| Thommi190 | 27.07.2010 15:57 |
Ok, da bin ich wieder. Netzteil war tatsächlich Schrott...
OTL Logfile: Code:
OTL logfile created on: 27.07.2010 16:48:43 - Run 3
OTL by OldTimer - Version 3.2.9.1 Folder = D:\Dokumente und Einstellungen\Thomas\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1.023,00 Mb Total Physical Memory | 599,00 Mb Available Physical Memory | 59,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768D:\pagefile.sys 2 2 [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Programme
Drive C: | 55,89 Gb Total Space | 37,09 Gb Free Space | 66,36% Space Free | Partition Type: NTFS
Drive D: | 46,87 Gb Total Space | 25,19 Gb Free Space | 53,76% Space Free | Partition Type: NTFS
Drive E: | 9,02 Gb Total Space | 5,73 Gb Free Space | 63,48% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Thomas
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.07.19 22:51:19 | 000,574,976 | ---- | M] (OldTimer Tools) -- D:\Dokumente und Einstellungen\Thomas\Desktop\OTL.exe
PRC - [2010.05.14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- D:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2010.04.01 13:33:15 | 000,267,432 | ---- | M] (Avira GmbH) -- D:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2010.03.02 11:28:23 | 000,282,792 | ---- | M] (Avira GmbH) -- D:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.02.24 10:28:01 | 000,135,336 | ---- | M] (Avira GmbH) -- D:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2010.01.15 14:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- D:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2010.01.14 22:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- D:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.04.30 13:23:26 | 000,090,112 | ---- | M] () -- D:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe
PRC - [2007.06.27 21:11:49 | 000,068,856 | ---- | M] (Google Inc.) -- D:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2007.01.15 17:14:54 | 000,147,456 | ---- | M] (Nero AG) -- D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.01.15 17:13:50 | 001,208,320 | ---- | M] (Nero AG) -- D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.01.15 17:01:56 | 000,266,240 | ---- | M] (Nero AG) -- D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
PRC - [2006.01.12 21:52:32 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- D:\Programme\Adobe\Acrobat 7.0\Distillr\acrotray.exe
PRC - [2005.11.11 15:07:00 | 000,090,112 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\soundman.exe
PRC - [2005.09.24 09:05:38 | 000,032,256 | ---- | M] (Adobe Systems Incorporated) -- D:\Programme\Adobe\Acrobat 7.0\Acrobat\acrobat_sl.exe
PRC - [2003.06.20 09:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- D:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
========== Modules (SafeList) ==========
MOD - [2010.07.19 22:51:19 | 000,574,976 | ---- | M] (OldTimer Tools) -- D:\Dokumente und Einstellungen\Thomas\Desktop\OTL.exe
MOD - [2008.04.14 04:21:06 | 000,110,592 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- D:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- D:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010.04.01 13:33:15 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010.02.24 10:28:01 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.04.30 13:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- D:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
SRV - [2007.02.01 12:20:31 | 000,069,632 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- D:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2007.01.15 17:01:56 | 000,266,240 | ---- | M] (Nero AG) [On_Demand | Running] -- D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2003.06.20 09:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe -- (MDM)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Auto | Stopped] -- D:\WINDOWS\System32\DRIVERS\NVxbar.sys -- (NVXBAR)
DRV - File not found [Kernel | Auto | Stopped] -- D:\WINDOWS\System32\DRIVERS\nvcap.sys -- (nvcap) nVidia WDM Video Capture (universal)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\dbox2\PACKET.SYS -- (NPF)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\WINDOWS\System32\DRIVERS\TS154USB.sys -- (DT154_A02)
