aharonov | 17.04.2012 21:31 | 1. Ja, diese Proxy-Einstellungen stammen von mir. 2. Habe ich ausgeführt. Allerdings konnte ich nach dem Neustart kein Textfile finden. Wo ist dieses gespeichert? 3. Ja, ich konnte wieder im normalen Modus booten und dieser weisse Bildschirm wird nicht mehr angezeigt. Allerdings sind sämtliche Desktop-Icons verschwunden. Wie kann ich diese wiederherstellen?
Ich werde jetzt noch die weiteren Schritte 4-6 ausführen. 4. Hier ist das Resultat von Malwarebytes Anti-Malware: Code:
Malwarebytes Anti-Malware (Test) 1.61.0.1400
www.malwarebytes.org
Datenbank Version: v2012.04.17.05
Windows XP Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.18702
Leo :: LEO_LAPTOP [Administrator]
Schutz: Aktiviert
17.04.2012 22:52:58
mbam-log-2012-04-17 (22-52-58).txt
Art des Suchlaufs: Vollständiger Suchlauf
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 508804
Laufzeit: 3 Stunde(n), 3 Minute(n), 40 Sekunde(n)
Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|StartMenuLogoff (PUM.Hijack.StartMenu) -> Bösartig: (1) Gut: (0) -> Erfolgreich ersetzt und in Quarantäne gestellt.
Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateien: 9
C:\_OTL\MovedFiles\04172012_224505\C_Dokumente und Einstellungen\Leo\Anwendungsdaten\soundblaster_fx648.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\xeyosehccmuqa.exe (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\skxanvcprsrnfskyes.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\lzdqoxsvjvhohfwquu.exe (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\dyhbywqeptbglclfmy.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\aeqzoxgyhaabsdjfigkhvdlc.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\odkdsykghjkucurchn.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\gzzvvfrggobuhp.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Temp\jpxpnqghihovlnc.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt.
(Ende) 5. Und hier die Log-Files von OTL:
Inhalt von OTL.txt:
OTL Logfile: Code:
OTL logfile created on: 18.04.2012 02:21:42 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Dokumente und Einstellungen\Leo\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
1023.36 Mb Total Physical Memory | 386.67 Mb Available Physical Memory | 37.78% Memory free
2.40 Gb Paging File | 1.68 Gb Available in Paging File | 70.09% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 85.45 Gb Total Space | 22.01 Gb Free Space | 25.76% Space Free | Partition Type: NTFS
Drive E: | 7.69 Gb Total Space | 7.46 Gb Free Space | 96.97% Space Free | Partition Type: FAT32
Computer Name: LEO_LAPTOP | User Name: Leo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.04.18 02:19:05 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe
PRC - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.04.04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011.04.08 12:59:52 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2010.05.06 03:59:38 | 000,583,360 | ---- | M] (Cisco Systems, Inc.) -- C:\Programme\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
PRC - [2010.03.23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) -- C:\Programme\Cisco Systems\VPN Client\cvpnd.exe
PRC - [2009.06.23 13:29:48 | 000,740,968 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\Shared\Tagger\tagsrv.exe
PRC - [2009.06.18 07:01:50 | 000,356,912 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\Shared\Security\nidmsrv.exe
PRC - [2009.06.18 06:57:28 | 000,042,544 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lkads.exe
PRC - [2009.06.18 06:56:32 | 000,053,296 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lktsrv.exe
PRC - [2009.06.15 20:44:40 | 000,012,696 | ---- | M] (National Instruments Corporation) -- C:\Programme\National Instruments\MAX\nimxs.exe
PRC - [2009.06.04 04:14:28 | 000,013,896 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nisvcloc.exe
PRC - [2008.10.24 14:27:51 | 000,068,865 | ---- | M] (Avira GmbH) -- C:\Programme\AntiVir PersonalEdition Classic\sched.exe
PRC - [2008.10.24 14:27:50 | 000,151,297 | ---- | M] (Avira GmbH) -- C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
PRC - [2008.08.08 14:54:00 | 000,227,004 | ---- | M] () -- C:\Programme\Lion\Lion.exe
PRC - [2008.07.27 12:09:02 | 000,266,497 | ---- | M] (Avira GmbH) -- C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
PRC - [2007.09.06 13:28:18 | 000,110,592 | ---- | M] (Apple, Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2007.06.13 15:21:45 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.02.26 03:06:53 | 000,067,128 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2006.06.30 01:21:40 | 000,593,920 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\SetPoint\SetPoint.exe
PRC - [2006.05.10 10:48:08 | 000,094,208 | ---- | M] (Logitech Inc.) -- C:\Programme\Gemeinsame Dateien\Logitech\KhalShared\KHALMNPR.exe
PRC - [2006.02.15 17:16:02 | 000,581,693 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2006.02.15 15:43:16 | 000,892,928 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe
PRC - [2006.02.14 12:56:08 | 000,122,880 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Programme\HPQ\HP ProtectTools Security Manager\pthosttr.exe
PRC - [2006.01.16 22:01:46 | 000,053,248 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINDOWS\system32\accelerometerST.exe
PRC - [2005.08.12 14:43:58 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Programme\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005.06.29 21:06:54 | 000,043,008 | ---- | M] (Cognizance Corporation) -- C:\Programme\HPQ\IAM\Bin\asghost.exe
========== Modules (No Company Name) ==========
MOD - [2011.08.30 23:25:44 | 000,016,832 | ---- | M] () -- C:\Programme\Adobe\Reader 8.0\Reader\ViewerPS.dll
MOD - [2010.06.11 03:06:27 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_32523611\mscorlib.dll
MOD - [2010.06.11 03:06:25 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_863f104e\system.drawing.dll
MOD - [2010.06.11 03:06:15 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_d5929b79\system.xml.dll
MOD - [2010.06.11 03:06:10 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_572d8213\system.windows.forms.dll
MOD - [2010.06.11 03:05:59 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_047e60e4\system.dll
MOD - [2010.06.11 03:05:52 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2010.06.11 03:05:51 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2010.03.23 13:26:48 | 000,201,512 | ---- | M] () -- C:\WINDOWS\system32\vpnapi.dll
MOD - [2008.08.08 14:54:00 | 000,227,004 | ---- | M] () -- C:\Programme\Lion\Lion.exe
MOD - [2008.04.18 02:27:11 | 000,339,968 | ---- | M] () -- C:\Programme\AntiVir PersonalEdition Classic\sqlite3.dll
MOD - [2007.02.26 03:05:29 | 000,061,496 | ---- | M] () -- C:\Programme\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\clntutil.dll
MOD - [2006.04.16 22:50:48 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2006.04.16 22:50:48 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2006.04.16 22:50:47 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2006.04.16 22:50:47 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2006.04.16 22:50:46 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2006.02.15 17:17:26 | 000,053,248 | ---- | M] () -- C:\Programme\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2006.02.15 15:43:16 | 000,892,928 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe
MOD - [2005.04.05 11:37:00 | 000,005,632 | ---- | M] () -- C:\Programme\HPQ\IAM\Bin\1031\TpmAuth.dll
MOD - [2005.01.28 10:17:00 | 000,003,072 | ---- | M] () -- C:\Programme\HPQ\IAM\Bin\1031\PETpm.dll
MOD - [2004.08.07 08:00:14 | 000,233,472 | ---- | M] () -- c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2004.08.07 08:00:14 | 000,180,224 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_de_b77a5c561934e089\system.windows.forms.resources.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\DOKUME~1\Leo\LOKALE~1\Temp\WZSE0.TMP\INSTAL~1.EXE -- (CiscoVpnInstallService)
SRV - [2012.04.04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010.05.06 03:59:38 | 000,583,360 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Programme\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe -- (vpnagent)
SRV - [2010.03.23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Programme\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)
