saskia1980 | 10.07.2010 14:31 | Heute habe ich die Scans durchgeführt, die hier im Forum empfohlen wurden, also zuerst Cleaner, dann Mbam, dann OTL.
Mbam sagt, dass alles in Ordnung ist, und OTL übersteigt meine Kompetenzen! ;) Mbam 10.07.
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Datenbank Version: 4299
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
10.07.2010 14:33:37
mbam-log-2010-07-10 (14-33-37).txt
Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 152105
Laufzeit: 11 Minute(n), 53 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden) OTL1 10.07.
OTL Logfile: Code:
OTL Extras logfile created on: 10.07.2010 14:38:27 - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Programme
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1.022,00 Mb Total Physical Memory | 540,00 Mb Available Physical Memory | 53,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 46,57 Gb Total Space | 25,57 Gb Free Space | 54,91% Space Free | Partition Type: NTFS
Drive D: | 39,60 Gb Total Space | 39,33 Gb Free Space | 99,30% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 232,83 Gb Total Space | 153,96 Gb Free Space | 66,13% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SASKIA
Current User Name: Rush Of Air
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programme\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programme\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe" = C:\Programme\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server -- ()
"C:\Programme\Google\Google Talk\googletalk.exe" = C:\Programme\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk -- (Google)
"C:\Programme\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Programme\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Programme\HP\Digital Imaging\bin\hposfx08.exe" = C:\Programme\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Programme\HP\Digital Imaging\bin\hposid01.exe" = C:\Programme\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Programme\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Programme\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Co.)
"C:\Programme\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Programme\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Programme\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Programme\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Programme\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Programme\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- ()
"C:\Programme\HP\Digital Imaging\bin\hpoews01.exe" = C:\Programme\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Programme\DNA\btdna.exe" = C:\Programme\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\BitTorrent\bittorrent.exe" = D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- File not found
"C:\Programme\River Past\Audio Converter Pro\AudioConverter.exe" = C:\Programme\River Past\Audio Converter Pro\AudioConverter.exe:*:Enabled:River Past Audio Converter Pro -- (River Past Corporation)
"C:\Programme\BitTorrent\bittorrent.exe" = C:\Programme\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Programme\uTorrent\uTorrent.exe" = C:\Programme\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- File not found
"D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitdm.exe" = D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitnet.exe" = D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"C:\Programme\uTorrent\utorrent .exe" = C:\Programme\uTorrent\utorrent .exe:*:Enabled:µTorrent -- File not found
"C:\Programme\iTunes\iTunes.exe" = C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Programme\uTorrent\utorrent .exe" = C:\Programme\uTorrent\utorrent .exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00F8608F-BA6A-4B32-843A-1A568ACD1198}" = VAIO Sea Wallpaper
"{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}" = SonicStage Mastering Studio Audio Filter Custom Preset
"{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}" = Sony MP4 Shared Library
"{03B1B42B-F6DE-41d9-8CFF-DC44E895C7A7}" = PhotoGallery
"{0611BD4E-4FE4-4a62-B0C0-18A4CC463428}" = CP_Package_Variety1
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{075473F5-846A-448B-BCB3-104AA1760205}" = Roxio DigitalMedia Data
"{09234F0D-5971-4701-94EE-89CB6926E273}" = Serif PhotoPlus SE
"{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations
"{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0CE473E5-4187-4D59-8CC0-0983395B37DC}" = GoGear SA19xx Device Manager
"{11C98E1A-EC91-4B38-B44C-C562292D8453}" = Adobe Premiere Elements 2.0
