,602 | ---- | C] () -- C:\Programme\reise3bde_setup.exe
[2010.11.08 21:15:34 | 007,858,598 | ---- | C] () -- C:\Programme\XP-Codec-Pack-2.5.1.exe
[2010.11.08 19:15:42 | 002,782,994 | ---- | C] () -- C:\Programme\DeepBurner19.exe
[2010.09.25 14:18:31 | 019,761,298 | ---- | C] () -- C:\Programme\vlc-1.1.4-win32.exe
[2010.08.15 12:08:05 | 151,343,200 | ---- | C] () -- C:\Programme\OOo_3.2.1_Win_x86_install_de.exe
[2010.08.04 18:08:20 | 004,077,877 | ---- | C] () -- C:\Programme\npp.5.7.Installer.exe
[2010.08.02 21:58:32 | 002,592,049 | ---- | C] () -- C:\Programme\dnviewer106.exe
[2010.05.26 15:20:00 | 011,862,974 | ---- | C] () -- C:\Programme\Setup.exe
[2010.05.17 20:25:53 | 000,003,114 | ---- | C] () -- C:\Programme\CorelDRAW 8 Filters Readme.html
[2010.05.17 20:25:53 | 000,001,778 | ---- | C] () -- C:\Programme\Corel DREAM 3D Readme.html
[2010.05.17 20:25:41 | 000,001,288 | ---- | C] () -- C:\Programme\CorelSCAN 8 Revisions.html
[2010.05.17 20:25:31 | 000,003,963 | ---- | C] () -- C:\Programme\CorelDRAW 8 Filters Revisions.html
[2010.05.17 20:25:06 | 000,095,804 | ---- | C] () -- C:\Programme\3rd Party Clipart Readme.html
[2010.05.17 20:25:06 | 000,001,900 | ---- | C] () -- C:\Programme\CorelTUTORS 8 Readme.html
[2010.05.17 20:24:57 | 000,019,186 | ---- | C] () -- C:\Programme\CorelDRAW 8 Revisions.html
[2010.05.17 20:24:57 | 000,002,064 | ---- | C] () -- C:\Programme\Corel Media Folders 8 Revisions.html
[2010.05.17 20:24:57 | 000,001,141 | ---- | C] () -- C:\Programme\Corel SCRIPT 8 Readme.html
[2010.05.17 20:24:46 | 000,007,367 | ---- | C] () -- C:\Programme\CorelSCAN 8 Readme.html
[2010.05.17 20:24:46 | 000,002,737 | ---- | C] () -- C:\Programme\OCRTrace Revisions.html
[2010.05.17 20:24:46 | 000,001,256 | ---- | C] () -- C:\Programme\Corel TEXTURE 8 Readme.html
[2010.05.17 20:24:34 | 000,002,649 | ---- | C] () -- C:\Programme\Corel Media Folders 8 Readme.html
[2010.05.17 20:24:22 | 000,001,032 | ---- | C] () -- C:\Programme\Online Help Updates for CorelDRAW 8 Suite.html
[2010.05.17 20:24:10 | 000,001,782 | ---- | C] () -- C:\Programme\CorelDRAW WEB Related Features Readme.html
[2010.05.17 20:24:02 | 000,000,077 | ---- | C] () -- C:\Programme\Drawreg.url
[2010.05.17 20:24:01 | 000,003,650 | ---- | C] () -- C:\Programme\CorelDRAW 8 Installation Notes.html
[2010.05.17 20:23:52 | 000,008,154 | ---- | C] () -- C:\Programme\CorelDRAW Printing and Color Managment Revisions.html
[2010.05.17 20:23:52 | 000,003,784 | ---- | C] () -- C:\Programme\CorelPHOTO-PAINT 8 Readme.html
[2010.05.17 20:23:52 | 000,001,521 | ---- | C] () -- C:\Programme\APPLICATION REVISIONS README.HTML
[2010.05.17 20:23:41 | 000,025,018 | ---- | C] () -- C:\Programme\Corel PHOTO-PAINT Revisions.html
[2010.05.17 20:23:31 | 000,003,421 | ---- | C] () -- C:\Programme\CorelDRAW Printing and Color Management Readme.html
[2010.05.17 20:23:02 | 000,027,967 | ---- | C] () -- C:\Programme\CorelDRAW 8 Readme.html
[2010.05.17 20:23:02 | 000,003,824 | ---- | C] () -- C:\Programme\newdaisy.gif
[2010.05.17 20:23:02 | 000,002,974 | ---- | C] () -- C:\Programme\Corel Readme.html
[2010.05.17 17:32:35 | 000,047,104 | ---- | C] () -- C:\Dokumente und Einstellungen\Adelmann\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.17 16:33:14 | 000,000,064 | ---- | C] () -- C:\Programme\WO4DAT.ldb
[2010.05.17 16:12:24 | 000,589,824 | ---- | C] () -- C:\Programme\WO4DAT.LW
[2010.05.17 16:12:24 | 000,589,824 | ---- | C] () -- C:\Programme\WO4DAT.001
[2010.05.15 16:23:40 | 000,000,251 | ---- | C] () -- C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\burnaware.ini
========== ZeroAccess Check ==========
[2010.05.14 15:29:02 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 04:22:25 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 12:51:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 04:22:32 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
< End of report > Code:
OTL Extras logfile created on: 18.04.2013 13:09:02 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Adelmann\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,00 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 48,47% Memory free