SRV - [2009.06.23 13:29:48 | 000,740,968 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\Shared\Tagger\tagsrv.exe -- (NITaggerService)
SRV - [2009.06.23 11:23:14 | 001,007,616 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\National Instruments\Shared\License Manager\Bin\lmgrd.exe -- (NILM License Manager)
SRV - [2009.06.18 07:01:50 | 000,356,912 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\Shared\Security\nidmsrv.exe -- (NIDomainService)
SRV - [2009.06.18 06:57:28 | 000,042,544 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lkads.exe -- (lkClassAds)
SRV - [2009.06.18 06:56:32 | 000,053,296 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lktsrv.exe -- (lkTimeSync)
SRV - [2009.06.15 20:44:40 | 000,012,696 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Programme\National Instruments\MAX\nimxs.exe -- (mxssvr)
SRV - [2009.06.04 04:14:28 | 000,013,896 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nisvcloc.exe -- (niSvcLoc)
SRV - [2009.06.03 10:26:34 | 000,098,304 | ---- | M] (OPC Foundation) [On_Demand | Stopped] -- C:\WINDOWS\system32\Opcenum.exe -- (OpcEnum)
SRV - [2008.10.31 14:52:54 | 000,695,136 | ---- | M] (National Instruments, Inc.) [On_Demand | Stopped] -- C:\WINDOWS\system32\lkcitdl.exe -- (LkCitadelServer)
SRV - [2008.10.24 14:27:51 | 000,068,865 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler)
SRV - [2008.10.24 14:27:50 | 000,151,297 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService)
SRV - [2008.07.30 10:53:08 | 000,587,776 | ---- | M] (FileZilla Project) [On_Demand | Stopped] -- C:\Programme\FileZilla Server\FileZilla server.exe -- (FileZilla Server)
SRV - [2007.09.06 13:28:18 | 000,110,592 | ---- | M] (Apple, Inc.) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2004.10.22 03:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- c:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2003.07.28 13:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010.05.06 03:46:36 | 000,019,680 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vpnva.sys -- (vpnva)
DRV - [2010.03.23 13:15:36 | 000,308,859 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2010.02.11 14:01:43 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.06.22 13:48:44 | 000,091,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mqac.sys -- (MQAC)
DRV - [2009.05.28 18:38:24 | 000,052,056 | ---- | M] (Avira GmbH) [File_System | On_Demand | Running] -- C:\Programme\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt)
DRV - [2009.05.28 18:38:23 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\AntiVir PersonalEdition Classic\avgio.sys -- (avgio)
DRV - [2009.05.22 10:00:00 | 000,004,096 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\cvintdrv.sys -- (cvintdrv)
DRV - [2008.11.16 18:39:44 | 000,131,984 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
DRV - [2008.05.08 14:28:49 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rmcast.sys -- (RMCAST)
DRV - [2007.11.14 19:05:16 | 000,394,952 | ---- | M] (Zone Labs, LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2007.01.18 20:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2006.06.30 01:53:44 | 000,003,712 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2006.05.10 10:56:54 | 000,027,264 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2006.05.10 10:56:50 | 000,071,680 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2006.05.10 10:56:26 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
DRV - [2006.03.10 18:12:54 | 000,130,048 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atswpdrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (AES2500)
DRV - [2006.03.03 00:45:14 | 001,480,704 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.02.15 16:59:52 | 000,401,664 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2006.02.15 16:56:58 | 001,342,570 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006.02.15 16:54:46 | 000,030,363 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2006.02.15 16:54:10 | 000,057,096 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006.02.15 16:51:22 | 000,148,168 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2006.02.09 03:00:04 | 000,142,720 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2006.01.30 03:00:04 | 001,120,352 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006.01.19 15:50:40 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel(R)
DRV - [2006.01.10 01:00:04 | 000,022,016 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2006.01.10 01:00:04 | 000,017,920 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2005.09.20 11:30:56 | 000,162,432 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2005.09.19 13:24:20 | 000,005,760 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EabUsb.sys -- (eabusb)
DRV - [2005.09.19 13:24:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2005.09.19 13:23:52 | 000,007,808 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2005.06.10 15:26:00 | 000,035,968 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2005.05.31 12:46:26 | 000,087,936 | R--- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gtipci21.sys -- (GTIPCI21)
DRV - [2001.08.18 04:35:52 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\SearchScopes,DefaultScope = {FCF5F8E6-CFC8-48EF-9A3E-535F932D4193}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\..\SearchScopes\{1DB92A3C-35AB-4694-B2A8-1E06F459F218}: "URL" = hxxp://www.google.de/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{FCF5F8E6-CFC8-48EF-9A3E-535F932D4193}: "URL" = hxxp://www.google.ch/search?hl=de&q={searchTerms}&meta=
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.***:3128
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Programme\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Programme\DivX\DivX Content Uploader\npUpload.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Programme\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programme\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
O1 HOSTS File: ([2004.08.04 10:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (HP Credential Manager for ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Programme\HPQ\IAM\Bin\ItIeAddIN.dll (Infineon Technologies AG)
O4 - HKLM..\Run: [AccelerometerSysTrayApplet] C:\WINDOWS\system32\accelerometerST.exe (Hewlett-Packard Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Programme\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [avgnt] C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CognizanceTS] C:\Programme\HPQ\IAM\Bin\AsTsVcc.dll (Cognizance Corporation)
O4 - HKLM..\Run: [Cpqset] C:\Programme\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MsmqIntCert] C:\WINDOWS\System32\mqrt.dll (Microsoft Corporation)
O4 - HKLM..\Run: [PTHOSTTR] C:\Programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [Reminder] C:\WINDOWS\CREATOR\Remind_XP.exe ()
O4 - HKLM..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - HKCU..\Run: [Lion] C:\Programme\Lion\Lion.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk = C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Logitech Desktop Messenger.lnk = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Logitech SetPoint.lnk = C:\Programme\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\VPN Client.lnk = C:\WINDOWS\Installer\{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}\Icon3E5562ED7.ico ()
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {55963676-2F5E-4BAF-AC28-CF26AA587566} https://sslvpn.ethz.ch/CACHE/stc/2/binaries/vpnweb.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {971127BB-259F-48C2-BD75-5F97A3331551} https://newvpn.pmodwrc.ch/+CSCO+0075676763663A2F2F2E637968747661662E++/rdp/-CSCO-3h--msrdp.cab (Microsoft RDP Client Control (redist))
O16 - DPF: {B8E73359-3422-4384-8D27-4EA1B4C01232} https://newvpn.pmodwrc.ch/+CSCOL+/cscopf.cab (CISCO Portforwarder Control)
O16 - DPF: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_12-windows-i586.cab (Java Plug-in 1.5.0_12)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CC679CB8-DC4B-458B-B817-D447B3B6AC31} https://uzhvpn1.uzh.ch/CACHE/stc/5/binaries/vpnweb.cab (Cisco AnyConnect Secure Mobility Client Web Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.2.17.61 62.2.24.158 62.2.17.60 62.2.24.162