"{1417F599-1DBD-4499-9375-B2813E9F890C}" = VAIO Camera Utility
"{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
"{172975EB-9465-4861-95B5-C7BB6D3DE62A}" = DocumentViewer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{193DB24F-9A66-4896-8404-22D53EA89075}" = 1400_Help
"{1BEF9285-5530-426B-A5F1-5836B95C7EB1}" = VAIO Original Screen Saver
"{1C139D7D-9FEA-468d-A9C8-2A6E3BDE564A}" = CP_Package_Variety3
"{1D22D35D-C966-48C5-8276-5254FC0B4C64}" = Easy Typing
"{2063C2E8-3812-4BBD-9998-6610F80C1DD4}" = VAIO Media AC3 Decoder 1.0
"{21DB3D90-D816-4092-A260-CA3F6B55A6DD}" = Sonic_PrimoSDK
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23A7B376-BBEC-4e76-BBD7-0F155E70D74B}" = CP_Panorama1Config
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{266959FA-0AEE-41D0-A88E-F1EAC10A7C14}" = 1400
"{27337663-2619-11D4-99DC-0000F49094C7}" = Memory Stick Formatter
"{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}" = Wireless Switch Setting Utility
"{2CADCEAB-D5DA-44D6-B5FC-7DEE87AB3C0C}" = Unload
"{2CCBABCB-6427-4A55-B091-49864623C43F}" = Google Toolbar for Firefox
"{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{32BDCCB8-9DC8-496d-9DB1-F77510775BDB}" = InstantShareDevices
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36E47DA1-10E1-45d9-8B19-14D19607CDCF}" = CP_CalendarTemplates1
"{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Google AFE
"{48820099-ED7D-424B-890C-9A82EF00656D}" = VAIO Update 2
"{48E9DE14-39D1-4974-91A6-D4E1836F648D}" = SafeGuard® PrivateDisk 1.00.6 - Try and Buy Version
"{4C2EF0BB-5483-4168-BC79-423F66BD4376}" = StarOffice 8
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{54E3707F-808E-4fd4-95C9-15D1AB077E5D}" = NewCopy
"{560F6B2E-F0DF-44E5-8190-A4A161F0E205}" = VAIO Media 5.0
"{56EE8B17-8274-418d-89AC-C057C5DB251E}" = RandMap
"{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg
"{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}" = VAIO Media Redistribution 5.0
"{59452470-A902-477F-9338-9B88101681BD}" = Setting Utility Series
"{5958CAC6-373E-402F-84FE-0A699AA920B9}" = LAN Setting Utility
"{5A01C58E-B0EC-49b9-AD71-7C0468688087}" = CP_Package_Basic1
"{5B622B7A-60FB-4630-B11D-F121D20BCCD6}" = MarketResearch
"{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}" = HP PSC & OfficeJet 5.3.B
"{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder
"{61D6E4FB-1A62-4EB1-BE56-929B00C155CF}" = Wireless LAN Starter
"{63B8FB69-A1B6-425D-B67D-5257B7A1F663}" = Image Converter 2 Plus
"{65248369-7CB9-43A9-82C8-C438AE04DED4}" = 1500
"{668B1BD6-4593-4959-970E-249AFFE6F35C}" = VOR
"{66BA8C26-AFE4-4408-807B-43E76B57EF53}" = SkinsHP1
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}" = DVgate Plus
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6B1F20F2-6321-4669-A58C-33DF8E7517FF}" = VAIO Entertainment Platform
"{6BB6627C-694F-4FDC-A3E5-C7F4BED4C724}" = DocProc
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7850A6D2-CBEA-4728-9877-F1BEDEA9F619}" = AiOSoftware
"{785EB1D4-ECEC-4195-99B4-73C47E187721}" = VAIO Media Integrated Server 5.0
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{7C9B95B7-B598-4398-B30F-7F6827192E6C}" = ProductContext
"{7E27304E-BAA2-4d90-A34E-76641FAFABB4}" = CP_AtenaShokunin1Config
"{81E06318-EEB9-4D55-8CD5-7AC9148D5E66}" = 1500_Help
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{8FFC924C-ED06-44CB-8867-3CA778ECE903}" = Adobe Help Center 2.0
"{9080C5D2-82FA-452A-87FA-CBB4B05D67A5}" = VPS
"{91120407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD for VAIO
"{923A7F5A-1E8C-4FBE-8DF6-85940A60A79F}" = Readme
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{9E319E96-ED8E-4B01-9775-C521A1869A25}" = VAIO Power Management
"{9E407618-D9CD-4F39-9490-9ED45294073D}" = Click to DVD 2.0.03 Menu Data
"{A025CFB8-64E7-4432-824F-11E7C5ED2ECE}_is1" = Artweaver 1.0
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 3.4
"{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver
"{A195B13E-A5E3-4BAF-A995-7F70F445CD06}" = ScannerCopy
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A5BB5365-EFB4-44c3-A7E2-EB59B7EFD23D}" = CueTour
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A947C2B3-7445-42C4-9063-EE704CACCB22}" = VAIO Hardware Diagnostics
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AB467B85-4F52-48C2-AEED-0673D00417B0}" = SonicStage Mastering Studio Audio Filter
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Roxio DigitalMedia Audio
"{ABBD2A2E-2424-4078-966F-F319A88D5F21}" = VAIO Starfish Wallpaper
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.3 - Deutsch
