defogger ausgeführt
OTL.txt Code:
OTL logfile created on: 01.05.2013 13:42:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jatak81\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,84 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 62,95% Memory free
7,68 Gb Paging File | 6,09 Gb Available in Paging File | 79,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,88 Gb Total Space | 183,45 Gb Free Space | 78,77% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 164,44 Gb Free Space | 70,73% Space Free | Partition Type: NTFS
Computer Name: JATAK_81 | User Name: Jatak81 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.05.01 13:40:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jatak81\Desktop\OTL.exe
PRC - [2013.04.24 23:30:01 | 000,920,472 | ---- | M] (Mozilla Corporation) -- D:\Programme\FIREFOX Browser\firefox.exe
PRC - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.10.31 00:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- D:\Programme\AVAST AntiVirus\AvastUI.exe
PRC - [2012.10.31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- D:\Programme\AVAST AntiVirus\AvastSvc.exe
PRC - [2011.11.16 22:13:28 | 001,613,824 | ---- | M] (Mortal Universe) -- D:\Programme\POP Peeper\POPPeeper.exe
PRC - [2010.06.29 16:46:44 | 002,326,920 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2010.03.04 16:30:10 | 000,095,744 | ---- | M] (CrispyBytes Software) -- D:\Programme\DateInTray\DateInTray.exe
PRC - [2009.09.12 16:31:36 | 000,357,384 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009.09.12 16:30:48 | 005,048,488 | ---- | M] (Acronis) -- D:\Programme\ACRONIS TrueImage Backup Tool\TrueImageMonitor.exe
PRC - [2009.07.14 20:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
PRC - [2009.03.10 19:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2008.05.21 21:16:42 | 001,077,248 | ---- | M] (Singer's Creations) -- D:\Programme\Weather Watcher\ww.exe
PRC - [2007.09.25 23:18:54 | 000,561,152 | ---- | M] (UASSOFT.COM) -- C:\Program Files (x86)\Multimedia Mouse Driver\V5\KMProcess.exe
PRC - [2007.09.17 22:51:14 | 001,470,464 | ---- | M] (UASSOFT.COM) -- C:\Program Files (x86)\Multimedia Mouse Driver\V5\KMConfig.exe
PRC - [2007.03.06 14:51:14 | 000,212,992 | ---- | M] (UASSOFT.COM) -- C:\Program Files (x86)\Multimedia Mouse Driver\V5\StartAutorun.exe
PRC - [2003.02.04 08:22:30 | 000,181,312 | ---- | M] () -- C:\Windows\SysWOW64\ScsiAccess.EXE
========== Modules (No Company Name) ==========
MOD - [2013.04.24 23:30:00 | 003,133,336 | ---- | M] () -- D:\Programme\FIREFOX Browser\mozjs.dll
MOD - [2007.08.05 22:53:32 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Multimedia Mouse Driver\V5\MouseHook.dll
MOD - [2007.08.05 21:31:02 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Multimedia Mouse Driver\V5\keydll.dll
========== Services (SafeList) ==========
SRV:64bit: - [2009.08.27 14:38:22 | 000,251,760 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:64bit: - [2009.08.05 15:20:12 | 000,488,800 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:64bit: - [2009.08.04 12:15:06 | 000,826,224 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:64bit: - [2009.08.03 18:17:56 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV:64bit: - [2009.07.28 15:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.11.09 12:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- D:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.11.08 00:37:40 | 002,828,408 | ---- | M] (COMODO) [Auto | Running] -- D:\Programme\COMODO Firewall\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2012.10.31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Programme\AVAST AntiVirus\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.06.29 16:46:44 | 002,326,920 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2009.09.12 16:32:46 | 000,891,432 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009.08.17 11:48:42 | 000,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2009.08.10 20:55:58 | 000,248,688 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
SRV - [2009.08.06 16:02:50 | 000,116,104 | ---- | M] (Toshiba Europe GmbH) [On_Demand | Stopped] -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe -- (TemproMonitoringService)
SRV - [2009.07.14 20:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe -- (ConfigFree Gadget Service)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.05.22 20:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009.03.10 19:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007.04.13 21:09:56 | 000,792,112 | ---- | M] (Nero AG) [On_Demand | Stopped] -- D:\Programme\NERO Burning\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2003.02.04 08:22:30 | 000,181,312 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\ScsiAccess.EXE -- (ScsiAccess)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012.10.31 00:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012.10.31 00:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012.10.31 00:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012.10.31 00:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012.10.31 00:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012.10.15 18:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.06.29 20:45:41 | 000,069,152 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2010.06.29 16:46:46 | 000,250,400 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\afcdp.sys -- (afcdp)
DRV:64bit: - [2010.06.29 16:46:41 | 001,455,648 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tdrpm251.sys -- (tdrpman251)
DRV:64bit: - [2010.06.29 16:46:39 | 000,929,312 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\timntr.sys -- (timounter)
DRV:64bit: - [2010.06.29 16:46:33 | 000,254,496 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010.06.09 17:10:16 | 000,046,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nm3.sys -- (nm3)
DRV:64bit: - [2009.11.05 06:51:30 | 000,446,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTL8187B.sys -- (RTL8187B)
DRV:64bit: - [2009.08.27 09:07:06 | 007,369,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009.07.30 21:02:36 | 000,044,912 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LPCFilter.sys -- (LPCFilter)