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6C9FECF9-EDDB-4141-9DBF-EB1F2C1AD07E}: DhcpNameServer = 62.2.17.61 62.2.24.158 62.2.17.60 62.2.24.162
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: GinaDLL - (C:\Programme\HPQ\IAM\bin\OCGINA.DLL) - C:\Programme\HPQ\IAM\Bin\OCGINA.dll (Cognizance Corporation)
O20 - HKCU Winlogon: Shell - (c:\dokumente und einstellungen\leo\anwendungsdaten\soundblaster_fx648.exe) - File not found
O20 - HKCU Winlogon: UserInit - (c:\windows\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\OneCard: DllName - (C:\Programme\HPQ\IAM\Bin\AsWlnPkg.dll) - C:\Programme\HPQ\IAM\Bin\AsWlnPkg.dll (Cognizance Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2001.07.27 23:07:00 | 000,000,000 | -HS- | M] () - E:\AUTOEXEC.BAT -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012.04.18 04:45:24 | 002,237,440 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2012.04.18 04:45:05 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.04.18 02:19:00 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe
[2012.04.18 02:10:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2012.04.18 02:03:20 | 000,114,688 | ---- | C] (SoftThinks) -- C:\WINDOWS\System32\chg.exe
[2012.04.17 22:49:39 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Malwarebytes
[2012.04.17 22:49:30 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
[2012.04.17 22:49:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2012.04.17 22:49:28 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.04.17 22:49:28 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2012.04.16 21:10:01 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\inkscape
[2012.04.16 20:36:06 | 000,000,000 | ---D | C] -- C:\Programme\Inkscape
[2012.04.12 00:27:27 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Leo\Eigene Dateien\Dropbox
[2012.04.12 00:24:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Startmenü\Programme\Dropbox
[2012.04.12 00:24:19 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Dropbox
[2012.04.11 22:20:55 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\TeamViewer
[2012.04.11 22:20:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\TeamViewer 7
[2012.04.11 22:20:43 | 000,000,000 | ---D | C] -- C:\Programme\TeamViewer
[2012.04.01 11:19:46 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Eigene Dateien\minzi
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.04.18 02:19:05 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe
[2012.04.18 02:09:43 | 000,000,526 | ---- | M] () -- C:\WINDOWS\tasks\MATLAB R2011b Startup Accelerator.job
[2012.04.18 02:08:01 | 000,409,588 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2012.04.18 02:08:01 | 000,395,650 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.04.18 02:08:01 | 000,069,438 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2012.04.18 02:08:01 | 000,057,572 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.04.18 02:05:41 | 000,002,423 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\VPN Client.lnk
[2012.04.18 02:05:24 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012.04.18 02:03:21 | 000,114,688 | ---- | M] (SoftThinks) -- C:\WINDOWS\System32\chg.exe
[2012.04.18 02:03:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.04.18 02:03:01 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2012.04.18 01:12:57 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7F50F571-5694-44CD-97A3-871EDAB667F3}.job
[2012.04.17 22:49:30 | 000,000,756 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.17 00:08:46 | 000,002,394 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\.recently-used.xbel
[2012.04.16 20:39:26 | 000,000,654 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Inkscape.lnk
[2012.04.16 14:35:12 | 000,002,243 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2012.04.14 14:52:30 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.04.12 00:27:27 | 000,000,996 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\Dropbox.lnk
[2012.04.11 22:20:48 | 000,000,787 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\TeamViewer 7.lnk
[2012.04.11 17:08:22 | 000,000,194 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\TexPoint.ini
[2012.04.11 17:08:22 | 000,000,033 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\TexPoint.lic
[2012.04.11 13:26:03 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.03.31 20:28:49 | 000,002,121 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\iTunes.lnk
[2012.03.27 16:52:35 | 000,000,157 | ---- | M] () -- C:\WINDOWS\matlab.ini
[2012.03.26 09:46:13 | 000,032,217 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\steuererklärung_fristerstreckung.pdf
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.04.17 22:49:30 | 000,000,756 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.17 16:33:21 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2012.04.17 00:08:46 | 000,002,394 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\.recently-used.xbel
[2012.04.16 20:39:41 | 000,000,692 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Inkscape.lnk
[2012.04.16 20:39:26 | 000,000,654 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Inkscape.lnk
[2012.04.12 00:27:27 | 000,000,996 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\Dropbox.lnk
[2012.04.11 22:20:48 | 000,000,787 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\TeamViewer 7.lnk
[2012.03.26 09:46:11 | 000,032,217 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\steuererklärung_fristerstreckung.pdf
[2011.12.08 20:19:13 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
========== LOP Check ==========
[2012.04.18 00:24:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AntiVir PersonalEdition Classic
[2007.02.21 08:40:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BVRP Software
[2011.08.19 22:04:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Cisco
[2009.12.26 01:19:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\iWin Games
[2010.05.24 22:41:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\National Instruments
[2010.01.09 17:10:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\OriginLab
[2010.09.22 18:25:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
[2009.10.16 14:51:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Catena Software
[2012.04.12 03:08:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Dropbox
[2011.07.02 11:08:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\FileZilla
[2012.04.16 21:10:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\inkscape
[2008.05.27 01:49:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Leadertech
[2007.02.01 01:09:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\SampleView
[2012.04.11 22:22:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\TeamViewer
[2009.06.23 02:12:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\YoudaGames
[2012.04.18 02:09:43 | 000,000,526 | ---- | M] () -- C:\WINDOWS\Tasks\MATLAB R2011b Startup Accelerator.job
[2012.04.18 01:12:57 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7F50F571-5694-44CD-97A3-871EDAB667F3}.job
========== Purity Check ==========
< End of report > --- --- ---
Inhalt von Extras.txt:
OTL Logfile: Code:
OTL Extras logfile created on: 18.04.2012 02:21:42 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Dokumente und Einstellungen\Leo\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
1023.36 Mb Total Physical Memory | 386.67 Mb Available Physical Memory | 37.78% Memory free
2.40 Gb Paging File | 1.68 Gb Available in Paging File | 70.09% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 85.45 Gb Total Space | 22.01 Gb Free Space | 25.76% Space Free | Partition Type: NTFS
Drive E: | 7.69 Gb Total Space | 7.46 Gb Free Space | 96.97% Space Free | Partition Type: FAT32
Computer Name: LEO_LAPTOP | User Name: Leo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"21:TCP" = 21:TCP:*:Enabled:ftp
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"C:\Programme\eMule.de 0.46c v17\emule.exe" = C:\Programme\eMule.de 0.46c v17\emule.exe:*:Enabled:eMule -- (hxxp://www.emule-project.net)
"C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
"C:\Programme\QuickTime\QuickTimePlayer.exe" = C:\Programme\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player -- (Apple Inc.)
