vipergtsr2 | 30.03.2011 14:55 | Probleme mit svchost , Fenster bei Neustart mit Persönliche Einstellungen, Restart OTL Logfile: Code:
OTL Extras logfile created on: 30.03.2011 15:28:56 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Dokumente und Einstellungen\Arno1\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
511,00 Mb Total Physical Memory | 119,00 Mb Available Physical Memory | 23,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 61,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74,52 Gb Total Space | 9,52 Gb Free Space | 12,78% Space Free | Partition Type: NTFS
Drive D: | 19,53 Gb Total Space | 11,16 Gb Free Space | 57,13% Space Free | Partition Type: NTFS
Drive E: | 46,19 Gb Total Space | 11,55 Gb Free Space | 25,01% Space Free | Partition Type: NTFS
Drive F: | 8,78 Gb Total Space | 5,58 Gb Free Space | 63,53% Space Free | Partition Type: FAT32
Computer Name: ARNO | User Name: Arno1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- D:\Proggys\tools\IE Tool\MyIE.exe (MySoft)
.url [@ = InternetShortcut] -- D:\Proggys\tools\IE Tool\MyIE.exe (MySoft)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [open] -- "D:\Proggys\tools\IE Tool\MyIE.exe" "%1" (MySoft)
InternetShortcut [open] -- "D:\Proggys\tools\IE Tool\MyIE.exe" "%1" (MySoft)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Programme\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Programme\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\fxsclnt.exe" = C:\WINDOWS\system32\fxsclnt.exe:*:Enabled:Microsoft Fax Console -- (Microsoft Corporation)
"D:\Proggys\tools\IE Tool\MyIE.exe" = D:\Proggys\tools\IE Tool\MyIE.exe:*:Enabled:MyIE2 Web Browser -- (MySoft)
"D:\Programme\eMule\emule.exe" = D:\Programme\eMule\emule.exe:*:Enabled:eMule
"C:\Programme\WebEye\WebEye.exe" = C:\Programme\WebEye\WebEye.exe:*:Enabled:SocketAPI -- ()
"G:\SetupWizard\stInstall.exe" = G:\SetupWizard\stInstall.exe:*:Enabled:SpeedTouch-Assistent für Home-Installation
"C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Temp\Rar$EX01.203\upgradeST.exe" = C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Temp\Rar$EX01.203\upgradeST.exe:*:Enabled:SpeedTouch Upgrade Wizard
"D:\Proggys\speedtouch\upgradeST.exe" = D:\Proggys\speedtouch\upgradeST.exe:*:Enabled:SpeedTouch Upgrade Wizard
"E:\Games\BHV\SKATXXL\BHV\SKATXXL\Skat.exe" = E:\Games\BHV\SKATXXL\BHV\SKATXXL\Skat.exe:*:Enabled:Skat XXL -- (mediaGlobe)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Programme\Real\RealPlayer\realplay.exe" = C:\Programme\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- (RealNetworks, Inc.)
"C:\Programme\webcamXP\webcamXP.exe" = C:\Programme\webcamXP\webcamXP.exe:*:Enabled:webcamXP 2007
"D:\Programme\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe" = D:\Programme\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe:*:Enabled:Camfrog Client Module -- (Camshare LC)
"C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMTvWizard.exe" = C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMTvWizard.exe:*:Enabled:Nero Home -- (Nero AG)
"C:\Programme\VideoLAN\VLC\vlc.exe" = C:\Programme\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"C:\Dokumente und Einstellungen\Arno1\temp\TeamViewer\Version4\TeamViewer.exe" = C:\Dokumente und Einstellungen\Arno1\temp\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application -- (TeamViewer GmbH)
"C:\Dokumente und Einstellungen\Arno1\Eigene Dateien\Eigene Bilder\Iphone\tinyumbrella-4.1.8.exe" = C:\Dokumente und Einstellungen\Arno1\Eigene Dateien\Eigene Bilder\Iphone\tinyumbrella-4.1.8.exe:*:Enabled:TinyUmbrella - Save your SHSH!
"C:\Dokumente und Einstellungen\Arno1\Desktop\Update 4.2.1\tinyumbrella-4.30.03.exe" = C:\Dokumente und Einstellungen\Arno1\Desktop\Update 4.2.1\tinyumbrella-4.30.03.exe:*:Enabled:TinyUmbrella - Save your SHSH!
"C:\Dokumente und Einstellungen\Arno1\Desktop\tinyumbrella-4.30.04.exe" = C:\Dokumente und Einstellungen\Arno1\Desktop\tinyumbrella-4.30.04.exe:*:Enabled:TinyUmbrella - Save your SHSH!