DRV:64bit: - [2009.07.30 20:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:64bit: - [2009.07.30 18:46:22 | 000,222,208 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009.07.24 16:57:08 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:64bit: - [2009.07.20 18:48:32 | 000,274,480 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009.07.14 16:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.10 07:45:12 | 000,139,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2009.06.22 18:06:38 | 000,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)
DRV:64bit: - [2009.06.20 04:09:57 | 001,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009.06.19 20:15:22 | 000,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.06.04 18:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009.05.22 22:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSEH&bmod=TSEH
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=TSEH&bmod=TSEH
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{3B5A81A2-2771-4584-A54C-8EDFAC32218C}: "URL" = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibade-win7-ie-search-21&index=blended&linkCode=ur2
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSEH_deDE363DE365
IE - HKCU\..\SearchScopes\{8428C714-5E31-4031-ABB0-6F93AEBE0C15}: "URL" = hxxp://rover.ebay.com/rover/1/707-44556-9400-9/4?satitle={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.11.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.0.5: D:\Programme\VLC MediaPlayer\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.4: D:\Programme\VLC MediaPlayer\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: D:\Programme\VLC MediaPlayer\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@sun.com/npsopluginmi;version=1.0: D:\Programme\OpenOffice\OpenOffice.org 3\program File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: D:\Programme\FIREFOX Browser\components [2013.04.24 23:30:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: D:\Programme\FIREFOX Browser\plugins [2013.04.24 23:29:37 | 000,000,000 | ---D | M]
[2010.01.19 21:29:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Extensions
[2013.04.30 23:20:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions
[2011.11.25 20:48:20 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2013.04.14 16:15:54 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2013.03.03 15:27:45 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012.09.26 20:50:37 | 000,000,000 | ---D | M] (Cookies Manager+) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d}
[2013.02.18 21:52:04 | 000,000,000 | ---D | M] (Bitdefender QuickScan) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2012.07.05 20:34:47 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\2020Player_IKEA@2020Technologies.com
[2011.11.25 20:48:20 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\custombuttons@xsms.org
[2011.11.25 20:48:19 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\_DEFAULT.PROFIL\extensions\CustomButtons2@cbtnext.org
[2011.11.16 21:53:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions
[2011.11.16 21:53:29 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2011.11.16 21:53:29 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.11.16 21:53:30 | 000,000,000 | ---D | M] (Clear Cache Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}
[2011.11.16 21:53:30 | 000,000,000 | ---D | M] (IE View) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}
[2011.11.16 21:53:30 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.11.16 21:53:30 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2011.11.16 21:53:33 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.11.16 21:53:33 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.16 21:53:34 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011.11.16 21:53:36 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.16 21:53:29 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\custombuttons@xsms.org
[2011.11.16 21:53:29 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\CustomButtons2@cbtnext.org
[2011.11.24 18:16:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions
[2011.11.24 18:16:06 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.11.24 18:16:06 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.11.24 18:16:09 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.11.24 18:16:09 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.24 18:16:10 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.24 18:16:05 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\custombuttons@xsms.org
[2011.11.24 18:16:05 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\CustomButtons2@cbtnext.org
[2011.11.25 20:44:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions
[2011.11.25 20:44:30 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.11.25 20:44:30 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.11.25 20:44:32 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.11.25 20:44:32 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.25 20:44:33 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.25 20:44:30 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\custombuttons@xsms.org
[2011.11.25 20:44:29 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\CustomButtons2@cbtnext.org
[2011.08.23 21:54:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\0s4fkwt4.default (0)\extensions
[2011.07.19 16:50:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\0s4fkwt4.default (0)\extensions\trash
[2011.07.13 01:35:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (Clear Cache Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (IE View) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2011.07.13 01:01:46 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.07.13 01:33:59 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.07.13 01:01:47 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011.07.13 01:01:47 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.07.13 01:01:45 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\custombuttons@xsms.org
[2011.07.13 01:01:44 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\CustomButtons2@cbtnext.org
[2011.11.25 20:07:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen\extensions
[2011.11.04 19:52:48 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.25 20:07:14 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.25 20:00:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions
[2011.11.25 20:00:03 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2011.11.25 20:00:03 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.11.25 20:00:04 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.11.25 20:00:04 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2011.11.25 20:00:07 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.11.25 20:00:07 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.25 20:00:08 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011.11.25 20:00:09 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.25 20:00:10 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2011.11.25 20:00:03 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\custombuttons@xsms.org
[2011.11.25 20:00:02 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\CustomButtons2@cbtnext.org
[2011.01.31 23:31:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\cbfyyiyv.Profil wegen RTF+DOC\extensions
[2011.07.13 00:40:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions
[2010.04.13 20:20:24 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2011.04.04 09:51:23 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2010.04.13 20:20:19 | 000,000,000 | ---D | M] (Clear Cache Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}
[2010.04.13 20:20:24 | 000,000,000 | ---D | M] (IE View) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}
[2010.04.13 20:20:24 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2010.04.13 20:20:24 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2010.04.13 20:20:19 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.04.08 15:08:06 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010.06.11 23:34:03 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011.06.23 11:44:03 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.06.23 11:43:13 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\custombuttons@xsms.org
[2010.04.13 20:20:22 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\CustomButtons2@cbtnext.org
[2010.01.19 21:29:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Kopie\extensions
[2010.03.18 20:57:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions
[2010.03.18 20:57:34 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2010.03.18 20:57:34 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2010.03.18 20:57:34 | 000,000,000 | ---D | M] (Clear Cache Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}
[2010.03.18 20:57:34 | 000,000,000 | ---D | M] (IE View) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}
[2010.03.18 20:57:35 | 000,000,000 | ---D | M] (Googlebar Lite) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}
[2010.03.18 20:57:35 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2010.03.18 20:57:35 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2010.03.18 20:57:36 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2010.03.18 20:57:37 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.03.18 20:57:30 | 000,000,000 | ---D | M] (Cache Status) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\cache@status.org
[2010.03.18 20:57:32 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\CustomButtons2@cbtnext.org
[2010.03.18 20:57:32 | 000,000,000 | ---D | M] ("Searchbar Autocomplete Order") -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\searchbarAutocompleteOrder@alice
[2010.03.18 20:57:34 | 000,000,000 | ---D | M] (SQLite Manager) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default - Original\extensions\SQLiteManager@mrinalkant.blogspot.com
[2011.11.25 19:58:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\nrz0inro.0000000000000000\extensions
[2011.11.24 18:07:33 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\nrz0inro.0000000000000000\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.25 19:58:26 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\nrz0inro.0000000000000000\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.16 22:44:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions
[2011.11.16 22:14:29 | 000,000,000 | ---D | M] (Panic Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{24cea704-946d-11da-a72b-0800200c9a66}
[2011.11.16 22:14:29 | 000,000,000 | ---D | M] (Old Location Bar) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0}
[2011.11.16 22:14:29 | 000,000,000 | ---D | M] (Clear Cache Button) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}
[2011.11.16 22:14:30 | 000,000,000 | ---D | M] (External Application Buttons [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}
[2011.11.16 22:14:30 | 000,000,000 | ---D | M] (Update Notifier [de]) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{95f24680-9e31-11da-a746-0800200c9a66}
[2011.11.16 22:14:31 | 000,000,000 | ---D | M] (NoUn Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}
[2011.11.16 22:14:31 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.16 22:14:32 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}
[2011.11.16 22:44:45 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.16 22:14:29 | 000,000,000 | ---D | M] (Custom Buttons) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\custombuttons@xsms.org
[2011.11.16 22:14:29 | 000,000,000 | ---D | M] (Custom Buttons²) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\CustomButtons2@cbtnext.org
[2011.01.31 22:05:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\qcy11sxi.Ganz-ganz_NEU\extensions
[2010.03.01 17:23:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\rm5kexch.Ganz_NEU\extensions
[2012.08.09 23:38:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\rpa4aq9j.NEU\extensions
[2012.08.09 23:38:44 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\rpa4aq9j.NEU\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.12.02 22:05:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\xwdndx2p.________\extensions
[2011.11.25 20:17:51 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\xwdndx2p.________\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.11.25 20:17:52 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\xwdndx2p.________\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.25 16:55:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\xwdndx2p.________ - Kopie\extensions
[2012.04.17 20:58:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\zoen1t1f.Standard-Benutzer\extensions
[2012.04.17 20:58:12 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jatak81\AppData\Roaming\mozilla\Firefox\Profiles\ALTE PROFILE\zoen1t1f.Standard-Benutzer\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\searchbarAutocompleteOrder@alice.xpi