"C:\Programme\FileZilla Server\FileZilla server.exe" = C:\Programme\FileZilla Server\FileZilla server.exe:*:Enabled:FileZilla server.exe -- (FileZilla Project)
"C:\Programme\Zattoo\zattood.exe" = C:\Programme\Zattoo\zattood.exe:*:Enabled:zattood -- ()
"C:\Programme\Zattoo\Zattoo1.exe" = C:\Programme\Zattoo\Zattoo1.exe:*:Enabled: -- ()
"C:\Programme\MATLAB_SV701\bin\win32\MATLAB.exe" = C:\Programme\MATLAB_SV701\bin\win32\MATLAB.exe:*:Enabled:MATLAB -- (The MathWorks Inc.)
"C:\Programme\TeamViewer\Version7\TeamViewer.exe" = C:\Programme\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Dropbox\bin\Dropbox.exe" = C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{04B552B1-4EC5-4F1B-9F02-FD3DF5A71184}" = NI Assistant Framework
"{05046BCC-5E64-4A85-8615-D84DE4C1D865}" = NI VC2005MSMs x86
"{07A99739-82EE-4537-AF2E-1607015D9992}" = NI Service Locator
"{08133ED0-B6EB-49CD-B0EF-60502E41D15E}" = NI Xerces Delay Load 2.7.1
"{094621AC-72E7-4167-8A06-CCDDBEBC233F}" = NI LabVIEW 2009 Help File
"{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}" = WD Diagnostics
"{0FB31DF8-38DF-4C9D-B313-AFAFC3FBA02B}" = NI LVBrokerAux 8.2.1
"{0FD812C9-3BBE-4CC5-A43C-B7304E3EC581}" = NI Web Pipeline 2.0.1
"{0FF78186-41DE-4C50-8C93-EF794068E600}" = NI LabVIEW 2009 Examples
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19C120B7-F7A6-4105-9D62-1F6305B2E2CF}" = NI DataSocket 4.7.0
"{1AC600E0-EACF-4FAA-9477-3CE8CE711E19}" = NI LabVIEW 2009 Help
"{1B06E3AF-1CE2-4085-AE4E-DFEC369E86D3}" = NI Logos XT Support
"{1D6F0B9D-F19E-43AB-9D8E-2E3653212C72}" = NI LabVIEW 2009 MeasAppChm File
"{1FBC283A-8B22-48FA-9DFA-6C65E34455FA}" = NI LabVIEW Real-Time NBFifo
"{2108E50D-978D-4D62-A837-4F12A61ADF15}" = NI LabVIEW 2009 License
"{25FD6E1F-D73B-44EB-B840-261FF41CFAC5}" = NI Variable Engine LabVIEW 2009 Support
"{26A24AE4-039D-4CA4-87B4-2F83216026FF}" = Java(TM) 6 Update 26
"{278AF4F9-DC1C-49DC-B871-C0BAEBD4F458}" = NI License Manager
"{297FA251-FF30-4F16-978C-4A65EA804EFF}" = NI LabVIEW Real-Time Error Dialog
"{2A98DB42-3743-4022-ADFA-42AE811484AE}" = NI EULA Depot
"{2AD5E818-E2EE-4BBF-A2BF-29022C6FC236}" = NI Assistant Framework LabVIEW 2009 Support
"{2D72E0EC-D695-4BFB-A246-F07BAAA91AA1}" = NI Remote Provider for MAX 4.6.0
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = Logitech SetPoint
"{2F0D3C9E-4FB6-4A14-B0C4-42328F570177}" = Fingerprint Sensor Minimum Install
"{2FF17A1B-00A8-4A18-A0D7-6BF2D1510F38}" = NI LabVIEW 2009 Templates
"{30F064A1-6933-4027-BD62-B7BEB1F84711}" = NI LabVIEW 2009 VI.lib
"{3248F0A8-6813-11D6-A77B-00B0D0150120}" = J2SE Runtime Environment 5.0 Update 12
"{32A3A4F4-B792-11D6-A78A-00B0D0150120}" = J2SE Development Kit 5.0 Update 12
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.00 D2
"{34EE2F0F-D6EA-4C36-8315-41107048D48D}" = NI-DAQmx - LabVIEW shared documentation
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{383AD0A2-FD79-4CF0-B823-C695E32BD08D}" = NI LabVIEW Run-Time Engine Web Services
"{39BA78A5-5F6C-47E8-98DC-F4398A541273}" = NI LabVIEW 2009 Manuals
"{3AC9819F-CCAD-4084-A45F-66C0CB588D4B}" = SIMetrix/SIMPLIS Intro
"{3EBD3749-304E-4A4C-9575-C00E5F015217}" = Apple Mobile Device Support
"{3F188640-B4F5-44D5-BBF3-DAB70CF5629B}" = NI LabVIEW Compare Utility 9.0.0
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = HP Integrated Module with Bluetooth wireless technology
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = ST Wiederherstellungs- & Sicherungsprogramme
"{40D9D764-7FD7-4036-B565-6D94DEEBD4A5}" = NI LabVIEW Merge Utility 9.0.0
"{4159DD60-49C1-4323-A1A5-FB060CBA35C5}" = NI Measurement Studio Recipe Processor
"{416B50BB-64CE-46C5-81A6-7F842CC35CDC}" = NI LabVIEW MAX XML
"{4192EAC0-6B36-4723-B216-D0E86E7757AC}" = Jasc Paint Shop Photo Album 5
"{45A5461A-7D1D-4A91-B033-0B85E7AB25C2}" = NI MXS 4.6.0f0 for LabVIEW Real-Time
"{45FA54F6-8574-49D2-9E2D-0BDDE6237822}" = NI LabVIEW Run-Time Engine 8.2.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D581C40-11D0-476B-A943-76506924B722}" = NI-DSM 2009
"{4E049CBB-01EE-4859-B4C8-26E42263CEE4}" = NI LabVIEW Run-Time Engine 2009
"{50F9A1FC-39D8-46E8-8234-1A1A68A4033E}" = NI Variable Engine 2.3.0
"{52C3DD72-17E5-4E0D-83A8-FB42FCE3A8EF}" = NI-RPC 4.1.1f0 for Phar Lap ETS
"{57B77060-04B4-468E-89A9-F68EEE466F57}" = NI USI 1.7.0
"{57F37CA1-6FA3-46D2-8F01-AD3A26FA4E9B}" = NI Assistant Framework LabVIEW Code Generator 2009