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03440014-3975-4267-9F39-1DC4745090B7}" = Microsoft Encarta Enzyklopädie 2003
"{03B20126-F3C2-11D5-A6D2-00C026001DCA}" = WebEye
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0F5C38CB-DCA7-44E0-A654-26121331557A}" = GMX Update
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20F1FFAF-1BFF-450C-A8C7-03D1BE24B950}" = Microsoft .NET Framework (German)
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = PowerCinema 2.0
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{3248F0A8-6813-11D6-A77B-00B0D0150070}" = J2SE Runtime Environment 5.0 Update 7
"{328019A7-0012-401D-96A2-4CDDD02675A8}" = Garmin POI Loader
"{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{369B36BE-3D64-4641-9AEA-808D436FE132}" = Microsoft Picture It! Foto 7.0
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D1A6B70-3E02-49BC-88B0-916C80274632}" = Informationen über Ihren PC
"{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}" = Google Earth
"{43DCF766-6838-4F9A-8C91-D92DA586DFA7}" = Microsoft Windows-Journal-Viewer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{51067386-0D0C-4F6C-97F5-E308D6D413D8}" = ArcSoft PhotoImpression 5
"{53480520-7555-470E-8C69-750B0472B4BB}" = O&O Defrag Professional Edition
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6A750221-B84D-419D-B11C-5F597FDBA826}" = Movavi Video Converter 6
"{6B103F43-069C-11D6-9EA2-0050BAE317E1}" = PowerCinema
"{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}" = Safari
"{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}" = Medion Digital Camcorder D5 II
"{73C97DA1-E158-4516-B18D-26DEFE92447B}" = EnhanceMovie 3
"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}" = Windows-Sicherungsprogramm
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7CDBE27D-87EC-434E-AFE4-D0116AE876BB}" = Microsoft Works Suite-Add-Ins für Microsoft Word
"{7CF31609-270B-11D6-9445-000102308676}" = Java 2 Runtime Environment, SE v1.4.0_01
"{7F34A21F-2DEB-4598-BB19-611D6BD24271}" = Managed DirectX (0900)
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0010-0407-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (German) 12
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90A455A7-0FC8-4508-B7FA-8F135B8F041A}" = DSL-Manager
"{90AF0407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office PowerPoint Viewer 2003
"{92E6C38B-30D4-405B-A7CC-AC4070086B65}" = GEODOG®SOFTWARE
"{96677B40-604F-44B6-8B43-AA533A0A4B27}" = CMSViewer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2B3D1A5-82CA-4876-AFFA-DB304A3A4FE1}" = InstantCopy
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1033-F400-7760-000000000001}" = Adobe Acrobat 6.0 Professional - English, Français, Deutsch
"{AC76BA86-7AD7-1031-7B44-000000000001}" = Adobe Reader 6.0 - Deutsch
"{ADD1861B-11C6-44FD-8265-6820E499BCAF}" = Companion Suite IH
"{B1275E23-717A-4D52-997A-1AD1E24BC7F3}" = T-Online 6.0
"{B1F69DF2-8C69-437E-A288-663326C4404A}" = USB MEMORY BAR Tool
"{C066286F-E002-46C0-9DFD-2DCB9A2B7A99}_is1" = iLiberty+ 1.3.0 Build 113
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2C284D2-6BD7-3B34-B0C5-B2CAED168DF7}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - DEU
"{C314CE45-3392-3B73-B4E1-139CD41CA933}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - DEU
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C4BEEB8C-B9D2-4CD9-A2AA-1F3A1F57DF21}" = Works Suite-Betriebssystem-Pack
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector Pro
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}" = WinZip 12.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3F3188E-EC4E-413B-BFEC-6A179ADB14FF}" = MSXML
"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe 1.6.43.1
"{DF4C31CF-0EED-4680-873F-F6AD64E21B46}" = PaperPort
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EA1CB7AC-E221-4822-A789-0ADB051DC498}" = Medion Flash XL
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{ECD03DA7-5952-406A-8156-5F0C93618D1F}" = USB PC Camera Plus
"{EDDDC607-91D9-4758-9F57-265FDCD8A772}" = Microsoft Works 7.0
"{EFD0BFEB-980E-491B-833B-A8848E5E0F0F}" = Hyplay
"{F3F1D08D-ABEF-4528-8383-54C46369EBB6}" = TV Jukebox 3.0
"{F5313BE1-0612-4E2F-9AC7-2E83E6E5EE7F}" = Buyertools Paket
"{F61DD673-0030-4BB2-A382-7E57E97F1031}" = Nero 7 Essentials
"{F6ADC1FC-4FAC-456D-8076-3176BB926FC0}" = klickTel for PDA
"{F7F2DC0A-C22E-49AD-AD37-797309A54E7B}" = Microsoft AutoRoute 2002
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FCBF9A51-0B27-4B86-919B-2FE5E34E0B55}" = DvrMaster
"{FFF22984-BA22-4EE5-9725-3E9F917974BB}" = Last Minute Gebot
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"ALDI Süd Foto Manager Free D" = ALDI Süd Foto Manager Free
"ALDI Süd Foto Service D" = ALDI Süd Foto Service
"Aldi Süd Fotoservice_is1" = Aldi Süd Fotoservice
"ALDI Süd Online Druck Service" = ALDI Süd Online Druck Service 4.6
"All ATI Software" = ATI - Dienstprogramm zur Deinstallation der Software
"ATI Display Driver" = ATI Display Driver
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"BCWipe" = BCWipe 3.0
"Biet-O-Matic v2.4.0" = Biet-O-Matic v2.4.0
"bilderjoker.de Home Photo Service" = bilderjoker.de Home Photo Service
"Camfrog 5.5" = Camfrog Video Chat 5.5
"CamfrogBar" = Camfrog IE Toolbar 1.0.29
"CFWebAdvancedU" = CamfrogWEB Advanced ActiveX Plugin (remove only)
"CloneCD" = CloneCD
"Companion OneTouch" = OneTouch
"conduitEngine" = Conduit Engine
"Direct Stream Recorder" = Direct Stream Recorder (remove only)
"DiskAid_is1" = DiskAid 3.11
"Download Accelerator Plus " = Download Accelerator Plus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Ext2Fsd" = Linux ext2 file system driver
"GEODOG®SOFTWARE" = GEODOG®SOFTWARE
"GMX Update" = GMX Update
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"IncrediMail Xe" = IncrediMail Xe
"IrfanView" = IrfanView (remove only)
"IsoBuster_is1" = IsoBuster 1.9.1
"Java Web Start" = Java Web Start
"JMeeting.com" = JMeeting.com
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 3.4.5
"MediaMonkey_is1" = MediaMonkey 2.5
"MediaShow" = Medi@Show
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework Full v1.0.3705 (1031)" = Microsoft .NET Framework (German) v1.0.3705
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MUSICMATCH Jukebox" = MUSICMATCH Jukebox
"Netscape (7.01)" = Netscape (7.01)
"NewsBin5" = NewsBin Pro
"NVIDIA Drivers" = NVIDIA Drivers
"PartyPoker" = PartyPoker
"PokerStars.net" = PokerStars.net
"ratDVD" = ratDVD 0.78.1444
"RealPlayer 12.0" = RealPlayer
"Rommé und Canasta" = Rommé und Canasta
"Security Task Manager" = Security Task Manager 1.8c
"Shockwave" = Shockwave
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"SKAT XXL " = SKAT XXL
"System Cleaner 5" = System Cleaner 5
"TomTom HOME" = TomTom HOME 2.8.0.2146
"TrueCrypt" = TrueCrypt
"Ugutil" = Upgrade Utility
"UseNeXT_is1" = UseNeXT
"ViewpointMediaPlayer" = Viewpoint Media Player (Remove Only)
"VLC media player" = VideoLAN VLC media player 0.8.6i
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"Winload Toolbar" = Winload Toolbar
"winpwn-2.5" = winpwn-2.5 2.5.0.2
"WinRAR archiver" = WinRAR Archivierer
"winscp3_is1" = WinSCP 4.2.8
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"X10Hardware" = X10 Hardware(TM)
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CopyTrans Suite" = CopyTrans Suite Remove Only
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 28.03.2011 03:01:09 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 220089531
Error - 28.03.2011 03:01:25 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 28.03.2011 03:01:25 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 220105156
Error - 28.03.2011 03:01:25 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 220105156
Error - 28.03.2011 03:01:41 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 28.03.2011 03:01:41 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 220121234
Error - 28.03.2011 03:01:41 | Computer Name = ARNO | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 220121234
Error - 29.03.2011 05:26:31 | Computer Name = ARNO | Source = WmiAdapter | ID = 4099
Description = Dienst konnte nicht geöffnet werden.