[2013.04.30 23:20:42 | 000,248,978 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2013.03.31 15:53:41 | 000,151,803 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\status4evar@caligonstudios.com.xpi
[2013.03.31 12:37:20 | 000,111,028 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi
[2013.03.07 21:45:12 | 000,137,731 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2013.04.06 21:42:19 | 000,109,086 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{891f0410-aaa2-11e0-9f1c-0800200c9a66}.xpi
[2012.03.22 00:52:40 | 000,034,027 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{8ea2f18c-4168-4331-95b8-f7f30c253612}.xpi
[2012.03.22 00:46:59 | 000,021,964 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{99f30549-35d4-11d9-8a2a-396c6e707e82}.xpi
[2013.02.20 00:34:39 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.11.21 00:06:40 | 000,002,964 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\_DEFAULT.PROFIL\extensions\{d618933b-9eb4-1c04-949d-0f9b1a39ebb9}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.08.23 22:13:37 | 000,255,306 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.10.07 17:17:55 | 000,132,466 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\status4evar@caligonstudios.com.xpi
[2011.07.13 00:40:48 | 000,118,227 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.11.09 17:58:04 | 000,021,027 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{8a8c1ada-2504-45c6-a2d2-265591abbd00}.xpi
[2011.08.23 22:13:52 | 000,608,840 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (1)\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.08.23 22:13:37 | 000,255,306 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.10.07 17:17:55 | 000,132,466 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\status4evar@caligonstudios.com.xpi
[2011.11.16 23:15:38 | 000,047,883 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi
[2011.11.16 23:15:39 | 000,118,455 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.11.09 17:58:04 | 000,021,027 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{8a8c1ada-2504-45c6-a2d2-265591abbd00}.xpi
[2011.11.16 23:15:50 | 000,627,675 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.11.21 00:06:40 | 000,002,964 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (2)\extensions\{d618933b-9eb4-1c04-949d-0f9b1a39ebb9}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.08.23 22:13:37 | 000,255,306 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.11.25 19:27:41 | 000,144,088 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\status4evar@caligonstudios.com.xpi
[2011.11.16 23:15:38 | 000,047,883 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi
[2011.11.16 23:15:39 | 000,118,455 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.11.25 17:54:19 | 000,051,605 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{891f0410-aaa2-11e0-9f1c-0800200c9a66}.xpi
[2011.11.09 17:58:04 | 000,021,027 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{8a8c1ada-2504-45c6-a2d2-265591abbd00}.xpi
[2011.11.16 23:15:50 | 000,627,675 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.11.21 00:06:40 | 000,002,964 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\_DEFAULT.PROFIL - Kopie (3)\extensions\{d618933b-9eb4-1c04-949d-0f9b1a39ebb9}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\cache@status.org.xpi
[2011.06.24 19:50:44 | 000,004,489 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.06.23 11:43:41 | 000,254,358 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.07.13 01:35:16 | 000,128,022 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\status4evar@caligonstudios.com.xpi
[2011.07.13 00:40:48 | 000,118,227 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.06.23 11:44:06 | 000,559,138 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\1n8kfg9y.default (1)\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.07.13 00:40:48 | 000,118,227 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.08.23 22:13:52 | 000,608,840 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.08.23 22:13:37 | 000,255,306 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.10.07 17:17:55 | 000,132,466 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\status4evar@caligonstudios.com.xpi
[2011.11.17 00:34:22 | 000,010,707 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{563e4790-7e70-11da-a72b-0800200c9a66}.xpi
[2011.11.17 00:34:21 | 000,047,883 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi
[2011.07.13 00:40:48 | 000,118,227 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.08.23 22:13:52 | 000,608,840 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\2nlcv4u9.zum Test & Loeschen - Kopie\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\cache@status.org.xpi
[2011.06.24 19:50:44 | 000,004,489 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.06.23 11:43:41 | 000,254,358 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.05.08 15:03:19 | 000,106,670 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\status4evar@caligonstudios.com.xpi
[2011.07.13 00:40:48 | 000,118,227 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.06.23 11:44:06 | 000,559,138 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\Default Profiles (alt)\0s4fkwt4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.05.08 15:56:51 | 000,021,992 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\cache@status.org.xpi
[2011.10.26 13:12:27 | 000,006,016 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\searchbarAutocompleteOrder@alice.xpi
[2011.08.23 22:13:37 | 000,255,306 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi
[2011.10.07 17:17:55 | 000,132,466 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\status4evar@caligonstudios.com.xpi
[2011.11.16 22:44:18 | 000,047,883 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi
[2011.11.16 22:44:19 | 000,118,455 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.11.16 22:44:34 | 000,627,675 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\osaut18e.WEGEN_FLACKERTN\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.11.25 19:13:13 | 000,144,088 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\xwdndx2p.________\extensions\status4evar@caligonstudios.com.xpi
[2011.11.24 19:47:20 | 000,118,455 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\xwdndx2p.________\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
[2011.11.25 17:33:13 | 000,051,605 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\xwdndx2p.________\extensions\{891f0410-aaa2-11e0-9f1c-0800200c9a66}.xpi