"{596C11D1-2285-4057-99F6-735B50EB87E1}" = NI System API RT
"{5A70FCD2-C019-4723-868F-07CD6C7755FF}" = NI Logos 5.1
"{5ACAF333-CED0-4652-B73C-8F63C65B0376}" = NI LabVIEW 2009 Instr.lib
"{6447FE3A-8B2C-41DB-9791-322B8445B3E9}" = NI LabVIEW Deployable License 2009
"{6F7D11DC-DE87-45C8-A37E-A35B724FC771}" = NI Help Assistant
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{753ED9EB-446A-402C-AC45-E327CEA9A858}" = Origin81
"{7559B6F5-180B-479A-A8CD-2175EFBC61F8}" = NI LabVIEW 2009 Deployment Framework
"{75ECB75A-522C-4312-8DE7-597CDA9D96A3}" = HP Mobile Data Protection System
"{78C496B9-5A6B-4692-8C2E-AFFFC34E4961}" = Jasc Paint Shop Pro Studio, Dell Editon
"{7ACFB216-29F7-4331-A5ED-2563AEB51F21}" = NI Trace Engine
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = TIPCI
"{7C62B54A-E524-4F3D-83E7-0F2ABAFC978A}" = NI Xalan Delay Load 1.10.1
"{7E3668CB-1228-416E-B721-C2FA3247B985}" = NI LabVIEW Real-Time FIFO for Runtime
"{7E7A035C-9DC5-40B0-B873-002B14CCE3B8}" = NI-RPC 4.1.1f0
"{82B8F87D-C75E-4270-B030-49ECDAFF1B53}" = NI MAX Remote Configuration Installer 4.6
"{835A6F5F-BC13-48DF-BEBE-8D80B419D145}" = Cisco AnyConnect VPN Client
"{88D1DA3C-09FA-4CA7-BB6B-2CEACCFA95D5}" = NI System State Publisher
"{89A7BD8C-0FC3-49EF-9072-5C8371C0A4D6}" = NI LabVIEW Web Services Runtime
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A1369C7-A314-465C-8C96-040A427CBC85}" = NI LabVIEW 2009 Project
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8AF869D1-F416-4855-8177-EB75D73CC992}" = NI LabVIEW 2009 Web Server
"{8B43117B-7D68-45D4-8774-32F0B10535B4}" = NI LabVIEW 2009 Deutsch
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{9033A0BF-9B8A-4C27-812B-40BA10855E2D}" = NI LabVIEW 2009 Simulation
"{90ABA0A4-9393-4A17-AB0E-534CE40FB9AF}" = NI LabVIEW 2009 CINtools
"{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}" = HP ProtectTools Security Manager 2.00 C3
"{91CA0407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Small Business Edition 2003
"{92769F9C-453B-40C9-B129-6E8E52586C8E}" = NI LabVIEW Broker
"{927C1DDA-61DC-4B95-A138-8A1377E33A9A}" = NI Portable Configuration 4.6.0
"{93B8921B-2AC6-4A58-A87C-19B633DB6860}" = NI Software Provider for MAX 4.6.0
"{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}" = QuickTime
"{96094CE5-7920-47FD-8A02-68A7B5B1785F}" = NI System API Windows 32-bit
"{9F7DBC83-611C-4407-8817-8FD63E149288}" = NI SSL LabVIEW 2009 Support
"{A34D1ADB-6E94-4F42-9D8E-BA2A94C6AAB2}" = NI LabVIEW 2009 gMath
"{A96395DA-AFC5-459E-A374-CE10E84FEEB2}" = NI TDM Excel Add-In 2.1
"{ABD79E99-F9E3-413B-8D18-11070754355F}" = NI Math Kernel Libraries
"{AC76BA86-7AD7-1031-7B44-A83000000003}" = Adobe Reader 8.3.1 - Deutsch
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AE9AA575-DE74-4711-B3B3-2977D76CC1BB}" = NI TDMS
"{AF32BE73-E284-444E-B310-7EE80192949B}" = NI LabWindows/CVI DLL Builder for LabVIEW
"{AFEDF70D-8DC3-40CB-93A0-F276E64BDF9C}" = NI VC2008MSMs x86
"{B045B608-4A47-4C77-9EAD-06C394503306}" = iTunes
"{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}" = Cisco Systems VPN Client 5.0.07.0290
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B25529B0-9595-4664-9EA7-FF477FE01321}" = MPLAB Tools v7.61
"{B4285CA3-3EA6-43AD-BD87-DBF842581AB2}" = NI LabVIEW 2009 WWW
"{B5BD3DA8-1A63-4042-90FA-B26C361382C9}" = NI Remote PXI Provider for MAX 4.6.0
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{B8E65E0D-30D8-49BD-B92C-0E77A09545D6}" = NI MAX LabVIEW Support 4.6.0
"{B963C648-249B-4145-BC14-56488262E9A9}" = NI MDF Support
"{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}" = HP Credential Manager for ProtectTools
"{BA0C85C1-E5CC-4F58-84FB-8DA29F3412F0}" = NI Uninstaller
"{C014E2EB-1FEA-48F8-AE36-912D8FA659DB}" = OriginPro 8.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CEDA69AF-DD7A-42A8-B6D3-65BA0592D34E}" = NI Instrument IO Assistant for LabVIEW 9.0 32
"{D050D7362D214723AD585B541FFB6C11}" = DivX Content Uploader
"{D1032C80-FBB6-450B-8C79-B7F9A64DFFEF}" = NI Logos LabVIEW 2009 Support
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D69E0672-CDB3-4F3D-BE65-9CDB6803F60E}" = NI LabVIEW 2009 Applibs
"{D72AB2C1-D24D-4F17-B3DB-AF51223F293E}" = NI SSL Support
"{D9529709-28B0-4DA1-8749-8924C11AAFF2}" = NI Registration Wizard
"{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}" = NI Math Kernel Libraries