DRV - [2010.03.01 10:05:19 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010.02.16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- D:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009.05.11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.02.13 12:35:01 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.05.16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008.05.16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008.05.16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008.05.16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008.05.16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2008.04.13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.01.09 11:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2006.10.22 13:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005.11.22 15:44:00 | 003,804,416 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.11.05 17:43:58 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\sisnicxp.sys -- (SISNICXP)
DRV - [2004.10.13 12:56:10 | 000,462,212 | ---- | M] (B2C2, Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\SkyNet.sys -- (SKYNET)
DRV - [2004.08.04 07:31:34 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2003.04.15 09:58:26 | 000,054,784 | ---- | M] (OrangeWare Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ousb2hub.sys -- (ousb2hub)
DRV - [2003.04.15 09:58:26 | 000,040,320 | ---- | M] (OrangeWare Corporation) [Kernel | Auto | Running] -- D:\WINDOWS\system32\drivers\ousbehci.sys -- (ousbehci)
DRV - [2002.09.26 14:41:58 | 000,029,312 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\SISAGPX.sys -- (sisagp)
DRV - [2002.07.29 14:15:26 | 000,024,288 | R--- | M] (Philips Semiconductors) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune)
DRV - [2002.07.29 14:14:00 | 000,424,704 | R--- | M] (Philips Semiconductors) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134) MEDION (7134)
DRV - [2002.07.01 16:10:40 | 000,638,366 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ctxs51.sys -- (Intels51)
DRV - [2001.08.17 15:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Google Toolbar
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.7\extensions\\Components: D:\Programme\Mozilla Firefox\components [2010.07.23 12:01:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.7\extensions\\Plugins: D:\Programme\Mozilla Firefox\plugins [2010.07.23 12:01:41 | 000,000,000 | ---D | M]
[2010.03.02 13:01:30 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Thomas\Anwendungsdaten\Mozilla\Extensions
[2009.11.12 20:30:30 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Thomas\Anwendungsdaten\Mozilla\Extensions\mozswing@mozswing.org
[2010.07.23 12:00:33 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Thomas\Anwendungsdaten\Mozilla\Firefox\Profiles\aohix22q.default\extensions
[2010.06.16 13:12:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- D:\Dokumente und Einstellungen\Thomas\Anwendungsdaten\Mozilla\Firefox\Profiles\aohix22q.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.07.23 12:00:33 | 000,000,000 | ---D | M] -- D:\Programme\Mozilla Firefox\extensions
[2010.07.22 17:36:19 | 000,000,000 | ---D | M] (Java Console) -- D:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.07.22 17:35:38 | 000,423,656 | ---- | M] (Oracle) -- D:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.06.29 12:54:54 | 000,001,392 | ---- | M] () -- D:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.06.29 12:54:54 | 000,002,344 | ---- | M] () -- D:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.06.29 12:54:54 | 000,006,805 | ---- | M] () -- D:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.06.29 12:54:54 | 000,001,178 | ---- | M] () -- D:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.06.29 12:54:54 | 000,001,105 | ---- | M] () -- D:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2001.08.18 14:00:00 | 000,000,820 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - D:\Programme\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Programme\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - D:\Programme\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 7.0] D:\Programme\Adobe\Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [avgnt] D:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Easy-PrintToolBox] D:\Programme\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [NeroFilterCheck] D:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] D:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] D:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] D:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] D:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] D:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [swg] D:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [updateMgr] D:\Programme\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O4 - Startup: D:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Acrobat - Schnellstart.lnk = D:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe ()