[2011.12.02 22:05:50 | 000,627,675 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\xwdndx2p.________\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011.11.24 19:47:20 | 000,118,455 | ---- | M] () (No name found) -- C:\Users\Jatak81\AppData\Roaming\mozilla\firefox\profiles\ALTE PROFILE\xwdndx2p.________ - Kopie\extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - D:\Programme\AVAST AntiVirus\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programme\AVAST AntiVirus\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - D:\Programme\AVAST AntiVirus\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programme\AVAST AntiVirus\aswWebRepIE.dll (AVAST Software)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] D:\Programme\COMODO Firewall\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avast] D:\Programme\AVAST AntiVirus\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [KMConfig] "C:\Program Files (x86)\Multimedia Mouse Driver\V5\StartAutorun.exe" KMConfig.exe File not found
O4 - HKLM..\Run: [TrueImageMonitor.exe] D:\Programme\ACRONIS TrueImage Backup Tool\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [tuloxFreeWBF] File not found
O4 - HKCU..\Run: [DateInTray] D:\Programme\DateInTray\DateInTray.exe (CrispyBytes Software)
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe File not found
O4 - HKCU..\Run: [WeatherWatcher] D:\Programme\Weather Watcher\ww.exe (Singer's Creations)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Users\Jatak81\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\POP Peeper.lnk = D:\Programme\POP Peeper\POPPeeper.exe (Mortal Universe)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = Reg Error: Unknown registry data type File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O8:64bit: - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://download.bitdefender.com/resources/scanner/sources/de/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {72376E32-8AF2-473F-BE32-E5D0F39C865D} hxxp://www.cyberlink.com/prog/win7/js/UpdateAdvisor.cab (CUpdateAdvisorCtrl Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{18837B9E-14C3-4626-ABAA-05812D25A579}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{319682cb-86d6-11e1-bcd5-002622f08946}\Shell - "" = AutoRun
O33 - MountPoints2\{319682cb-86d6-11e1-bcd5-002622f08946}\Shell\AutoRun\command - "" = F:\MediaManager.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2013.05.01 13:40:42 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jatak81\Desktop\OTL.exe
[2013.04.22 21:02:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013.04.05 22:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\hps
[2013.04.05 20:41:02 | 000,000,000 | ---D | C] -- C:\Users\Jatak81\Desktop\CEWE Fotobuch
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.05.01 13:40:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jatak81\Desktop\OTL.exe
[2013.05.01 13:35:48 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.05.01 13:35:48 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.05.01 13:32:28 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.05.01 13:32:27 | 001,491,530 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.05.01 13:32:27 | 000,658,478 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013.05.01 13:32:27 | 000,130,950 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013.05.01 13:32:27 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.05.01 13:28:06 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.05.01 13:27:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.05.01 13:27:01 | 3092,938,752 | -HS- | M] () -- C:\hiberfil.sys
[2013.04.30 22:54:31 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.04.30 19:12:34 | 000,000,740 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.04.17 10:41:53 | 000,099,586 | ---- | M] () -- C:\Users\Jatak81\Desktop\Prilozhenie3p.pdf
[2013.04.17 10:35:37 | 000,098,311 | ---- | M] () -- C:\Users\Jatak81\Desktop\Prilozhenie3.pdf
[2013.04.15 09:18:01 | 000,393,496 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.04.04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.04.17 10:41:53 | 000,099,586 | ---- | C] () -- C:\Users\Jatak81\Desktop\Prilozhenie3p.pdf
[2013.04.17 10:35:36 | 000,098,311 | ---- | C] () -- C:\Users\Jatak81\Desktop\Prilozhenie3.pdf
[2011.12.16 23:47:01 | 006,728,934 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\census.cache
[2011.12.16 23:46:25 | 000,125,538 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\ars.cache
[2011.12.16 23:33:30 | 000,000,036 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\housecall.guid.cache
[2011.11.19 14:50:17 | 000,003,584 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.03 17:23:16 | 000,000,001 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\llftool.4.05.agreement
[2011.05.17 22:27:12 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2010.10.16 00:14:41 | 000,007,668 | ---- | C] () -- C:\Users\Jatak81\AppData\Local\resmon.resmoncfg
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2010.09.27 13:57:43 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\Acronis
[2011.12.23 00:22:21 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\Ashampoo
[2012.04.01 19:19:13 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\e-academy Inc
[2010.05.07 23:18:26 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\Ectaco
[2011.09.10 18:17:28 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\FreeAudioPack
[2010.01.27 22:35:08 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\LingvoSoft
[2010.01.28 00:06:56 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\OpenOffice.org
[2013.02.20 01:41:47 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\QuickScan
[2010.01.19 17:43:04 | 000,000,000 | ---D | M] -- C:\Users\Jatak81\AppData\Roaming\Toshiba
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:B755D674
< End of report >
extras.txt Code:
OTL Extras logfile created on: 01.05.2013 13:42:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jatak81\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,84 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 62,95% Memory free
7,68 Gb Paging File | 6,09 Gb Available in Paging File | 79,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,88 Gb Total Space | 183,45 Gb Free Space | 78,77% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 164,44 Gb Free Space | 70,73% Space Free | Partition Type: NTFS