Error - 29.03.2011 12:46:13 | Computer Name = ARNO | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung wmplayer.exe, Version 11.0.5721.5145, fehlgeschlagenes
Modul vobmpg2.ax, Version 1.0.0.16, Fehleradresse 0x0001e9a1.
Error - 30.03.2011 06:11:32 | Computer Name = ARNO | Source = Microsoft Fax | ID = 32092
Description = Fehler beim Empfangen eines Faxes durch den Faxdienst. Von: . Anruferkennung:
. An: Jansen 06721/186010. Seiten: 0. Gerätename: Creatix V.9X DSP Data Fax Modem.
[ System Events ]
Error - 30.03.2011 08:06:25 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:06:32 | Computer Name = ARNO | Source = Service Control Manager | ID = 7009
Description = Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst VLC
media player.
Error - 30.03.2011 08:06:32 | Computer Name = ARNO | Source = Service Control Manager | ID = 7000
Description = Der Dienst "windrvNT" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error - 30.03.2011 08:06:36 | Computer Name = ARNO | Source = Print | ID = 23
Description = Der Drucker PaperPort-Farbbild konnte nicht initialisiert werden,
da der Treiber PaperPort Color Printer Driver nicht gefunden wurde.
Error - 30.03.2011 08:07:05 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:09:12 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:09:12 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:10:10 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:10:10 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
Error - 30.03.2011 08:11:01 | Computer Name = ARNO | Source = DCOM | ID = 10020
Description = Die computerweite Start und Aktivierung-Sicherheitsbeschreibung (Limit)
ist ungültig. Sie enthält Zugriffssteuerungseinträge mit ungültigen Berechtigungen.
Die angeforderte Aktion wurde daher nicht ausgeführt. Diese Sicherheitsberechtigung
kann mit dem Verwaltungsprogramm für Komponentendienste korrigiert werden.
< End of report > --- --- ---
OTL Logfile: Code:
OTL logfile created on: 30.03.2011 15:28:56 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Dokumente und Einstellungen\Arno1\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
511,00 Mb Total Physical Memory | 119,00 Mb Available Physical Memory | 23,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 61,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74,52 Gb Total Space | 9,52 Gb Free Space | 12,78% Space Free | Partition Type: NTFS
Drive D: | 19,53 Gb Total Space | 11,16 Gb Free Space | 57,13% Space Free | Partition Type: NTFS
Drive E: | 46,19 Gb Total Space | 11,55 Gb Free Space | 25,01% Space Free | Partition Type: NTFS
Drive F: | 8,78 Gb Total Space | 5,58 Gb Free Space | 63,53% Space Free | Partition Type: FAT32
Computer Name: ARNO | User Name: Arno1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.03.30 15:28:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Arno1\Desktop\OTL.exe
PRC - [2011.03.29 11:32:01 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.02.18 17:39:54 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\SyncServer.exe
PRC - [2011.02.18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2011.02.06 12:31:54 | 000,013,088 | ---- | M] (Apple Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\distnoted.exe
PRC - [2010.12.10 14:29:00 | 000,092,008 | ---- | M] (TomTom) -- D:\Programme\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2010.10.08 18:04:56 | 000,047,904 | ---- | M] (Apple Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleSyncNotifier.exe
PRC - [2010.08.02 17:09:38 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2010.08.02 17:09:32 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.05.14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2010.01.14 23:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.08.27 18:09:10 | 001,253,376 | ---- | M] (MAGIX AG) -- C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\FABS.exe
PRC - [2008.10.23 18:45:14 | 000,307,200 | ---- | M] (T-Systems Enterprise Services GmbH) -- C:\Programme\DSL-Manager\DslMgrSvc.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.11.26 15:51:00 | 001,085,440 | ---- | M] (T-Systems Enterprise Services GmbH) -- C:\Programme\DSL-Manager\DslMgr.exe
PRC - [2007.04.19 13:35:46 | 000,075,304 | ---- | M] (Hewlett-Packard Company) -- C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
PRC - [2003.12.15 14:39:16 | 000,221,696 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodag.exe
PRC - [2003.10.03 18:09:38 | 000,655,360 | ---- | M] (MySoft) -- D:\Proggys\tools\IE Tool\MyIE.exe
PRC - [2002.10.03 13:29:00 | 000,081,963 | ---- | M] (IncrediMail, Ltd.) -- D:\Programme\IncrediMail\bin\IncMail.exe
PRC - [2001.02.23 11:07:30 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
========== Modules (SafeList) ==========
MOD - [2011.03.30 15:28:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Arno1\Desktop\OTL.exe
MOD - [2010.08.23 18:11:46 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.03.29 11:32:01 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.02.18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010.12.10 14:29:00 | 000,092,008 | ---- | M] (TomTom) [Auto | Running] -- D:\Programme\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2010.08.02 17:09:38 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009.08.27 18:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Unknown | Running] -- C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2008.11.04 02:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008.10.23 18:45:14 | 000,307,200 | ---- | M] (T-Systems Enterprise Services GmbH) [On_Demand | Running] -- C:\Programme\DSL-Manager\DslMgrSvc.exe -- (TDslMgrService)
SRV - [2008.08.14 05:40:58 | 000,095,744 | ---- | M] () [Auto | Stopped] -- C:\Programme\VideoLAN\VLC\vlc.exe -- (VLC media player)
SRV - [2008.08.07 12:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2007.05.04 10:39:24 | 000,267,824 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.04.19 13:35:46 | 000,075,304 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2006.10.26 15:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005.07.08 02:12:54 | 000,466,944 | ---- | M] (Sagem) [On_Demand | Stopped] -- C:\WINDOWS\System32\sgbxcoms.exe -- (sgbx_device)
SRV - [2005.04.04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2003.12.15 14:39:16 | 000,221,696 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\oodag.exe -- (O&O Defrag)
SRV - [2001.11.12 14:31:48 | 000,020,480 | ---- | M] (X10) [On_Demand | Stopped] -- C:\Programme\Common Files\X10\Common\X10nets.exe -- (x10nets)
SRV - [2001.02.23 11:07:30 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe -- (MDM)
========== Driver Services (SafeList) ==========