O4 - Startup: D:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Gamma Loader.lnk = D:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: D:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk = D:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: D:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk = D:\Programme\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Easy-WebPrint - Drucken - D:\Programme\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint - Schnelldruck - D:\Programme\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint - Vorschau - D:\Programme\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint - Zu Druckliste hinzufügen - D:\Programme\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Google Sidewiki... - D:\Programme\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O8 - Extra context menu item: In Adobe PDF konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - D:\Programme\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - D:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1155400180074 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155400143777 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} hxxp://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab (IPSUploader4 Control)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} hxxp://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab (IPSUploader Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - D:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - D:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: D:\Dokumente und Einstellungen\Thomas\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: D:\Dokumente und Einstellungen\Thomas\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.03.17 20:14:59 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.07.22 18:35:16 | 000,000,000 | ---D | C] -- D:\Programme\ESET
[2010.07.22 17:36:16 | 000,153,376 | ---- | C] (Oracle) -- D:\WINDOWS\System32\javaws.exe
[2010.07.22 17:36:16 | 000,145,184 | ---- | C] (Oracle) -- D:\WINDOWS\System32\javaw.exe
[2010.07.22 17:36:16 | 000,145,184 | ---- | C] (Oracle) -- D:\WINDOWS\System32\java.exe
[2010.07.22 17:36:16 | 000,073,728 | ---- | C] (Oracle) -- D:\WINDOWS\System32\javacpl.cpl
[2010.07.22 17:35:11 | 000,000,000 | ---D | C] -- D:\Programme\Java
[2010.07.21 15:56:35 | 000,000,000 | ---D | C] -- D:\Programme\VS Revo Group
[2010.07.20 21:29:16 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- D:\Dokumente und Einstellungen\Thomas\Desktop\mbam-setup.exe
[2010.07.19 22:51:12 | 000,574,976 | ---- | C] (OldTimer Tools) -- D:\Dokumente und Einstellungen\Thomas\Desktop\OTL.exe
[2010.07.18 19:07:18 | 000,000,000 | ---D | C] -- D:\rsit
[2010.07.18 18:29:24 | 000,000,000 | ---D | C] -- D:\Dokumente und Einstellungen\Thomas\Anwendungsdaten\Malwarebytes
[2010.07.18 18:29:06 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.07.18 18:29:03 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbam.sys
[2010.07.18 18:29:03 | 000,000,000 | ---D | C] -- D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2010.07.18 18:29:02 | 000,000,000 | ---D | C] -- D:\Programme\Malwarebytes' Anti-Malware
[2010.07.18 18:18:44 | 000,000,000 | RH-D | C] -- D:\Dokumente und Einstellungen\Thomas\Recent
[2010.07.18 10:37:03 | 000,054,442 | R--- | C] (BBCWO) -- D:\WINDOWS\System32\drivers\LWBHMSYS.SYS
[2010.07.14 11:29:32 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\helpsvc.exe
[2010.07.11 13:31:23 | 000,000,000 | ---D | C] -- D:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\McAfee
[2010.07.08 18:56:43 | 000,000,000 | ---D | C] -- D:\Programme\Trend Micro
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.07.27 16:48:01 | 000,001,044 | ---- | M] () -- D:\WINDOWS\tasks\Google Software Updater.job