"{AEC1D0F9-A34D-452E-B513-D997C4925E52}" = Temperature Converter
"{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}" = VAIO Media Registration Tool 5.0
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Roxio DigitalMedia Copy
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B26E3B0D-C2FA-4370-B068-7C476766F029}" = Microsoft Works
"{B4D279F1-4309-49cc-A4B5-3A0D2E59C7B5}" = PanoStandAlone
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7C03E84-AF46-42F4-809D-D4127D9086D0}" = VAIO Edit Components 6.0
"{B824B5C9-849F-4b9e-9EA7-6FD8CD8116DA}" = CP_Package_Variety2
"{B96DB037-DBEA-4186-9081-9CBD537F82E8}" = 3D-Viewer-innoPlus
"{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm
"{BE24AB71-85E9-45D8-8F5D-661430182197}" = DirectShow .SHN FIlter
"{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}" = Sony Video Shared Library
"{BF3B304B-8A18-452D-A19F-6012CA8418D7}" = SonicStage Mastering Studio 2.2
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C27BF761-C499-488D-A964-A3718BC6EC3E}" = DSD Direct
"{C506A18C-1469-4678-B094-F4EC9DAE6DB7}" = Scan
"{C510CA36-98D6-4F07-8AFF-81E7399A075B}" = 1400Trb
"{C5C649A8-1D21-4C83-9B08-7B3752E580F4}" = Safari
"{C89EB8CD-675F-44F4-9729-4C9A8FAC2D4F}" = DSD Playback Plug-In 1.0
"{C8BB4912-12D9-42AE-B571-E580D8CD1B5B}" = TuneUp Utilities 2007
"{CBA30674-A242-4531-82B5-586B31F90E04}" = 1500Trb
"{CE24344F-DFD8-40C8-8FD8-C9740B5F25AC}" = Fax
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{CF35000B-8247-449B-85C9-D9C2A5936683}" = GoGear SA19xx Device Manager
"{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00
"{D050D7362D214723AD585B541FFB6C11}" = DivX Content Uploader
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (VAIO_VEDB)
"{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1" = Uniblue RegistryBooster 2010
"{E809063C-51A3-4269-8984-D1EB742F2151}" = Click to DVD 2.5.20
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter
"{EBB7C1C1-D439-4D9B-9FDC-954C10F266B0}" = Adobe Photoshop Elements 4.0
"{EC2A8F27-4FBF-4E41-B27B-FE822511B761}" = iTunes
"{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}" = SonicStage Mastering Studio Plugins
"{EF3D45BB-2260-4008-88EA-492E7744A9DF}" = Sony Utilities DLL
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}" = VAIO Event Service
"{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}" = Paint.NET v3.5.5
"{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status
"{FB714F13-10C9-48DB-91C9-DDBCCCBF9370}" = VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents
"{FC37C108-821D-4EDE-8F40-D5B497586805}" = VAIO Control Center
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 4" = Adobe Photoshop Elements 4.0
"Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.9
"Audio Converter Pro" = River Past Audio Converter Pro
"AudioCon" = AudioCon
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Beautiful Britain_is1" = Beautiful Britain
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003" = HDAUDIO SoftV92 Data Fax Modem with SmartCP
"DreamSuite Bonus" = Uninstall DreamSuite Bonus
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"Free Audio Converter_is1" = Free Audio Converter version 1.2
"Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 4.0
"Free YouTube Download_is1" = Free YouTube Download 2.6
"Google Desktop" = Google Desktop
"Google Updater" = Google Updater
"HP Document Viewer" = HP Document Viewer 5.3
"HP Imaging Device Functions" = HP Imaging Device Functions 5.3
"HP Photo & Imaging" = HP Image Zone 5.3
"HP Solution Center & Imaging Support Tools" = HP Solution Center & Imaging Support Tools 5.3
"HPExtendedCapabilities" = HP Extended Capabilities 5.3
"ie8" = Windows Internet Explorer 8
"Inkscape" = Inkscape 0.46
"InstallShield_{668B1BD6-4593-4959-970E-249AFFE6F35C}" = VAIO-Online-Registrierung (Deutsch)
"InstallShield_{9080C5D2-82FA-452A-87FA-CBB4B05D67A5}" = VAIO Product Survey
"InstallShield_{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00
"LHTTSGED" = L&H TTS3000 Deutsch
"Macromedia Shockwave Player" = Macromedia Shockwave Player
"Magic Video Converter_is1" = Magic Video Converter 8.0.10.28
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan Plus
"MFZ0CODEC" = MFZ0 codec (Remove Only)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MouseSuite98" = Sony USB Mouse
"Mozilla Firefox (3.6.6)" = Mozilla Firefox (3.6.6)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"My Club VAIO Media Center Edition_is1" = My Club VAIO MCE (German) 1.0.1
"NVIDIA Drivers" = NVIDIA Drivers