2,60 Gb Paging File | 1,68 Gb Available in Paging File | 64,41% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 48,83 Gb Total Space | 18,52 Gb Free Space | 37,93% Space Free | Partition Type: NTFS
Drive D: | 137,47 Gb Total Space | 85,20 Gb Free Space | 61,97% Space Free | Partition Type: NTFS
Computer Name: ADELMANN-2DCA8F | User Name: Adelmann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- c:\programme\t-online\t-online_software_6\browser\Browser.exe (Deutsche Telekom AG)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [open] -- c:\programme\t-online\t-online_software_6\browser\Browser.exe "%1" (Deutsche Telekom AG)
htmlfile [opennew] -- c:\programme\t-online\t-online_software_6\browser\Browser.exe "%1" (Deutsche Telekom AG)
http [open] -- c:\programme\t-online\t-online_software_6\browser\Browser.exe "%1" (Deutsche Telekom AG)
https [open] -- c:\programme\t-online\t-online_software_6\browser\Browser.exe "%1" (Deutsche Telekom AG)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\File Scout\filescout.exe" /open "%1"
Directory [AddToPlaylistVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposid01.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposid01.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Programme\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Programme\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- ()
"C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Dropbox\bin\Dropbox.exe" = C:\Dokumente und Einstellungen\Adelmann\Anwendungsdaten\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Programme\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Programme\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03A7C57A-B2C8-409b-92E5-524A0DFD0DD3}" = Status
"{07EC2A8F-AF18-4908-942A-3CD62E9FB4B7}" = NI License Manager
"{087A66B8-1F0F-4a8d-A649-0CFE276AA7C0}" = WebReg
"{0D433BBC-FCE3-4D6C-94A7-63CECAE787E7}" = NI-DIM 1.8.0f0
"{0FCF7010-B3AF-4401-B372-EA72ED4A781D}" = NI MDF Support
"{102CBC47-7FDE-4E6C-8A3A-67B79833FAC8}" = BPDSoftware_Ini
"{11B2F891-91C8-47ce-945A-A91003EA27FB}" = BPDSoftware
"{15243FFF-5903-4944-9602-A6B549F8C15F}" = NI USI 1.6.0
"{16AF46BD-5ED9-4E2B-84D4-DC40354BAD19}" = NI Trace Engine
"{18AB082B-6584-4F74-8ABC-D5935CF46E4C}" = 8500A909_eDocs
"{1A710265-096B-46CB-8849-53A209D9A8CF}" = NI Certificates Deployment Support
"{24B7F9A4-4FA8-437A-8289-2E473E7B4B53}" = NI Logos 5.0
"{26A24AE4-039D-4CA4-87B4-2F83217015FF}" = Java 7 Update 15
"{295C31E5-3F91-498E-9623-DA24D2FA2B6A}" = T-Online WLAN-Access Finder
"{2A329FB6-389D-4396-A974-29656D6864AE}" = MarketResearch
"{2CA542BC-E002-4064-84DB-49B3E558A26D}" = NI LabVIEW Run-Time Engine 8.6
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{432A850B-3558-4BFF-B1F9-30626835B523}" = BPD_DSWizards
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4D304678-738E-42a0-931A-2B022F49DEB8}" = TrayApp
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{4F42CCF8-B3A7-41B9-9875-1083CB62BAFA}" = NI Variable Engine
"{57F60D52-630B-43C5-BD20-176F5CD4EED6}" = bpd_scan
"{5AE08F40-EC9B-4B7E-B5A6-200A7E6DCB2A}" = Lexware financial office 2013
"{61C9A5EF-19A6-439F-BD48-5340BC10E4EC}" = NI EULA Depot
"{624E7452-BA43-4f55-B9D5-FC75EEA0808B}" = Officejet Pro 8500 A909 Series
"{62B7C52C-CAB6-48B1-8245-52356C141C92}" = RENESIS® Player Browser Plugins
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{65F9B90C-F705-468C-8CD2-01C086F871E9}" = NI LabVIEW Deployable License 8.6
"{671A5B67-1A00-424A-A902-49BC020FB3D1}" = NI VC2005MSMs x86
"{676981B7-A2D9-49D0-9F4C-03018F131DA9}" = DocProc
"{6991DAF8-91DB-4EA4-8D80-04789C646B66}" = NI Logos XT Support
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6EED4269-588D-45b8-A80C-26A9CA62EE4E}" = HPSSupply
"{6F7D11DC-DE87-45C8-A37E-A35B724FC771}" = NI Help Assistant
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7D55518D-A30E-46A7-A95C-BB2D7182907B}" = NI-PAL 2.2.0f0
"{800E784D-53E3-4948-B491-9E7FA5EACBDC}" = SmartWebPrinting