[2010.07.27 16:45:02 | 000,002,319 | ---- | M] () -- D:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Acrobat - Schnellstart.lnk
[2010.07.27 16:44:53 | 000,088,566 | ---- | M] () -- D:\WINDOWS\System32\nvapps.xml
[2010.07.27 16:44:31 | 000,002,422 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2010.07.27 16:44:21 | 000,001,084 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.07.27 16:19:01 | 000,001,088 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.07.27 13:30:47 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT
[2010.07.27 13:30:44 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2010.07.23 16:46:08 | 004,980,736 | -H-- | M] () -- D:\Dokumente und Einstellungen\Thomas\NTUSER.DAT
[2010.07.23 16:40:11 | 000,000,300 | -HS- | M] () -- D:\Dokumente und Einstellungen\Thomas\ntuser.ini
[2010.07.22 17:35:36 | 000,153,376 | ---- | M] (Oracle) -- D:\WINDOWS\System32\javaws.exe
[2010.07.22 17:35:36 | 000,145,184 | ---- | M] (Oracle) -- D:\WINDOWS\System32\javaw.exe
[2010.07.22 17:35:36 | 000,145,184 | ---- | M] (Oracle) -- D:\WINDOWS\System32\java.exe
[2010.07.22 17:35:36 | 000,073,728 | ---- | M] (Oracle) -- D:\WINDOWS\System32\javacpl.cpl
[2010.07.22 17:35:34 | 000,423,656 | ---- | M] (Oracle) -- D:\WINDOWS\System32\deployJava1.dll
[2010.07.22 12:15:04 | 000,000,276 | ---- | M] () -- D:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.07.21 15:56:36 | 000,000,895 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\Revo Uninstaller.lnk
[2010.07.20 21:35:13 | 000,000,682 | ---- | M] () -- D:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.07.20 21:33:50 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- D:\Dokumente und Einstellungen\Thomas\Desktop\mbam-setup.exe
[2010.07.19 22:51:19 | 000,574,976 | ---- | M] (OldTimer Tools) -- D:\Dokumente und Einstellungen\Thomas\Desktop\OTL.exe
[2010.07.19 21:53:25 | 000,077,312 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\mbr.exe
[2010.07.19 17:51:44 | 000,293,376 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\vbpfx4hm.exe
[2010.07.19 17:47:52 | 000,046,648 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
[2010.07.18 21:38:56 | 000,121,344 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\Hallo Forum.doc
[2010.07.18 20:20:08 | 000,204,120 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010.07.18 19:05:53 | 000,000,786 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\Verknüpfung mit RSIT.exe.lnk
[2010.07.18 18:23:47 | 000,000,290 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182342.reg
[2010.07.18 18:23:25 | 000,004,514 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182309.reg
[2010.07.18 18:22:49 | 000,274,900 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182142.reg
[2010.07.18 18:13:42 | 000,000,660 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\CCleaner.lnk
[2010.07.16 23:16:20 | 000,000,157 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\default.pls
[2010.07.15 08:10:29 | 000,000,650 | ---- | M] () -- D:\WINDOWS\win.ini
[2010.07.08 18:56:43 | 000,001,704 | ---- | M] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\HijackThis.lnk
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.07.21 15:56:36 | 000,000,895 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\Revo Uninstaller.lnk
[2010.07.19 21:53:23 | 000,077,312 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\mbr.exe
[2010.07.19 17:51:43 | 000,293,376 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\vbpfx4hm.exe
[2010.07.18 21:15:18 | 000,121,344 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\Hallo Forum.doc
[2010.07.18 19:05:53 | 000,000,786 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\Verknüpfung mit RSIT.exe.lnk
[2010.07.18 18:29:10 | 000,000,682 | ---- | C] () -- D:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.07.18 18:23:45 | 000,000,290 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182342.reg
[2010.07.18 18:23:13 | 000,004,514 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182309.reg
[2010.07.18 18:21:52 | 000,274,900 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Eigene Dateien\cc_20100718_182142.reg
[2010.07.18 18:13:42 | 000,000,660 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\CCleaner.lnk
[2010.07.08 18:56:43 | 000,001,704 | ---- | C] () -- D:\Dokumente und Einstellungen\Thomas\Desktop\HijackThis.lnk