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{DEC25D81-2317-47F6-8B26-D54A939DA1EE}" = NI LabVIEW C Interface
"{DFEDA4ED-E67D-4E5E-8FDE-C628B4DCA01B}" = ATI Catalyst Control Center
"{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}" = Application Installer 4.00.B5
"{E1D60C68-016C-4951-8C1F-52E24DFE7836}" = NI CodeSignAPI
"{E37CCD6C-56C1-43C7-B2FA-24A32B6B09F7}" = NI Example Finder 9.0
"{E538C96B-606E-47E3-84D5-62BE82A69E39}" = NI LabVIEW 2009 Resource
"{E7485CE5-C004-44D6-AA3E-7EE4DFE2B70E}" = HP Support Phone Numbers
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EBC6DA72-25C9-45E1-9CE4-7EEBC6440538}" = NI LabVIEW 2009 User.lib
"{EDDF508C-7181-4CA1-94F5-59B49471AF3C}" = TexPoint 3.2.1
"{EE7B9A8D-19F0-450D-8E94-3E391E6044CD}" = KhalSetup
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F19E2B0A-2249-45DA-92DB-0CE0DEB8E8A4}" = NI OPC Support
"{F723A248-6AAC-4514-AFFB-7414BE02D95B}" = NI LabWindows/CVI 9.0 Run-Time Engine
"{F827F574-36ED-4D97-820A-AD6F74E02D0D}" = NI MXS 4.6.0
"{F8D407B1-B9A0-4128-8E79-17A6F9433F6C}" = NI Measurement & Automation Explorer 4.6.0
"{FB84287D-6425-4867-89AE-6221FCDE2976}" = NI LabWindows/CVI Code Generator
"{FE24BCDF-9231-450D-AA08-D3550B81EE41}" = NI LabVIEW Web Server for Run-Time Engine
"{FF06AE31-83AF-4277-A719-E697C310D95C}" = NI LabVIEW 2009 Menus
"AC3Filter" = AC3Filter (remove only)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adolix Split and Merge PDF_is1" = Adolix Split and Merge PDF v2.1
"AFPL Ghostscript 8.54" = AFPL Ghostscript 8.54
"AFPL Ghostscript Fonts" = AFPL Ghostscript Fonts
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AntiVir PersonalEdition Classic" = Avira AntiVir Personal - Free Antivirus
"ATI Display Driver" = ATI Display Driver
"Audacity_is1" = Audacity 1.2.6
"EAGLE 4.16r2" = EAGLE 4.16r2
"eMule.de 0.46c_is1" = eMule.de 0.46c v17
"ffdshow_is1" = ffdshow v1.1.3996 [2011-10-13]
"FileZilla Client" = FileZilla Client 3.1.3.1
"FileZilla Server" = FileZilla Server (remove only)
"Free M4a to MP3 Converter_is1" = Free M4a to MP3 Converter 6.0
"GSview 4.8" = GSview 4.8
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Inkscape" = Inkscape 0.48.2
"InstallShield_{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"InstallShield_{B25529B0-9595-4664-9EA7-FF477FE01321}" = MPLAB Tools v7.61
"JabRef 2.4.2" = JabRef 2.4.2
"jEdit_is1" = jEdit 4.2
"Lion_is1" = Lion 3.0.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.61.0.1400
"Matlab R2011b" = MATLAB R2011b
"MatlabR14" = MATLAB Student 7.0
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"MiKTeX 2.5" = MiKTeX 2.5
"MiKTeX 2.7" = MiKTeX 2.7
"NI Uninstaller" = Software von National Instruments
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PICC 9.60PL0" = HI-TECH PICC lite V9.60PL0
"pstoedit and importps_is1" = pstoedit and importps 3.44
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamViewer 7" = TeamViewer 7
"TeXnicCenter_is1" = TeXnicCenter Version 1 Beta 7.01 (Greengrass)
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinRAR archiver" = WinRAR
"Xvid_is1" = Xvid 1.1.3 final uninstall
"Zattoo" = Zattoo 3.3.4 Beta
"Zattoo4" = Zattoo4 4.0.4
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"JabRef" = JabRef
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 27.03.2012 10:00:53 | Computer Name = LEO_LAPTOP | Source = MATLAB | ID = 0
Description =
Error - 27.03.2012 10:01:03 | Computer Name = LEO_LAPTOP | Source = MATLAB | ID = 0
Description =
Error - 27.03.2012 10:02:02 | Computer Name = LEO_LAPTOP | Source = MATLAB | ID = 0
Description =
Error - 27.03.2012 18:18:53 | Computer Name = LEO_LAPTOP | Source = MATLAB | ID = 0
Description =
Error - 28.03.2012 10:44:26 | Computer Name = LEO_LAPTOP | Source = MATLAB | ID = 0
Description =
Error - 28.03.2012 11:21:31 | Computer Name = LEO_LAPTOP | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung MATLAB.exe, Version 7.13.0.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 15.04.2012 18:24:54 | Computer Name = LEO_LAPTOP | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung skype.exe, Version 4.2.0.187, fehlgeschlagenes
Modul ntdll.dll, Version 5.1.2600.3520, Fehleradresse 0x00011a5d.
Error - 15.04.2012 18:25:01 | Computer Name = LEO_LAPTOP | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung drwtsn32.exe, Version 5.1.2600.0, fehlgeschlagenes
Modul dbghelp.dll, Version 5.1.2600.2180, Fehleradresse 0x0001295d.