"OpenMG HotFix4.4-05-12-06-01" = OpenMG Limited Patch 4.4-06-13-19-01
"Orbit_is1" = Orbit Downloader
"PaintStar_is1" = PaintStar 2.70
"PremElem20" = Adobe Premiere Elements 2.0
"Prism" = Prism Video Converter
"ProInst" = Intel(R) PROSet/Wireless Software
"PROSet" = Intel(R) PRO Network Connections Drivers
"ShockwaveFlash" = Adobe Flash Player 9
"Softonic_Deutsch_PStar Toolbar" = Softonic_Deutsch_PStar Toolbar
"Spyware Doctor" = Spyware Doctor 6.0
"ST5UNST #1" = project dogwaffle
"Textaizer Pro_is1" = Textaizer Pro v3.0
"TorrentMan Toolbar" = TorrentMan Toolbar
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.0.1
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
"TwistedBrush Open Studio" = TwistedBrush Open Studio
"uTorrent" = µTorrent
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 28.06.2010 00:22:17 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 28.06.2010 01:22:06 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 28.06.2010 02:22:07 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 01.07.2010 15:22:07 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 07.07.2010 15:22:11 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 08.07.2010 07:32:53 | Computer Name = SASKIA | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung mbam.exe, Version 1.46.0.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 08.07.2010 07:34:18 | Computer Name = SASKIA | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung mbam.exe, Version 1.46.0.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 08.07.2010 08:00:27 | Computer Name = SASKIA | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung mbam.exe, Version 1.46.0.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 09.07.2010 11:22:05 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
Error - 09.07.2010 12:22:10 | Computer Name = SASKIA | Source = Google Update | ID = 20
Description =
[ System Events ]
Error - 09.07.2010 14:22:24 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 14:24:24 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 14:24:25 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 14:26:24 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 15:00:00 | Computer Name = SASKIA | Source = Schedule | ID = 7901
Description = Der Befehl "At22.job" konnte aufgrund folgenden Fehlers nicht ausgeführt
werden: %%2147942402
Error - 09.07.2010 15:10:41 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 15:10:42 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 09.07.2010 15:10:43 | Computer Name = SASKIA | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\D gefunden.
Error - 10.07.2010 07:00:00 | Computer Name = SASKIA | Source = Schedule | ID = 7901
Description = Der Befehl "At14.job" konnte aufgrund folgenden Fehlers nicht ausgeführt
werden: %%2147942402
Error - 10.07.2010 08:00:00 | Computer Name = SASKIA | Source = Schedule | ID = 7901
Description = Der Befehl "At15.job" konnte aufgrund folgenden Fehlers nicht ausgeführt
werden: %%2147942402
< End of report > --- --- --- OTL2 10.07.
OTL Logfile: Code:
OTL logfile created on: 10.07.2010 14:38:27 - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Programme
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1.022,00 Mb Total Physical Memory | 540,00 Mb Available Physical Memory | 53,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 46,57 Gb Total Space | 25,57 Gb Free Space | 54,91% Space Free | Partition Type: NTFS
Drive D: | 39,60 Gb Total Space | 39,33 Gb Free Space | 99,30% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 232,83 Gb Total Space | 153,96 Gb Free Space | 66,13% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SASKIA
Current User Name: Rush Of Air
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Programme\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Programme\DNA\btdna.exe (BitTorrent, Inc.)
PRC - C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe (Sony Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (Sony Corporation)
PRC - C:\Programme\Intel\Wireless\Bin\S24EvMon.exe (Intel Corporation )
PRC - C:\Programme\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
PRC - C:\Programme\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
PRC - C:\Programme\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe ()
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe (TOSHIBA CORPORATION.)
PRC - C:\Programme\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation)
PRC - C:\Programme\HP\Digital Imaging\bin\hpqimzone.exe (Hewlett-Packard Co.)
PRC - C:\WINDOWS\system32\ico.exe (Primax Electronics Ltd.)