[2010.01.31 22:19:38 | 000,000,000 | ---- | C] () -- D:\WINDOWS\OpPrintServer.INI
[2008.10.07 17:59:02 | 000,015,873 | ---- | C] () -- D:\WINDOWS\System32\Inetde.dll
[2008.02.09 16:57:16 | 000,000,000 | ---- | C] () -- D:\WINDOWS\WATCH.INI
[2008.02.09 16:47:46 | 000,046,512 | ---- | C] () -- D:\WINDOWS\System32\EPSN.DLL
[2008.02.09 16:47:46 | 000,012,126 | ---- | C] () -- D:\WINDOWS\System32\PIXPCZ.DLL
[2008.02.09 16:47:46 | 000,011,934 | ---- | C] () -- D:\WINDOWS\System32\PIXPNR.DLL
[2008.02.06 20:12:41 | 000,000,407 | ---- | C] () -- D:\WINDOWS\ulead32.ini
[2007.02.28 02:11:08 | 000,157,184 | ---- | C] () -- D:\WINDOWS\System32\RtlCPAPI.dll
[2007.02.02 01:24:21 | 000,233,472 | ---- | C] () -- D:\WINDOWS\System32\lame_enc.dll
[2007.02.01 01:35:02 | 000,000,400 | ---- | C] () -- D:\WINDOWS\ODBC.INI
[2007.01.30 01:43:59 | 000,000,182 | ---- | C] () -- D:\WINDOWS\NeroDigital.ini
[2006.10.22 13:22:00 | 001,662,976 | ---- | C] () -- D:\WINDOWS\System32\nvwdmcpl.dll
[2006.10.22 13:22:00 | 001,470,464 | ---- | C] () -- D:\WINDOWS\System32\nview.dll
[2006.10.22 13:22:00 | 001,019,904 | ---- | C] () -- D:\WINDOWS\System32\nvwimg.dll
[2006.10.22 13:22:00 | 000,581,632 | ---- | C] () -- D:\WINDOWS\System32\nvhwvid.dll
[2006.10.22 13:22:00 | 000,466,944 | ---- | C] () -- D:\WINDOWS\System32\nvshell.dll
[2006.10.22 13:22:00 | 000,286,720 | ---- | C] () -- D:\WINDOWS\System32\nvnt4cpl.dll
[2006.10.22 13:22:00 | 000,212,992 | ---- | C] () -- D:\WINDOWS\System32\nvapi.dll
< End of report >
--- --- ---
OTL Logfile: Code:
OTL Extras logfile created on: 27.07.2010 16:48:43 - Run 3
OTL by OldTimer - Version 3.2.9.1 Folder = D:\Dokumente und Einstellungen\Thomas\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1.023,00 Mb Total Physical Memory | 599,00 Mb Available Physical Memory | 59,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768D:\pagefile.sys 2 2 [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Programme
Drive C: | 55,89 Gb Total Space | 37,09 Gb Free Space | 66,36% Space Free | Partition Type: NTFS
Drive D: | 46,87 Gb Total Space | 25,19 Gb Free Space | 53,76% Space Free | Partition Type: NTFS
Drive E: | 9,02 Gb Total Space | 5,73 Gb Free Space | 63,48% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Thomas
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "D:\Programme\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Programme\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\dbox2\DBox_Boot.exe" = C:\dbox2\DBox_Boot.exe:*:Enabled:DBox II Boot-Manager -- File not found
"C:\Programme\TuxVision\TuxVision.exe" = C:\Programme\TuxVision\TuxVision.exe:*:Enabled:TV-Viewing App for the DBOXII -- File not found
"D:\Programme\NGrab\NGrab.exe" = D:\Programme\NGrab\NGrab.exe:*:Enabled:NGrab -- (TelePart AG)
"D:\Programme\Nero\Nero 7\Nero ShowTime\ShowTime.exe" = D:\Programme\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime -- (Nero AG)
"C:\Programme\LimeWire\LimeWire.exe" = C:\Programme\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Programme\DBoxBoot\DBox_Boot.exe" = C:\Programme\DBoxBoot\DBox_Boot.exe:*:Enabled:DBox II Boot-Manager -- File not found
"D:\Programme\LogoViewer\LogoViewer.exe" = D:\Programme\LogoViewer\LogoViewer.exe:*:Enabled:TuxBox Logo Viewer -- (Lost Technology)
"C:\Programme\NGrab\ngrab.exe" = C:\Programme\NGrab\ngrab.exe:*:Enabled:ngrab -- File not found
"C:\Programme\VideoLan Client für D-Box\VLC\vlc.exe" = C:\Programme\VideoLan Client für D-Box\VLC\vlc.exe:*:Enabled:VLC media player -- File not found
"D:\WINDOWS\system32\ftp.exe" = D:\WINDOWS\system32\ftp.exe:*:Enabled:Programm zur Dateiübertragung -- (Microsoft Corporation)
"D:\Programme\Nero\Nero 7\Nero Home\NeroHome.exe" = D:\Programme\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home -- (Nero AG)
"D:\Programme\Gemeinsame Dateien\Ahead\Nero Web\SetupX.exe" = D:\Programme\Gemeinsame Dateien\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"D:\Programme\Sony Ericsson\Update Service\Update Service.exe" = D:\Programme\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service -- ()
"D:\Programme\LimeWire\LimeWire.exe" = D:\Programme\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"D:\WINDOWS\explorer.exe" = D:\WINDOWS\explorer.exe:*:Disabled:Windows Explorer -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{05F0C917-2EDA-497A-A023-40411E75E58E}" = TuxVision