"{82DFB852-9594-4668-9C66-28BB6E94BCB2}" = HP Foto- und Bildbearbeitung 1.0 - [PRODUKTSERIE]
"{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87A9A9A9-FAB7-4224-9328-0FA2058C0FD5}" = Network
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AE7E507-BC49-4DF0-A236-26878691AB53}" = Lexware Info Service
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C7F62C5-03E8-409F-A7E4-F51E2AE15AD4}" = NI LabVIEW Web Server for Run-Time Engine
"{9CCCFD9C-248F-47FE-9496-1680E3E5C163}" = Scan
"{9F6BFB0F-6B1F-4D1A-A9DA-42F6794C9188}" = Lexware Elster
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A52BFE95-969C-4FEF-B455-BE0F6E9CF126}" = NI Service Locator
"{A760668E-EA7B-421D-B770-4D071F87F82E}" = NI OPC Support
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{AA16E04C-C2F5-44DE-B97B-4942FC5C44B4}" = NI-ORB 1.8.0f0
"{AA7699FA-B2D2-43F4-8A70-D497D03C9485}_is1" = OpenLP 2.0
"{AC13BA3A-336B-45a4-B3FE-2D3058A7B533}" = Toolbox
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.6) - Deutsch
"{B1275E23-717A-4D52-997A-1AD1E24BC7F3}" = T-Online 6.0
"{B2A28DB4-3423-4BF6-A800-D9B1442A5C93}" = NI LabVIEW Web Services Runtime
"{B495547C-01F8-4836-A2E6-749B5F3EA691}" = 8500A909_Help
"{B96DB037-DBEA-4186-9081-9CBD537F82E8}" = 3D-Viewer-innoplus
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BE53BB2F-FD8F-48b9-AC90-207D0D8EE028}" = 8500A909a
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C29C1940-CB85-4F3B-906C-33FEE0E67103}" = DocMgr
"{C3EC469F-6296-42BF-B282-2EA2C6B80B06}" = BDE
"{C4200803-B0DB-41AC-8573-B05498BF3842}" = NI Uninstaller
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CD8C5C7F-7C58-4F85-8977-A6C08C087912}" = MPM
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240D8}" = WinZip 17.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFB0F311-C051-4760-A64A-12CA2609E91A}" = NI TDMS
"{CFF2AF40-7799-4BB8-AFF9-88FE6350A31C}" = NI DataSocket 4.6.0
"{D2533218-3B3D-46C6-ABAA-898EB2908589}" = IVI VISA COM Standard Components
"{D88B4D82-11CD-4E56-872F-6E34A643D2DE}" = NI MXS
"{D97A3D76-14C0-44EC-9ACC-4DCB8527D98C}" = NI-RPC 3.4.1f0
"{DA8BF070-1358-4a30-A68F-21E0E9421AEF}" = ProductContext
"{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}" = NI Math Kernel Libraries
"{DCC02AC1-1A01-4A72-9B16-0E328803CD91}" = NI MXS 4.4.0f0 for LabVIEW Real-Time
"{DD680935-7AB8-4DD2-9464-46FA7A7BE8DA}" = NI-VISA Runtime 4.3
"{DE2D4A5E-DEC1-486C-9D15-4D3F24E44774}" = NI LabVIEW Real-Time NBFifo
"{DFAA3D2B-7087-464E-823B-738A23C29C27}" = Microsoft Visual J# 2.0 Redistributable Package - SE
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E8C5BD56-F5D8-41D3-8A71-273468FE256A}" = T-Home Dialerschutz-Software
"{ED93995E-8BF2-480F-8EA4-7D29E29A7052}" = HP Foto- und Bildbearbeitung 1.0 PSC 2000 Series Treiber
"{EEEB604C-C1A7-4f8c-B03F-56F9C1C9C45F}" = Fax
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F769B78E-FF0E-4db5-95E2-9F4C8D6352FE}" = DeviceDiscovery
"{FDEABB07-6AC3-41E1-A17C-CA5D9707EF72}" = NI-RPC 3.4.0f1 for Phar Lap ETS
"1&1 SMS-Manager" = 1&1 SMS-Manager
"Adobe Acrobat 4.0" = Adobe Acrobat 4.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.9
"BDE" = BDE
"BurnAware Free_is1" = BurnAware Free 2.4.6
"C-Media Audio" = C-Media 3D Audio
"Corel Uninstaller" = Corel Uninstaller
"DATANORM-Viewer" = DATANORM-Viewer
"ElsterFormular" = ElsterFormular
"HP Document Manager" = HP Document Manager 2.0
"HP Imaging Device Functions" = HP Imaging Device Functions 12.0
"hp psc 2100 series_Driver" = hp psc 2100 series
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 12.0
"HPOCR" = OCR Software by I.R.I.S. 12.0
"ie8" = Windows Internet Explorer 8
"IviVisaComStandardComponents" = IVI VISA COM Standard Components
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Visual J# 2.0 Redistributable Package - SE" = Microsoft Visual J# 2.0 Redistributable Package - SE
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"N360" = Norton 360
"NI Uninstaller" = National Instruments-Software
"OE-Infocenter_is1" = OE-Infocenter Version 4.0
"PSC 2000 Series" = HP Foto und Bildbearbeitung 1.0 - PSC 2000 Series
"Shop for HP Supplies" = Shop for HP Supplies