Computer Name: JATAK_81 | User Name: Jatak81 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Programme\FIREFOX Browser\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programme\VLC MediaPlayer\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [CEWE FOTOSCHAU] -- "D:\Programme\CEWE-Fotobuch\CEWE FOTOSCHAU.exe" -d "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Mein CEWE FOTOBUCH] -- "D:\Programme\CEWE-Fotobuch\Mein CEWE FOTOBUCH.exe" "%1" ()
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "D:\Programme\VLC MediaPlayer\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "D:\Programme\WinAmp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "D:\Programme\WinAmp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "D:\Programme\WinAmp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programme\VLC MediaPlayer\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [CEWE FOTOSCHAU] -- "D:\Programme\CEWE-Fotobuch\CEWE FOTOSCHAU.exe" -d "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Mein CEWE FOTOBUCH] -- "D:\Programme\CEWE-Fotobuch\Mein CEWE FOTOBUCH.exe" "%1" ()
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "D:\Programme\VLC MediaPlayer\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "D:\Programme\WinAmp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "D:\Programme\WinAmp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "D:\Programme\WinAmp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1CA20391-BD10-4636-B720-4659608F11B8}" = lport=445 | protocol=6 | dir=in | app=system |
"{2AE45D6C-FF35-4FA4-9C3D-0235E856954C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3171EF1F-7A48-4B6E-B8C0-842B30F8FE8E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3AF73B74-9FAD-4091-9BC9-A31CD2ECEC35}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{46EC443E-5D67-43DE-A2BE-75572BF23B8E}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4BFE6A54-0B58-424F-9DC2-71681888C139}" = rport=445 | protocol=6 | dir=out | app=system |
"{5E393B87-EC89-4022-9065-5F7B3B6B0E30}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{66FDEEEE-DBD6-4CA8-A1C4-7F72C9C8278E}" = lport=138 | protocol=17 | dir=in | app=system |
"{740992FC-929B-4BFF-8180-2D76C6C7FFD4}" = lport=10243 | protocol=6 | dir=in | app=system |
"{8005320F-5A98-44D2-BF6A-33619AF1E0BC}" = rport=137 | protocol=17 | dir=out | app=system |
"{80E4FCF8-F01B-40DE-956B-7F4931C4FDE0}" = lport=137 | protocol=17 | dir=in | app=system |
"{91252B5D-A4DC-451E-B2D4-B689048485F9}" = rport=139 | protocol=6 | dir=out | app=system |
"{94B8518D-16CE-4AB4-9690-7D335210C4EF}" = lport=53 | protocol=17 | dir=in | name=realtek ap udp prot |
"{97CB510A-B416-4475-96E7-51C67A649F85}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{97D4D978-77C5-4F43-A958-EA52665C1236}" = rport=10243 | protocol=6 | dir=out | app=system |
"{9B88D589-5402-4438-BFE4-679F38BB3142}" = lport=1542 | protocol=17 | dir=in | name=realtek wps udp prot |
"{9F1054F0-08E3-4079-8C28-E1E5D03B8C29}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{A0DE5FFE-AEC7-4D72-A82E-243C558A5361}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B0C30B62-505E-4803-9CFD-F72661827784}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B9F07A62-2095-452D-BF9A-6DA4378B6E90}" = lport=1542 | protocol=6 | dir=in | name=realtek wps tcp prot |
"{C305291E-C67B-4083-8695-F680D5FB0460}" = lport=139 | protocol=6 | dir=in | app=system |
"{CE303EDD-5735-450F-876A-8A58F3F165EE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E3C6BD04-1986-405F-AE65-26ED0467CE38}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EBFF07C5-6253-4FF0-A23E-2529CD4DBEE9}" = rport=138 | protocol=17 | dir=out | app=system |
"{ECF7D822-CCB0-4995-9CEE-5CC420EEB3CF}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FAD6276F-CE9D-40C9-9B88-13ED89767303}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{004DFDB0-5735-4091-8419-0B27402E07D6}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{005374B2-5232-4DF3-ACD8-A5082BF46E02}" = dir=in | app=d:\programme\skype\phone\skype.exe |
"{03452AC7-6D96-499D-A2E7-8382E6C68076}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0E4CCDD9-D886-433C-8CE3-F43241254231}" = protocol=6 | dir=in | app=c:\windows\syswow64\zonelabs\vsmon.exe |
"{1AFF9D05-05DD-4926-9D71-99A5C26A2E56}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1B38C172-1D33-4729-B171-E71A7C807573}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{1BE357B7-F9C7-409A-AC7A-B522DB0655DB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1CB864CF-68B6-4DF1-AF73-31BE107841CD}" = protocol=6 | dir=in | app=c:\program files (x86)\realtek\rtl8187b wireless lan utility\rtwlan.exe |
"{2B040E7F-7B77-4E81-8FDD-E4336B279CC5}" = protocol=17 | dir=in | app=d:\programme\skype\phone\skype.exe |
"{2F4A3727-4864-4AFF-9A32-1D6EBB4BAB7D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3BC191E1-E451-46A5-93D3-317BD4A165DF}" = protocol=17 | dir=in | app=c:\windows\syswow64\zonelabs\vsmon.exe |
"{4E9C618E-87B8-4C66-BF5A-4037DB3EC142}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{4F963B9A-AC62-4B81-88D3-B08104C7A8F4}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{550B4A3A-0F93-4E7C-B6B1-964AC5749934}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{550DAB84-8EDF-4253-8CCC-F7356C18886E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{63ACF64B-532A-4C82-859A-187E26411739}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{704E41A0-E24B-4FA5-A556-5147035E6ED9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{76683257-0FF0-429C-9ACD-F132C213CBB2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7EB9E94D-463F-4AC4-8192-A323ECF7937B}" = protocol=6 | dir=in | app=d:\programme\skype\phone\skype.exe |
"{8516A2EB-BE36-4A0A-A0E8-E794EA0A14B5}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{8C10D1C1-6E77-4E42-AB3E-8936F05C250F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{9AC195C6-A734-4328-A29A-490D4E85348F}" = protocol=6 | dir=in | app=c:\users\jatak81\appdata\local\temp\7zsd99c.tmp\symnrt.exe |
"{B4F5F8A3-6D57-4A37-B52E-43E657E8CD12}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{B6F79130-EA62-41D0-8F91-79A37EAA72AB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BF922B62-7C44-45C1-9AD6-D4FCA75A2369}" = protocol=17 | dir=in | app=c:\program files (x86)\realtek\rtl8187b wireless lan utility\rtwlan.exe |