DRV - [2011.03.29 11:32:01 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010.11.23 20:55:26 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.06.17 16:27:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.11.19 14:33:20 | 000,051,200 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2009.02.13 12:35:01 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.04.13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.04.13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2007.09.12 18:24:00 | 000,026,816 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DslTestSp5.sys -- (dsltestSp5)
DRV - [2007.06.26 12:53:54 | 000,013,824 | ---- | M] (T-Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tsmpkt.sys -- (TSMPacket)
DRV - [2007.03.20 16:13:38 | 000,300,544 | ---- | M] (AfaTech ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AF15BDA.sys -- (AF15BDA)
DRV - [2006.10.09 14:46:44 | 000,017,536 | ---- | M] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH) [Kernel | On_Demand | Stopped] -- C:\Programme\T-Online\T-Online_Software_6\Basis-Software\Basis1\MTOnlPktAlyx.sys -- (MTOnlPktAlyX)
DRV - [2006.10.09 14:03:56 | 000,017,152 | ---- | M] (Deutsche Telekom AG, Marmiko IT-Solutions GmbH) [Kernel | On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Marmiko Shared\MInfraIS\MIINPazx.sys -- (MIINPazX)
DRV - [2006.07.03 14:42:24 | 000,193,632 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2006.02.21 20:46:26 | 001,505,792 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.11.07 18:38:18 | 008,718,848 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snpstd3.sys -- (SNPSTD3) USB PC Camera (SNPSTD3)
DRV - [2005.07.08 02:52:14 | 000,010,240 | ---- | M] (OEM) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\UsbItf.sys -- (UsbItf)
DRV - [2005.07.08 02:33:36 | 000,033,625 | ---- | M] (OEM) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\telch.sys -- (telch)
DRV - [2005.07.08 02:33:26 | 000,061,288 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfxnt.sys -- (mfxnt)
DRV - [2005.07.08 02:33:08 | 000,031,784 | ---- | M] (OEM) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HttpUsb.sys -- (HttpUsb)
DRV - [2005.02.23 14:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2005.01.09 13:20:00 | 000,533,760 | ---- | M] (Ext2Fsd Group (ext2fsd.sf.net)) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Ext2Fsd.sys -- (Ext2Fsd)
DRV - [2003.10.19 14:59:50 | 000,025,856 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2003.07.18 08:58:20 | 000,036,992 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (SISAGP)
DRV - [2003.02.09 23:33:14 | 000,028,164 | ---- | M] (MusicMatch, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\MxlW2k.sys -- (MxlW2k)
DRV - [2002.11.04 16:32:00 | 000,027,520 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune)
DRV - [2002.11.04 16:29:42 | 000,422,976 | ---- | M] (Philips Semiconductors) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134) MEDION (7134)
DRV - [2002.10.29 17:15:06 | 000,114,144 | ---- | M] (Winbond Electronics Crop.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\2kw9967.sys -- (USBW9967)
DRV - [2002.10.28 08:38:06 | 000,947,884 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2002.09.11 08:09:48 | 000,083,456 | ---- | M] (Jetico, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\BCSwap.sys -- (BCSWAP)
DRV - [2002.07.10 17:39:34 | 000,032,256 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2002.07.01 16:10:40 | 000,638,366 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctxs51.sys -- (Intels51)
DRV - [2002.04.19 11:15:46 | 000,013,780 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2002.04.17 21:27:02 | 000,011,264 | ---- | M] (VOB Computersysteme GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (asapiW2k)
DRV - [2002.03.20 18:38:20 | 000,019,140 | ---- | M] (America Online) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\atwpkt.sys -- (ATWPKT)
DRV - [2001.11.14 19:07:42 | 000,010,761 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\x10uif.sys -- (X10UIF)
DRV - [2001.10.30 13:21:02 | 000,010,256 | ---- | M] (Winbond Electronics Crop.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\W9967STI.SYS -- (W9967CAM)
DRV - [2001.08.17 15:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://search.camfrog.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.gmx.net/home
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://go.gmx.net/tab2 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.camfrog.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/advanced_search?hl=de
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e, = hxxp://www.preispiraten.de/cgi-bin/e/tracker_ebaysuche.pl?%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,# = %23
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,& = %26
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,? = %3F
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,+ = %2B
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,= = %3D
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\e,MenuText = eBay.de
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb, = hxxp://www.preispiraten.de/cgi-bin/e/tracker_ebaysuche.pl?%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,# = %23
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,& = %26
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,? = %3F
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,+ = %2B
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,= = %3D
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eb,MenuText = eBay.de
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba, = hxxp://www.preispiraten.de/cgi-bin/e/tracker_ebaysuche.pl?%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,# = %23
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,& = %26
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,? = %3F
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,+ = %2B
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,= = %3D
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\eba,MenuText = eBay.de
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay, = hxxp://www.preispiraten.de/cgi-bin/e/tracker_ebaysuche.pl?%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,# = %23
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,& = %26
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,? = %3F
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,+ = %2B
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,= = %3D
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay,MenuText = eBay.de
IE - HKCU\..\URLSearchHook: {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWin0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultthis.engineName: "Winload Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Winload Customized Web Search"