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4300" = Canon iP4300
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.009.00
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{42F7C377-2A1F-44FB-A17F-053C29E81031}" = Nero 7
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D400407-6332-4101-8C78-506C85813506}" = Sony Ericsson OCS
"{74EC78BC-B379-4E29-9006-8F161DCAABA6}" = Apple Software Update
"{7AA828F3-BD67-495E-9742-BD9C3F196E78}" = PC Suite
"{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}" = Zune Desktop Theme
"{90280407-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional mit FrontPage
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0E2CD91-BC77-411F-BD5D-5ABCA8C7C5B8}" = Sony Ericsson Mobile Phone Monitor
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1033-F400-7760-000000000002}" = Adobe Acrobat 7.0 Professional - English, Français, Deutsch
"{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}" = Canon PhotoRecord
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2D3647-18D2-4E06-8062-AF6224C5489E}" = NGrab Streamingserver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E03EE3F8-F081-4EF5-BE18-CC849459B070}" = Sony Ericsson Capability Manager
"{E728E952-DD4F-4BCD-A5C8-40FBFEFF91FE}" = OpenOffice.org Installer 1.0
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Acrobat 7.0 Professional - EFG" = Adobe Acrobat 7.0.9 Professional - English, Français, Deutsch
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Biet-O-Matic v2.8.0" = Biet-O-Matic v2.8.0
"BouquetSuite" = BouquetSuite
"Canon Setup Utility 2.3" = Canon Setup Utility 2.3
"CCleaner" = CCleaner
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-PrintToolBox" = Canon Utilities Easy-PrintToolBox
"Easy-WebPrint" = Easy-WebPrint
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Google Updater" = Google Updater
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"IrfanView" = IrfanView (remove only)
"LeechFTP" = LeechFTP
"LogoViewer" = LogoViewer (nur entfernen)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan Plus
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.7)" = Mozilla Firefox (3.6.7)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Revo Uninstaller" = Revo Uninstaller 1.89
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"TuxVision" = TuxVision
"Update Service" = Update Service
"VLC media player" = VLC media player 1.0.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR Archivierer
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 13.05.2009 00:20:06 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung iexplore.exe, Version 7.0.6000.16827, fehlgeschlagenes
Modul mshtml.dll, Version 7.0.6000.16825, Fehleradresse 0x00222005.
[ System Events ]
Error - 24.07.2010 04:07:08 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "nVidia WDM A/V Crossbar" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 24.07.2010 04:07:08 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Systemwiederherstellungsdienst" wurde mit folgendem Fehler
beendet: %%2
Error - 27.07.2010 07:13:10 | Computer Name = PC | Source = SRService | ID = 104
Description = Die Initialisierung der Systemwiederherstellung ist fehlgeschlagen.
Error - 27.07.2010 07:13:11 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "nVidia WDM Video Capture (universal)" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
Error - 27.07.2010 07:13:11 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "nVidia WDM A/V Crossbar" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 27.07.2010 07:13:11 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Systemwiederherstellungsdienst" wurde mit folgendem Fehler
beendet: %%2
Error - 27.07.2010 07:30:52 | Computer Name = PC | Source = SRService | ID = 104
Description = Die Initialisierung der Systemwiederherstellung ist fehlgeschlagen.
Error - 27.07.2010 07:30:53 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "nVidia WDM Video Capture (universal)" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
Error - 27.07.2010 07:30:53 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "nVidia WDM A/V Crossbar" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 27.07.2010 07:30:53 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Systemwiederherstellungsdienst" wurde mit folgendem Fehler
beendet: %%2
< End of report >
--- --- ---
MfG, Thomas |