"{C3B5847A-B0B5-43F5-AE1C-93B326F16C21}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C79C4EEB-E887-4C3B-8EAB-520D6F02A96B}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{D84E6492-7DB3-4EC5-9047-9863644807AB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D97C8E52-F458-42F5-9608-19ABEDC659A9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DA88B1ED-803D-4F89-A36A-E983119F3612}" = protocol=17 | dir=in | app=c:\users\jatak81\appdata\local\temp\7zsd99c.tmp\symnrt.exe |
"{E36BC79B-19C4-485E-A858-3AE7742DA5C6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F18019D7-A048-4F80-AFB0-F542BB5F79E0}" = protocol=6 | dir=out | app=system |
"{FFEA07E3-2755-4014-8AF9-DAAA91926FE0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"TCP Query User{6D877D7F-6B4F-49D3-BDF5-9C3CC4002624}D:\programme\firefox browser\firefox.exe" = protocol=6 | dir=in | app=d:\programme\firefox browser\firefox.exe |
"TCP Query User{A61C2649-3435-4106-9721-5717FA9D3D53}D:\programme\miranda messenger\miranda32.exe" = protocol=6 | dir=in | app=d:\programme\miranda messenger\miranda32.exe |
"TCP Query User{A8D8014F-C88E-4BB2-B8D4-E16C028FD72D}D:\programme\strongdc++\strongdc.exe" = protocol=6 | dir=in | app=d:\programme\strongdc++\strongdc.exe |
"TCP Query User{E977D734-19D2-4F91-92AB-3EA2A255E63E}D:\programme\strongdc++\strongdc.exe" = protocol=6 | dir=in | app=d:\programme\strongdc++\strongdc.exe |
"UDP Query User{5008539A-E49B-4371-A2FB-F63477337E48}D:\programme\firefox browser\firefox.exe" = protocol=17 | dir=in | app=d:\programme\firefox browser\firefox.exe |
"UDP Query User{BCCDEE5B-71F7-4144-AA7A-6A7328924E28}D:\programme\miranda messenger\miranda32.exe" = protocol=17 | dir=in | app=d:\programme\miranda messenger\miranda32.exe |
"UDP Query User{D9B60D7F-521E-483E-B770-9404A53A7F16}D:\programme\strongdc++\strongdc.exe" = protocol=17 | dir=in | app=d:\programme\strongdc++\strongdc.exe |
"UDP Query User{E9E65887-5C25-4146-90F3-7A98A79E347F}D:\programme\strongdc++\strongdc.exe" = protocol=17 | dir=in | app=d:\programme\strongdc++\strongdc.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{1E9E8BA6-FD0B-465D-AFA2-ECE10BF095F9}" = TOSHIBA Bulletin Board
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C5B5A11-CBF8-451B-B201-77FAB0D0B77D}" = Microsoft Network Monitor 3.4
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{963E5FEB-1367-46B9-851D-A957F1A3747F}" = Microsoft Network Monitor: NetworkMonitor Parsers 3.4
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C2DDF845-7107-40E8-8D2A-8719F1799570}" = TOSHIBA ReelTime
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"{E62381A7-B1C1-4121-8262-84D38C77786C}" = COMODO Internet Security
"{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"CutePDF Writer Installation" = CutePDF Writer 2.8
"Hash Tool_is1" = Hash Tool
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Redirection Port Monitor" = RedMon - Redirection Port Monitor
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}" = Notifier
"{015E4B8A-29B5-4AE3-BD08-38220FADFF4C}" = aspi
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{0823A2E3-69DD-A37A-7CD9-1CBEB037545C}" = Toshiba Photo Service - powered by myphotobook
"{08F32589-5E39-42B8-8BC5-6A8126ED2A70}" = Microsoft Visual C++ 2008 Redistributable Package
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{10E98E14-832C-4AF7-A4D1-6A9EF83B282E}" = VCAMCEN
"{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver
"{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}" = ESSPCD
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1B87C40B-A60B-4EF3-9A68-706CF4B69978}" = Toshiba Assist
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}" = OpenOffice.org 3.4.1
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 21
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{34B32B70-8081-11E2-89AF-B8AC6F98CCE3}" = Google Earth Plug-in
"{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{469730CC-78DF-4CD3-B286-562D459EA619}" = ESSCAM
"{48C82F7A-F100-4DAB-A310-8E18BF2159E1}" = ESSvpot
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisor Password
"{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility
"{643EAE81-920C-4931-9F0B-4B343B225CA6}" = ESSBrwr
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{69BD6399-3D8F-45B7-81D9-819361F5101D}" = PCDLNCH
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder
"{78F79C84-BFD5-4D79-A07D-F39A3CF428DC}" = HLPIndex
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87843A41-7808-4F2E-B13F-25C1E67CF2FD}" = ESShelp
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{8BB4B58A-A402-4DE8-8FCD-287E60B88DD8}" = ESSCT
"{8E92D746-CD9F-4B90-9668-42B74C14F765}" = ESSini
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00D1-0407-0000-0000000FF1CE}" = Microsoft Office Access database engine 2007 (German)
"{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}" = Toshiba Manuals
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91517631-A9F3-4B7C-B482-43E0068FD55A}" = ESSgui
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97A39919-9FEA-48B7-AB2B-4F99212D1E98}" = HDD Regenerator
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}" = ESScore
"{9E4FF410-471F-49E3-9358-74FF0D5E9901}" = Toshiba TEMPRO
"{A0AF08BA-3630-4505-BFB2-A41F3837B0D0}" = SFR2
"{A2104078-AAA5-449E-95DD-55C9443A1031}" = Nero 7 Essentials
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A5B3EB8A-4071-42F0-8E8E-7A8342AA8E69}" = ESSvpaht
"{A6F18A67-B771-4191-8A33-36D2E742D6D9}" = ESSANUP
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9495514-098A-4869-A464-C455857BC464}" = Multimedia Mouse Driver
"{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Deutsch
"{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}" = ESSCDBK
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"{C28422FB-F2CD-427A-ADED-9F281745CDB2}" = Secure Download Manager
"{C2F1F96A-057E-5819-B52E-FEA1D1D2933B}" = Acronis*True*Image*Home
"{C354C9B6-A4E0-4BB0-A368-6DC6BCA0E314}" = SFR
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C82185E8-C27B-4EF4-2010-2222BC2C2B6D}" = Microsoft MapPoint Europa 2010
"{CA60320D-6A16-49C8-A34F-84EEF4799567}" = ESSTUTOR
"{D15E9DB5-6BEB-4534-901E-80C0A29BAB97}" = ESSAdpt
"{D32470A1-B10C-4059-BA53-CF0486F68EBC}" = Kodak EasyShare Software
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E83BA61A-5D77-4DD5-9C92-A3447F11E27D}" = eBay
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2D0C1B1-80FF-46F9-BA61-33B01A07FAFC}" = HLPCCTR
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F3529665-D75E-4D6D-98F0-745C78C68E9B}" = TOSHIBA ConfigFree