FF - prefs.js..browser.startup.homepage: "hxxp://search.conduit.com/?ctid=CT2319825&SearchSource=13"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {40c3cc16-7269-4b32-9531-17f2950fb06f}:3.2.5.2
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: D:\Programme\Mozilla Firefox\components [2011.03.25 13:55:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: D:\Programme\Mozilla Firefox\plugins [2011.03.25 13:55:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape 7.01\Extensions\\Components: d:\Programme\Netscape\Netscape\Components [2011.03.25 13:55:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape 7.01\Extensions\\Plugins: d:\Programme\Netscape\Netscape\Plugins [2011.03.25 13:55:36 | 000,000,000 | ---D | M]
[2010.10.15 15:43:37 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Extensions
[2010.10.15 15:43:37 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Extensions\home2@tomtom.com
[2011.03.21 18:07:25 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Firefox\Profiles\nt0xaez0.default\extensions
[2011.01.10 20:04:27 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Firefox\Profiles\nt0xaez0.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.01.10 20:04:27 | 000,000,000 | ---D | M] (Winload Community Toolbar) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Firefox\Profiles\nt0xaez0.default\extensions\{40c3cc16-7269-4b32-9531-17f2950fb06f}
[2011.01.10 20:04:27 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Firefox\Profiles\nt0xaez0.default\extensions\engine@conduit.com
[2010.03.24 16:13:02 | 000,000,917 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Mozilla\Firefox\Profiles\nt0xaez0.default\searchplugins\conduit.xml
[2010.10.18 18:39:49 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010.10.18 18:40:15 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAMME\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
O1 HOSTS File: ([2011.03.25 12:35:40 | 000,000,849 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWin0.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWin0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Winload Toolbar) - {40C3CC16-7269-4B32-9531-17F2950FB06F} - C:\Programme\Winload\prxtbWin0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [VOBRegCheck] C:\WINDOWS\System32\VOBREGCheck.exe ()
O4 - HKLM..\Run: [WindowsServicesStartup] File not found
O4 - Startup: C:\Dokumente und Einstellungen\Arno1\Startmenü\Programme\Autostart\DSL-Manager.lnk = C:\Programme\DSL-Manager\DslMgr.exe (T-Systems Enterprise Services GmbH)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Policies = C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\svchost.exe\svchost.exe ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Policies = C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\svchost.exe\svchost.exe ()
O8 - Extra context menu item: &Download with &DAP - E:\Programme\DAP\dapextie.htm ()
O8 - Extra context menu item: Download &all with DAP - E:\Programme\DAP\dapextie2.htm ()
O8 - Extra context menu item: eBay Produktsuche - d:\Programme\Buyertools\Buyertools Reminder\SearchEbay.htm ()
O8 - Extra context menu item: Google Sidewiki... - C:\Programme\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O9 - Extra Button: Buyertools Reminder - {27914077-B4D6-4A0E-9763-76B6E9DD9A81} - d:\Programme\Buyertools\Buyertools Reminder\ReminderIE.exe ()
O9 - Extra Button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - E:\Programme\DAP\DAP.exe (SpeedBit Ltd.)
O9 - Extra Button: Artikel hinzufügen - {866875B8-9855-48f8-BAAB-8002C325BE69} - d:\Programme\Paragon\Last Minute Gebot\plmg.exe (Paragon Hi-Tech Ltd.)
O9 - Extra 'Tools' menuitem : Artikel hinzufügen - {866875B8-9855-48f8-BAAB-8002C325BE69} - d:\Programme\Paragon\Last Minute Gebot\plmg.exe (Paragon Hi-Tech Ltd.)
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - d:\Programme\PartyGaming\PartyPoker\RunApp.exe ()
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - d:\Programme\PartyGaming\PartyPoker\RunApp.exe ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17220B00-60CD-4E50-A244-02ED7C8E6385} hxxp://192.168.0.101:1133//DvrMaster.cab (DvrMaster Control)
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} hxxp://activex.camfrogweb.com/advanced/cfweb_activex.camfrogweb.com-advanced_instmodule.exe (CamfrogWEB Advanced Unicode Control)
O16 - DPF: {4DBB4CC1-9B1D-4CA5-9C41-613FC61EA1E6} hxxp://www.bildpartner.de/upload/bildpartner_de_upload.cab (bildpartner_de_upload Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37657.0299189815 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-1_4_0_01-win.cab (Java Plug-in 1.4.0_01)
O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Java Plug-in 1.5.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 () - file:///C:/DOKUME~1/Arno1/LOKALE~1/Temp/msohtmlclip1/01/clip_image002.jpg
O24 - Desktop Components:1 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003.02.05 09:31:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{a32fe6d0-f55e-11de-b270-0010dcea1d18}\Shell - "" = AutoRun
O33 - MountPoints2\{a32fe6d0-f55e-11de-b270-0010dcea1d18}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a78ecb20-d393-11de-b24d-0010dcea1d18}\Shell - "" = AutoRun
O33 - MountPoints2\{a78ecb20-d393-11de-b24d-0010dcea1d18}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.03.30 15:28:02 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Arno1\Desktop\OTL.exe
[2011.03.29 18:39:22 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\iBooty-for-4.3.1
[2011.03.29 16:30:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe
[2011.03.29 10:49:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan
[2011.03.29 10:49:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Security Task Manager
[2011.03.29 10:49:49 | 000,000,000 | ---D | C] -- C:\Programme\Security Task Manager
[2011.03.29 09:41:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\svchost.exe
[2011.03.29 09:39:22 | 018,996,736 | ---- | C] (iH8sn0w) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\sn0wbreeze-v2.4b1.exe
[2011.03.29 08:56:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\4.3.1
[2011.03.25 13:58:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\iTunes
[2011.03.25 13:58:05 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2011.03.25 13:56:37 | 000,000,000 | ---D | C] -- C:\Programme\iPod
[2011.03.25 13:56:32 | 000,000,000 | ---D | C] -- C:\Programme\iTunes
[2011.03.25 13:54:13 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\QuickTime
[2011.03.25 13:53:26 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2011.03.24 11:35:47 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\Neuer Ordner