Error - 15.04.2012 18:26:46 | Computer Name = LEO_LAPTOP | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung Skype.exe, Version 4.2.0.187, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 16.04.2012 15:15:45 | Computer Name = LEO_LAPTOP | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung inkscape.exe, Version 0.48.1.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
[ Cisco AnyConnect VPN Client Events ]
Error - 15.04.2012 18:17:48 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CMainThread::Notify File: .\MainThread.cpp Line: 6000 Invoked
Function: CMainThread::processNotice Return Code: -33095647 (0xFE070021) Description:
ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 15.04.2012 22:38:55 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67110873
Description = Termination reason code 9: Client PC is shutting down.
Error - 16.04.2012 08:29:44 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CIPv4ChangeRouteHelper::FindBestRoute File: .\IPv4ChangeRouteHelper.cpp
Line:
2460 Invoked Function: CIPv4RouteTable::FindMatchingRoute Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 16.04.2012 08:29:44 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CRouteMgr::UpdatePublicAddress File: .\RouteMgr.cpp Line:
2116 Invoked Function: CChangeRouteTable::FindBestRouteInterface Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 16.04.2012 08:29:44 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CMainThread::applyHostConfigForNoVpn File: .\MainThread.cpp
Line:
7411 Invoked Function: CHostConfigMgr::DeterminePublicInterface Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 16.04.2012 08:29:44 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CMainThread::MainLoop File: .\MainThread.cpp Line: 325 Invoked
Function: CMainThread::applyHostConfigForNoVpn Return Code: -33095647 (0xFE070021)
Description:
ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 17.04.2012 20:03:06 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CIPv4ChangeRouteHelper::FindBestRoute File: .\IPv4ChangeRouteHelper.cpp
Line:
2460 Invoked Function: CIPv4RouteTable::FindMatchingRoute Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 17.04.2012 20:03:06 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CRouteMgr::UpdatePublicAddress File: .\RouteMgr.cpp Line:
2116 Invoked Function: CChangeRouteTable::FindBestRouteInterface Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 17.04.2012 20:03:06 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CMainThread::applyHostConfigForNoVpn File: .\MainThread.cpp
Line:
7411 Invoked Function: CHostConfigMgr::DeterminePublicInterface Return Code: -33095647
(0xFE070021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED
Error - 17.04.2012 20:03:06 | Computer Name = LEO_LAPTOP | Source = vpnagent | ID = 67108866
Description = Function: CMainThread::MainLoop File: .\MainThread.cpp Line: 325 Invoked
Function: CMainThread::applyHostConfigForNoVpn Return Code: -33095647 (0xFE070021)
Description:
ROUTETABLE_ERROR_GETBESTROUTE_FAILED
[ Credential Manager Events ]
Error - 14.10.2011 13:15:26 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 18.10.2011 05:13:33 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 15.11.2011 09:47:03 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 16.11.2011 05:02:03 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 16.12.2011 08:51:51 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 09.02.2012 23:23:54 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 17.03.2012 09:12:01 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 22.03.2012 19:40:29 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 23.03.2012 07:31:48 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
Error - 30.03.2012 08:49:43 | Computer Name = LEO_LAPTOP | Source = AuthServer | ID = 100811779
Description = The system failed to authenticate the submitted user credentials. Benutzer:
Leo@Credential Manager Client-GUID: {F01A31F7-51E5-4754-A9E9-47628503D6E2} Fehler:
0xC5161001 Clienthost: localhost Clientadresse: 127.0.0.1 Autorität: HP Serverhost:
localhost Protokoll: HTTP
[ System Events ]
Error - 16.04.2012 21:09:55 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Cisco Systems, Inc. Installer service" ist vom Dienst
"TCP/IP-Protokolltreiber" abhängig, der aufgrund folgenden Fehlers nicht gestartet
wurde: %%31
Error - 16.04.2012 21:09:55 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Message Queuing" ist vom Dienst "Distributed Transaction
Coordinator" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 16.04.2012 21:09:55 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Message Queuing Triggers" ist vom Dienst "Message Queuing"
abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 16.04.2012 21:09:55 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7001
Description = Der Dienst "IPSEC-Dienste" ist vom Dienst "IPSEC-Treiber" abhängig,
der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 16.04.2012 21:09:55 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
AFD avgio Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip Tcpip6
Error - 17.04.2012 10:33:30 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Cisco Systems, Inc. Installer service" wurde aufgrund
folgenden Fehlers nicht gestartet: %%3
Error - 17.04.2012 18:22:30 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Cisco Systems, Inc. Installer service" wurde aufgrund
folgenden Fehlers nicht gestartet: %%3
Error - 17.04.2012 20:03:05 | Computer Name = LEO_LAPTOP | Source = sr | ID = 1
Description = Beim Verarbeiten der Datei "" auf Volume "HarddiskVolume1" ist im
Wiederherstellungsfilter der unerwartete Fehler "0xC0000001" aufgetreten. Die Volumeüberwachung
wurde angehalten.