"{F71760CD-0F8B-4DCC-B7B7-6B223CC3843C}" = OTtBP
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"CutePDF Professional (Evaluation)_is1" = CutePDF Professional 3.2 (Evaluation)
"DateInTray" = DateInTray 1.6
"ESET Online Scanner" = ESET Online Scanner v3
"eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1" = Toshiba Photo Service - powered by myphotobook
"Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 1.4.0
"Gaberoff Koral Free German Dictionary 1.0" = Gaberoff Koral Free German Dictionary 1.0
"GPL Ghostscript 8.71" = GPL Ghostscript 8.71
"Hard Disk Low Level Format Tool_is1" = Hard Disk Low Level Format Tool 4.05
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"IconCool Editor v4.0" = IconCool Editor v4.0
"InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"InstallShield_{1E9E8BA6-FD0B-465D-AFA2-ECE10BF095F9}" = TOSHIBA Bulletin Board
"InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisorkennwort
"InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility
"InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder
"InstallShield_{A9495514-098A-4869-A464-C455857BC464}" = Multimedia Mouse Driver
"InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"InstallShield_{C2DDF845-7107-40E8-8D2A-8719F1799570}" = TOSHIBA ReelTime
"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher
"InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"LingvoSoft Dictionary German-Russian for Windows" = LingvoSoft Dictionary German-Russian for Windows
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Mein CEWE FOTOBUCH" = Mein CEWE FOTOBUCH
"Miranda IM" = Miranda IM 0.9.29
"MozBackup" = MozBackup 1.4.9
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"POP Peeper" = POP Peeper
"ReOrganize_is1" = ReOrganize!
"Revo Uninstaller" = Revo Uninstaller 1.91
"Sparfuchs_is1" = Sparfuchs
"StrongDC++" = StrongDC++ 2.41
"The Treasures Of Montezuma" = The Treasures Of Montezuma
"The Treasures Of Montezuma 2" = The Treasures Of Montezuma 2
"tulox Freeware-Wörterbuch (Französisch)" = tulox Freeware-Wörterbuch (Französisch)
"VLC media player" = VLC media player 2.0.5
"Weather Watcher_is1" = Weather Watcher
"WildTangent toshiba Master Uninstall" = WildTangent-Spiele
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinZip" = WinZip
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 22.04.2013 11:13:31 | Computer Name = Jatak_81 | Source = Microsoft-Windows-CAPI2 | ID = 257
Description = Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert
werden. "ESENT"-Fehler: -1032.
Error - 22.04.2013 13:39:46 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 22.04.2013 13:39:52 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "c:\program files
(x86)\ESET\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder
Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion
steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt
stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error - 22.04.2013 13:40:57 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "d:\programme\firefox
backup tool\dll\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "d:\programme\firefox
backup tool\dll\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
Error - 22.04.2013 15:00:41 | Computer Name = Jatak_81 | Source = ESENT | ID = 490
Description = Catalog Database (1088) Catalog Database: Versuch, Datei "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb"
für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der
Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet
wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error - 22.04.2013 15:00:41 | Computer Name = Jatak_81 | Source = Microsoft-Windows-CAPI2 | ID = 257
Description = Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert
werden. "ESENT"-Fehler: -1032.
Error - 25.04.2013 05:56:41 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder
Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll" in Zeile 3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error - 25.04.2013 05:56:46 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "c:\program files
(x86)\ESET\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder
Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion
steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt
stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error - 25.04.2013 05:57:41 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "d:\programme\firefox
backup tool\dll\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "d:\programme\firefox
backup tool\dll\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
Error - 01.05.2013 07:39:34 | Computer Name = Jatak_81 | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "D:\Installationen\ONLINE
ANTIVIRUS SCAN TOOLS\ESET Online Scanner (Installer).exe". Fehler in Manifest- oder
Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion
steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt
stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
[ System Events ]
Error - 17.04.2013 03:47:11 | Computer Name = Jatak_81 | Source = DCOM | ID = 10005
Description =
Error - 17.04.2013 03:47:41 | Computer Name = Jatak_81 | Source = DCOM | ID = 10005
Description =
Error - 17.04.2013 03:47:41 | Computer Name = Jatak_81 | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Windows Search erreicht.
Error - 17.04.2013 03:47:41 | Computer Name = Jatak_81 | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht
gestartet: %%1053
Error - 17.04.2013 03:52:17 | Computer Name = Jatak_81 | Source = bowser | ID = 8003
Description =
Error - 17.04.2013 04:18:19 | Computer Name = Jatak_81 | Source = NetBT | ID = 4321
Description = Der Name "WORKGROUP :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 192.168.2.102 registriert werden. Der Computer mit IP-Adresse 192.168.2.1
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 17.04.2013 05:55:27 | Computer Name = Jatak_81 | Source = bowser | ID = 8003
Description =
Error - 22.04.2013 12:43:45 | Computer Name = Jatak_81 | Source = bowser | ID = 8003
Description =
Error - 24.04.2013 17:35:41 | Computer Name = Jatak_81 | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Acronis Nonstop Backup service erreicht.
Error - 30.04.2013 11:19:39 | Computer Name = Jatak_81 | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?28.?04.?2013 um 21:34:56 unerwartet heruntergefahren.
< End of report >
|
Hinweis: Mehrere AV-Hintergrundwächter
SecurityCheck und:
Textbox.