[2011.03.16 16:25:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011.03.14 13:34:26 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\DvrMaster
[2011.03.01 12:31:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\Regale Fliesen
[2011.03.01 11:54:37 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\Schaden Garage
[2011.03.01 11:53:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Arno1\Desktop\Wasserschaden Nierstein
[2006.07.29 17:04:30 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll
[2006.07.29 17:04:30 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnpstd3.dll
[2006.07.29 17:04:30 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll
[2006.07.29 17:04:30 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\vsnpstd3.dll
[2006.02.03 08:26:28 | 000,484,560 | ---- | C] (Microsoft Corporation) -- C:\Programme\DXSETUP.exe
[2006.02.03 08:26:26 | 002,248,400 | ---- | C] (Microsoft Corporation) -- C:\Programme\dsetup32.dll
[2006.02.03 08:26:26 | 000,074,448 | ---- | C] (Microsoft Corporation) -- C:\Programme\DSETUP.dll
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011.03.30 15:28:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Arno1\Desktop\OTL.exe
[2011.03.30 15:25:26 | 000,009,518 | -H-- | M] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Arno1log.dat
[2011.03.30 14:49:00 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.03.30 14:04:13 | 000,001,082 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.03.30 14:04:13 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1994476637-4017261300-2036385883-1007.job
[2011.03.30 14:04:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.03.30 14:03:58 | 536,403,968 | -HS- | M] () -- C:\hiberfil.sys
[2011.03.30 14:02:10 | 000,000,629 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Startmenü\Programme\Autostart\DSL-Manager.lnk
[2011.03.30 09:39:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.03.29 18:55:40 | 000,178,688 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.29 18:43:27 | 703,534,196 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\sn0wbreeze_iPhone 4-4.3.1.ipsw
[2011.03.29 11:32:01 | 000,137,656 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011.03.29 10:21:17 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1994476637-4017261300-2036385883-1007.job
[2011.03.29 00:42:28 | 000,000,066 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Setup.bat
[2011.03.28 09:15:31 | 000,500,770 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.03.28 09:15:30 | 000,525,838 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2011.03.28 09:15:30 | 000,105,092 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2011.03.28 09:15:30 | 000,087,618 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.03.27 15:50:48 | 018,996,736 | ---- | M] (iH8sn0w) -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\sn0wbreeze-v2.4b1.exe
[2011.03.25 12:35:40 | 000,000,849 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.03.25 12:35:40 | 000,000,848 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.umbrella
[2011.03.22 09:20:53 | 002,426,355 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\Brief Explorer.pdf
[2011.03.21 19:08:53 | 000,626,636 | ---- | M] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\map_71c263a.pdf
[2011.03.13 02:57:33 | 000,001,984 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.03.01 18:06:40 | 000,002,315 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Movavi Video Converter 6.lnk
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.03.29 18:39:24 | 703,534,196 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\sn0wbreeze_iPhone 4-4.3.1.ipsw
[2011.03.29 09:39:21 | 000,000,066 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Setup.bat
[2011.03.22 09:20:44 | 002,426,355 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\Brief Explorer.pdf
[2011.03.21 19:08:53 | 000,626,636 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Desktop\map_71c263a.pdf
[2010.10.27 22:54:08 | 002,112,248 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
[2010.08.24 19:45:04 | 000,066,404 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.08.19 13:39:00 | 000,000,600 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\winscp.rnd
[2010.06.18 16:12:59 | 000,107,780 | ---- | C] () -- C:\WINDOWS\System32\wb67ext.dll
[2010.06.18 16:12:59 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\Bmpproc.dll
[2010.06.02 15:50:29 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\Mke2fs.exe
[2010.06.02 15:50:29 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\Umount.exe
[2010.06.02 15:50:29 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\Mount.exe
[2010.03.15 20:24:06 | 000,022,925 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\mdbu.bin
[2010.03.15 19:48:35 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2009.09.06 22:18:29 | 000,005,002 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\kaevcwgh.slj
[2009.05.22 13:30:14 | 009,015,296 | ---- | C] () -- C:\WINDOWS\System32\DvrPlayer.exe
[2009.05.22 13:28:32 | 032,219,136 | ---- | C] () -- C:\WINDOWS\System32\DvrMaster.exe
[2008.10.21 11:19:44 | 000,005,087 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ywasvxup.hvs
[2008.10.21 11:19:14 | 000,000,065 | ---- | C] () -- C:\WINDOWS\IniFile1.ini
[2008.02.16 13:28:23 | 000,000,196 | ---- | C] () -- C:\WINDOWS\System32\af15irtbl.bin
[2007.12.06 18:01:42 | 000,015,873 | ---- | C] () -- C:\WINDOWS\System32\Inetde.dll
[2007.12.03 02:35:17 | 000,001,362 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\QTSBandwidthCache
[2007.11.07 08:00:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007.11.07 08:00:00 | 001,626,112 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2007.11.07 08:00:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007.11.07 08:00:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2007.11.07 08:00:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007.11.07 08:00:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007.11.07 08:00:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2007.11.07 08:00:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2007.11.07 08:00:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007.09.28 10:50:08 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2007.09.28 10:50:04 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007.09.28 10:50:03 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007.07.10 12:45:01 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007.06.28 18:54:10 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2007.06.28 18:52:18 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007.02.01 19:35:35 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2006.12.06 14:12:12 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2006.09.18 00:05:25 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.09.11 19:23:56 | 000,000,040 | ---- | C] () -- C:\WINDOWS\nero.INI