Error - 17.04.2012 20:03:22 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Cisco Systems, Inc. Installer service" wurde aufgrund
folgenden Fehlers nicht gestartet: %%3
Error - 17.04.2012 20:03:32 | Computer Name = LEO_LAPTOP | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
AliIde PCIIde ViaIde
< End of report > --- --- --- 6. Und noch die Liste von CCleaner: Code:
ABBYY FineReader 6.0 Sprint ABBYY Software House 21.02.2007 119.4MB 6.00.1395.41612
AC3Filter (remove only) 18.04.2012
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 18.04.2012 10.0.45.2
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 18.04.2012 11.1.102.55
Adobe Photoshop 7.0 Adobe Systems, Inc. 18.04.2012 7.0
Adobe Reader 8.3.1 - Deutsch Adobe Systems Incorporated 07.02.2012 107.1MB 8.3.1
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 18.04.2012 11.5.8.612
Adolix Split and Merge PDF v2.1 Adolix Software 07.11.2010
AFPL Ghostscript 8.54 18.04.2012
AFPL Ghostscript Fonts 17.04.2012
Agere Systems HDA Modem
Apple Mobile Device Support Apple Inc. 06.10.2007 33.5MB 1.1.1.1
Apple Software Update Apple Inc. 06.10.2007 2.15MB 2.0.2.92
Application Installer 4.00.B5 Hewlett-Packard Company 4.00.B5
ATI Catalyst Control Center 16.04.2006 205MB 1.2.2253.3538
ATI Display Driver 18.04.2012 8.223.4-060302a1-031384C
Audacity 1.2.6 18.04.2012
Avira AntiVir Personal - Free Antivirus Avira GmbH 18.04.2012
CCleaner Piriform 18.04.2012 3.17
Cisco AnyConnect VPN Client Cisco Systems, Inc. 20.08.2011 4.46MB 2.5.0217
Cisco Systems VPN Client 5.0.07.0290 Cisco Systems, Inc. 17.10.2011 12.4MB 5.0.6
DivX Codec DivX, Inc. 18.04.2012 6.8.0
DivX Content Uploader DivX, Inc. 18.04.2012 1.2.1
DivX Converter DivX, Inc. 18.04.2012 6.6.0
DivX Player 18.04.2012 6.7.0
DivX Web Player DivX,Inc. 18.04.2012 1.4.0
Dropbox Dropbox, Inc. 18.04.2012 1.2.52
EAGLE 4.16r2 18.04.2012
eMule.de 0.46c v17 eMule.de 18.04.2012
ffdshow v1.1.3996 [2011-10-13] 08.12.2011 1.1.3996.0
FileZilla Client 3.1.3.1 18.04.2012 3.1.3.1
FileZilla Server (remove only) 18.04.2012
Free M4a to MP3 Converter 6.0 ManiacTools.com 18.04.2012
GSview 4.8 18.04.2012
HI-TECH PICC lite V9.60PL0 HI-TECH Software 16.08.2007 9.60
HP Credential Manager for ProtectTools Hewlett-Packard Development Company, L.P. 01.02.2007 20.9MB 1.5.0.631.36.E
HP Integrated Module with Bluetooth wireless technology HP 31.01.2007 30.9MB 4.0.1.3301
HP Mobile Data Protection System 17.04.2012 1.00 A6
HP ProtectTools Security Manager 2.00 C3 Hewlett-Packard Company 01.02.2007 2.00 C3
HP Quick Launch Buttons 6.00 D2 Hewlett-Packard Company 16.04.2006 6.00 D2
HP Support Phone Numbers Hewlett-Packard 16.04.2006 1.00.0002
Inkscape 0.48.2 18.04.2012 0.48.2
iTunes Apple Inc. 06.10.2007 64.0MB 7.4.3.1
J2SE Development Kit 5.0 Update 12 Sun Microsystems, Inc. 19.09.2007 282MB 1.5.0.120
J2SE Runtime Environment 5.0 Update 12 Sun Microsystems, Inc. 19.09.2007 153.5MB 1.5.0.120
JabRef 18.04.2012
JabRef 2.4.2 JabRef Team 18.04.2012 2.4.2
Jasc Paint Shop Photo Album 5 Jasc Software, Inc. 21.02.2007 126.7MB 5.22
Jasc Paint Shop Pro Studio, Dell Editon Jasc Software Inc 21.02.2007 234MB 1.01.0000
Java(TM) 6 Update 26 Oracle 20.08.2011 91.1MB 6.0.260
jEdit 4.2 Slava Pestov 18.04.2012 4.2
Lion 3.0.0 www.schleinzer.com 31.08.2008
Logitech Desktop Messenger Logitech, Inc. 31.01.2007 2.52.18
Logitech SetPoint Logitech 31.01.2007 3.0
Malwarebytes Anti-Malware Version 1.61.0.1400 Malwarebytes Corporation 17.04.2012 1.61.0.1400
MATLAB R2011b The MathWorks, Inc. 18.04.2012 7.13
MATLAB Student 7.0 18.04.2012
Microsoft .NET Framework 1.1 11.06.2010
Microsoft .NET Framework 1.1 German Language Pack Microsoft 07.08.2004 3.02MB 1.1.4322
Microsoft Office Small Business Edition 2003 Microsoft Corporation 01.02.2007 351MB 11.0.5614.0
Microsoft Silverlight Microsoft Corporation 04.11.2011 68.8MB 4.0.60831.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 17.10.2011 5.28MB 8.0.61001
MiKTeX 2.5 MiKTeX.org 18.04.2012 2.5
MiKTeX 2.7 MiKTeX.org 18.04.2012 2.7
MPLAB Tools v7.61 Microchip Technology Inc. 16.08.2007 7.61
MSXML 4.0 SP2 (KB927978) Microsoft Corporation 07.02.2007 2.56MB 4.20.9841.0
MSXML 4.0 SP2 (KB936181) Microsoft Corporation 15.08.2007 2.62MB 4.20.9848.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 12.11.2008 2.67MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 25.11.2009 2.77MB 4.20.9876.0
OriginPro 8.1 OriginLabCorporation 09.01.2010 8.1
PDFCreator Frank Heindörfer, Philip Chinery 23.08.2007 0.9.3
pstoedit and importps 3.44 H&W Glunz 18.04.2012
QuickTime Apple Inc. 06.10.2007 74.0MB 7.2.0.240
SIMetrix/SIMPLIS Intro 18.04.2012 5.0
Skype™ 4.2 Skype Technologies S.A. 25.09.2010 19.5MB 4.2.187
Software von National Instruments National Instruments 18.04.2012
SoundMAX Analog Devices 16.04.2006 5.10.01.4321
ST Wiederherstellungs- & Sicherungsprogramme Hewlett-Packard Company 16.04.2006 2.1K
Synaptics Pointing Device Driver Synaptics 18.04.2012 8.2.4.0
TeamViewer 7 TeamViewer 18.04.2012 7.0.12979
Texas Instruments PCIxx21/x515/xx12 drivers. Texas Instruments Inc. 31.01.2007 1.15.0000
TeXnicCenter Version 1 Beta 7.01 (Greengrass) TeXnicCenter.org 18.04.2012 Version 1 Beta 7.01
TexPoint 3.2.1 George Necula & Andreas Glatz 28.04.2009 9.02MB 3.2.1
WD Diagnostics Western Digital Technologies 17.09.2007 0.81MB 1.09.0002
Windows Installer 3.1 (KB893803) Microsoft Corporation 18.04.2012 3.1
Windows Internet Explorer 8 Microsoft Corporation 04.12.2011 20090308.140743
WinRAR 18.04.2012
Xvid 1.1.3 final uninstall Xvid team (Koepi) 17.04.2012 1.1
Zattoo 3.3.4 Beta Zattoo Inc. 18.04.2012 3.3.4 Beta
Zattoo4 4.0.4 Zattoo Inc. 18.04.2012 4.0.4 Nachtrag: Die ausgeblendeten Desktop-Icons konnte ich mittlerweile selber wiederherstellen.
Sind anhand obiger Log-Files noch weitere Schritte notwendig? |