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"SLABCOMM&10C4&EA60" = Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
"sv.net" = sv.net
"VLC media player" = VLC media player 1.1.4
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XP Codec Pack" = XP Codec Pack
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-725345543-412668190-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 13.03.2013 12:36:55 | Computer Name = ADELMANN-2DCA8F | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module unknown, version 0.0.0.0, stamp 00000000, debug? 0, fault address
0x6754c493.
Error - 19.03.2013 08:03:46 | Computer Name = ADELMANN-2DCA8F | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung AcroRd32.exe, Version 10.1.6.1, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 19.03.2013 08:05:09 | Computer Name = ADELMANN-2DCA8F | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung AcroRd32.exe, Version 10.1.6.1, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 22.03.2013 12:22:54 | Computer Name = ADELMANN-2DCA8F | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung mail.exe, Version 6.10.0.5, fehlgeschlagenes
Modul mail.exe, Version 6.10.0.5, Fehleradresse 0x0005cf63.
Error - 22.03.2013 12:28:37 | Computer Name = ADELMANN-2DCA8F | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung POWERPNT.EXE, Version 11.0.8335.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 24.03.2013 22:58:42 | Computer Name = ADELMANN-2DCA8F | Source = Microsoft Office 11 | ID = 2001
Description = Rejected Safe Mode action : Microsoft Office PowerPoint.
Error - 01.04.2013 00:35:24 | Computer Name = ADELMANN-2DCA8F | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module unknown, version 0.0.0.0, stamp 00000000, debug? 0, fault address
0x6754c493.
Error - 01.04.2013 01:29:22 | Computer Name = ADELMANN-2DCA8F | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung browser.exe, Version 6.13.150.3, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 01.04.2013 01:30:01 | Computer Name = ADELMANN-2DCA8F | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung browser.exe, Version 6.13.150.3, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 12.04.2013 06:41:43 | Computer Name = ADELMANN-2DCA8F | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung mail.exe, Version 6.10.0.5, fehlgeschlagenes
Modul tollay32.dll, Version 2.0.2.4, Fehleradresse 0x0006f563.
[ System Events ]
Error - 17.04.2013 13:44:31 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7034
Description = Dienst "NI Configuration Manager" wurde unerwartet beendet. Dies ist
bereits 1 Mal passiert.
Error - 17.04.2013 13:47:41 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7000
Description = Der Dienst "vToolbarUpdater14.2.0" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 17.04.2013 13:47:46 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
gagp30kx
Error - 17.04.2013 20:12:54 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7034
Description = Dienst "NI Configuration Manager" wurde unerwartet beendet. Dies ist
bereits 1 Mal passiert.
Error - 17.04.2013 20:15:33 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7000
Description = Der Dienst "vToolbarUpdater14.2.0" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 17.04.2013 20:15:34 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
gagp30kx
Error - 17.04.2013 20:16:38 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7009
Description = Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst Gatewaydienst
auf Anwendungsebene.
Error - 17.04.2013 20:16:38 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Gatewaydienst auf Anwendungsebene" wurde aufgrund folgenden
Fehlers nicht gestartet: %%1053
Error - 18.04.2013 07:00:29 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7000
Description = Der Dienst "vToolbarUpdater14.2.0" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 18.04.2013 07:00:30 | Computer Name = ADELMANN-2DCA8F | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
gagp30kx
< End of report > |