[2006.09.08 21:58:44 | 000,411,880 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\NMM-MetaData.db
[2006.09.07 12:19:00 | 000,000,019 | ---- | C] () -- C:\WINDOWS\SoundConverter.INI
[2006.08.17 10:37:47 | 000,061,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\mfxnt.sys
[2006.08.17 10:36:40 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\sgbxvs.dll
[2006.08.17 10:36:35 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\sgbxjswr.dll
[2006.08.17 10:36:35 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\sgbxinsr.dll
[2006.08.17 10:36:35 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sgbxcfg.dll
[2006.08.17 10:36:35 | 000,000,208 | ---- | C] () -- C:\WINDOWS\System32\sgbxplc.ini
[2006.08.17 10:36:34 | 000,372,736 | ---- | C] () -- C:\WINDOWS\System32\sgbxutil.dll
[2006.08.17 10:36:34 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\sgbxcur.dll
[2006.08.17 10:36:33 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\sgbxinsb.dll
[2006.08.17 10:36:33 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\sgbxins.dll
[2006.08.17 10:36:33 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\sgbxcub.dll
[2006.08.17 10:36:33 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\sgbxcu.dll
[2006.08.16 14:16:26 | 000,027,114 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2006.08.05 21:23:02 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\suppdll.dll
[2006.08.03 00:59:18 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.07.29 17:07:22 | 000,000,450 | ---- | C] () -- C:\WINDOWS\WebEye.ini
[2006.07.29 17:04:32 | 000,339,968 | ---- | C] () -- C:\WINDOWS\vsnpstd3.exe
[2006.07.29 17:04:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\tsnpstd3.exe
[2006.07.29 17:04:32 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini
[2006.07.29 17:04:30 | 008,718,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd3.sys
[2006.07.29 17:04:30 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnpstd3.exe
[2006.07.29 17:02:14 | 000,032,345 | ---- | C] () -- C:\WINDOWS\unvpeye.ini
[2006.07.27 14:01:17 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\suppdll.dll.vir
[2006.05.25 21:08:36 | 000,724,992 | ---- | C] () -- C:\WINDOWS\System32\slmp4core.dll
[2006.05.18 14:30:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CorelDrw.INI
[2006.05.14 13:52:55 | 000,000,124 | ---- | C] () -- C:\WINDOWS\ZAUBHAUS.INI
[2006.05.14 13:51:26 | 000,284,160 | ---- | C] () -- C:\WINDOWS\unin0407.exe
[2006.05.10 12:39:05 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006.05.10 12:37:31 | 000,083,088 | ---- | C] () -- C:\WINDOWS\NSUninst.exe
[2006.05.10 12:37:24 | 000,006,317 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006.05.02 15:30:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Classic.INI
[2006.05.01 14:15:54 | 000,000,042 | ---- | C] () -- C:\WINDOWS\HBUser.ini
[2006.04.29 10:10:20 | 000,000,109 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
[2006.04.29 09:54:19 | 000,000,305 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\addr_file.html
[2006.04.29 09:47:14 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2006.04.28 19:38:29 | 000,000,160 | ---- | C] () -- C:\WINDOWS\KTEL.INI
[2006.04.28 19:14:02 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006.04.28 18:49:33 | 000,178,688 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006.04.28 14:42:53 | 000,000,138 | ---- | C] () -- C:\Dokumente und Einstellungen\Arno1\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2006.02.13 13:29:26 | 000,121,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2006.02.03 08:57:48 | 003,918,624 | ---- | C] () -- C:\Programme\Feb2006_MDX1_x86_Archive.cab
[2006.02.03 08:57:06 | 001,363,684 | ---- | C] () -- C:\Programme\Feb2006_d3dx9_29_x64.cab
[2006.02.03 08:57:04 | 000,179,247 | ---- | C] () -- C:\Programme\Feb2006_xact_x64.cab
[2006.02.03 08:57:02 | 000,917,376 | ---- | C] () -- C:\Programme\Feb2006_MDX1_x86.cab
[2006.02.03 08:57:02 | 000,133,297 | ---- | C] () -- C:\Programme\Feb2006_xact_x86.cab
[2006.02.03 08:57:00 | 001,085,608 | ---- | C] () -- C:\Programme\Feb2006_d3dx9_29_x86.cab
[2006.02.03 08:57:00 | 000,041,892 | ---- | C] () -- C:\Programme\dxdllreg_x86.cab
[2006.02.03 08:26:30 | 000,081,433 | ---- | C] () -- C:\Programme\dxupdate.cab
[2006.02.03 08:26:26 | 001,065,813 | ---- | C] () -- C:\Programme\Jun2005_d3dx9_26_x86.cab
[2006.02.03 08:26:26 | 000,086,925 | ---- | C] () -- C:\Programme\Oct2005_xinput_x64.cab
[2006.02.03 08:26:26 | 000,046,247 | ---- | C] () -- C:\Programme\Oct2005_xinput_x86.cab
[2006.02.03 08:26:24 | 001,336,890 | ---- | C] () -- C:\Programme\Jun2005_d3dx9_26_x64.cab
[2006.02.03 08:26:24 | 001,248,387 | ---- | C] () -- C:\Programme\Feb2005_d3dx9_24_x64.cab
[2006.02.03 08:26:24 | 001,014,113 | ---- | C] () -- C:\Programme\Feb2005_d3dx9_24_x86.cab
[2006.02.03 08:26:22 | 001,358,864 | ---- | C] () -- C:\Programme\Dec2005_d3dx9_28_x64.cab
[2006.02.03 08:26:22 | 001,351,430 | ---- | C] () -- C:\Programme\Aug2005_d3dx9_27_x64.cab
[2006.02.03 08:26:22 | 001,080,344 | ---- | C] () -- C:\Programme\Dec2005_d3dx9_28_x86.cab
[2006.02.03 08:26:22 | 001,078,532 | ---- | C] () -- C:\Programme\Aug2005_d3dx9_27_x86.cab
[2006.02.03 08:26:20 | 001,348,242 | ---- | C] () -- C:\Programme\Apr2005_d3dx9_25_x64.cab
[2006.02.03 08:26:20 | 001,079,850 | ---- | C] () -- C:\Programme\Apr2005_d3dx9_25_x86.cab
[2006.02.03 08:26:16 | 013,265,040 | ---- | C] () -- C:\Programme\dxnt.cab
[2006.02.03 08:26:10 | 015,493,481 | ---- | C] () -- C:\Programme\DirectX.cab
[2006.02.03 08:26:10 | 001,156,363 | ---- | C] () -- C:\Programme\BDANT.cab
[2006.02.03 08:26:10 | 000,976,020 | ---- | C] () -- C:\Programme\BDAXP.cab
[2006.02.03 08:26:10 | 000,703,080 | ---- | C] () -- C:\Programme\BDA.cab
[2005.04.08 04:16:43 | 000,009,518 | -H-- | C] () -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Arno1log.dat
[2003.02.17 17:21:47 | 000,000,200 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2003.02.10 00:44:52 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003.02.10 00:20:48 | 000,003,776 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2003.02.09 23:31:53 | 000,127,184 | ---- | C] () -- C:\WINDOWS\Unwise.exe
[2003.02.09 23:29:19 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2003.02.05 17:23:47 | 000,000,830 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2003.02.05 17:23:39 | 000,525,838 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2003.02.05 17:23:39 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2003.02.05 17:23:39 | 000,105,092 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2003.02.05 17:23:39 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2003.02.05 17:23:24 | 000,500,770 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003.02.05 17:23:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003.02.05 17:23:24 | 000,087,618 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003.02.05 17:23:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003.02.05 17:23:23 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003.02.05 17:23:23 | 000,004,518 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003.02.05 17:23:21 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.02.05 17:23:18 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003.02.05 17:23:18 | 000,056,880 | ---- | C] () -- C:\WINDOWS\System32\scvideo.dll
[2003.02.05 17:23:18 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003.02.05 17:23:13 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003.02.05 17:23:06 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003.02.05 11:22:22 | 000,000,512 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003.02.05 10:39:28 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003.02.05 10:23:14 | 000,065,536 | ---- | C] () -- C:\WINDOWS\Dit.DLL
[2003.02.05 10:23:14 | 000,000,208 | ---- | C] () -- C:\WINDOWS\Dit.INI
[2003.02.05 10:05:46 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2003.02.05 09:56:43 | 000,003,072 | ---- | C] () -- C:\WINDOWS\winio.sys
[2003.02.05 09:34:32 | 000,000,863 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003.02.05 09:33:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2003.02.05 09:29:53 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2003.02.05 09:27:21 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2003.02.05 09:26:45 | 000,324,320 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003.01.08 16:55:50 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\VOBRegCheck.exe
[2002.05.28 03:52:36 | 000,106,496 | ---- | C] () -- C:\WINDOWS\japi.dll
[2002.03.26 21:18:27 | 000,091,136 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll
[2002.03.04 10:16:34 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll
[2001.06.24 11:32:44 | 000,172,032 | ---- | C] () -- C:\WINDOWS\japi2.dll
========== LOP Check ==========
[2010.03.15 19:49:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ALDI Sued Foto Service
[2010.03.15 19:51:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Aldi Sued Fotoservice
[2010.11.25 14:09:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Downloaded Installations
[2010.03.04 14:56:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IEConfiguration1und1
[2008.09.25 12:52:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\LightScribe
[2010.03.15 19:50:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX
[2008.10.21 11:21:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Movavi Video Converter 6
[2007.12.08 02:03:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NewsBin
[2006.09.07 12:19:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC Suite
[2008.03.28 02:22:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PGP Corporation
[2006.08.16 14:16:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ScanSoft
[2011.03.29 17:25:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan
[2011.02.23 09:31:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\T-Online
[2008.01.24 12:09:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\T-Online DSL-Manager
[2010.10.15 15:44:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TomTom
[2007.12.11 04:05:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Viewpoint
[2010.10.18 13:15:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WindSolutions
[2009.03.17 14:34:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WinZip
[2011.03.16 16:26:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010.11.25 14:03:39 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4982A2B2-A1A9-4911-9CE4-2B4981000AF7}
[2010.03.18 01:58:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Camfrog
[2007.07.12 11:10:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\CamfrogBar
[2006.08.01 01:13:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\CamfrogWEB
[2008.09.27 12:12:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\cmw
[2007.02.27 20:28:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Datalayer
[2010.02.01 17:30:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\DiskAid
[2009.12.18 16:23:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\GARMIN
[2010.10.27 22:49:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\GEODOG
[2007.12.08 01:48:15 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\GrabIt
[2003.02.05 10:15:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\InterTrust
[2009.06.03 16:03:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\klickTel
[2009.12.24 18:08:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Last Minute Gebot
[2010.03.01 14:53:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Lite
[2010.03.15 19:52:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\MAGIX
[2009.09.06 22:19:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\MOVAVI
[2008.12.26 17:01:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\NewsBin
[2007.01.30 10:08:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Nokia
[2006.09.08 18:01:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Nokia Multimedia Player
[2006.09.07 12:22:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\PC Suite
[2008.03.28 02:22:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\PGP Corporation
[2008.10.06 10:36:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Pointstone
[2006.08.17 10:53:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\ScanSoft
[2011.03.29 16:56:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\svchost.exe
[2007.09.03 11:45:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Sytexis
[2009.06.01 10:34:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\T-Online
[2009.07.06 13:57:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\TeamViewer
[2010.10.15 15:43:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\TomTom
[2006.08.06 11:56:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\TrueCrypt
[2011.03.29 10:29:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\UseNeXT
[2007.12.11 04:05:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\Viewpoint
[2010.10.18 13:15:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Arno1\Anwendungsdaten\WindSolutions
========== Purity Check ==========
< End of report > --- --- --- |