========== Modules (SafeList) ==========
MOD - C:\Programme\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (GoogleDesktopManager-061008-081103) -- C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe File not found
SRV - (McComponentHostService) -- C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (Apple Mobile Device) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (sdCoreService) -- C:\Programme\Spyware Doctor\pctsSvc.exe (PC Tools)
SRV - (sdAuxService) -- C:\Programme\Spyware Doctor\pctsAuxs.exe (PC Tools)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
SRV - (VAIOMediaPlatform-IntegratedServer-AppServer) -- C:\Programme\Sony\VAIO Media Integrated Server\VMISrv.exe (Sony Corporation)
SRV - (SSScsiSV) -- C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SSScsiSV.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-Mobile-Gateway) -- C:\Programme\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe (Sony Corporation)
SRV - (VzFw) -- C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe (Sony Corporation)
SRV - (VzCdbSvc) -- C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
SRV - (Vcsw) -- C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (Sony Corporation)
SRV - (S24EventMonitor) Intel(R) -- C:\Programme\Intel\Wireless\Bin\S24EvMon.exe (Intel Corporation )
SRV - (EvtEng) Intel(R) -- C:\Programme\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
SRV - (RegSrvc) Intel(R) -- C:\Programme\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
SRV - (VAIO Entertainment TV Device Arbitration Service) -- C:\Programme\Gemeinsame Dateien\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
SRV - (MSCSPTISRV) -- C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe (Sony Corporation)
SRV - (SPTISRV) -- C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-UPnP) VAIO Media Integrated Server (UPnP) -- C:\Programme\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-HTTP) VAIO Media Integrated Server (HTTP) -- C:\Programme\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe (Sony Corporation)
SRV - (AdobeActiveFileMonitor4.0) -- C:\Programme\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe ()
SRV - (Image Converter video recording monitor for VAIO Entertainment) -- C:\Programme\Sony\Image Converter 2\IcVzMon.exe (Sony Corporation)
SRV - (VAIO Event Service) -- C:\Programme\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation)
SRV - (VCI) -- C:\Programme\Sony\VAIO Cooperated Initialisation\VCI_svc.exe (Sony Corporation)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (ose) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (wdigr) -- C:\WINDOWS\System32\drivers\wdigr.sys ()
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (NuidFltr) -- C:\WINDOWS\system32\drivers\nuidfltr.sys (Microsoft Corporation)
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgio) -- C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (IKSysSec) -- C:\WINDOWS\system32\drivers\iksyssec.sys (PCTools Research Pty Ltd.)
DRV - (IKSysFlt) -- C:\WINDOWS\system32\drivers\iksysflt.sys (PCTools Research Pty Ltd.)
DRV - (IKFileSec) -- C:\WINDOWS\system32\drivers\ikfilesec.sys (PCTools Research Pty Ltd.)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (ti21sony) -- C:\WINDOWS\system32\drivers\ti21sony.sys (Texas Instruments)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
DRV - (usbvm321) -- C:\WINDOWS\system32\drivers\usbvm321.sys (Vimicro Corporation)
DRV - (SonyImgF) -- C:\WINDOWS\system32\drivers\SonyImgF.sys (Sony Corporation)
DRV - (w39n51) Intel(R) -- C:\WINDOWS\system32\drivers\w39n51.sys (Intel® Corporation)
DRV - (Tosrfhid) -- C:\WINDOWS\system32\drivers\tosrfhid.sys (TOSHIBA Corporation.)
DRV - (s24trans) -- C:\WINDOWS\system32\drivers\s24trans.sys (Intel Corporation)
DRV - (tosporte) -- C:\WINDOWS\system32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (Tosrfbd) -- C:\WINDOWS\system32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (Tosrfusb) -- C:\WINDOWS\system32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (TosRfSnd) Bluetooth Audio Device (WDM) -- C:\WINDOWS\system32\drivers\tosrfsnd.sys (TOSHIBA Corporation)
DRV - (HSF_DPV) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys (Conexant Systems, Inc.)
DRV - (HSFHWAZL) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (SI3132) -- C:\WINDOWS\system32\DRIVERS\SI3132.sys (Silicon Image, Inc.)
DRV - (SiRemFil) -- C:\WINDOWS\system32\DRIVERS\SiRemFil.sys (Silicon Image, Inc.)
DRV - (Tosrfbnp) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (Tosrfcom) -- C:\WINDOWS\system32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (toshidpt) -- C:\WINDOWS\system32\drivers\toshidpt.sys (TOSHIBA Corporation.)
DRV - (e1express) Intel(R) -- C:\WINDOWS\system32\drivers\e1e5132.sys (Intel Corporation)
DRV - (tosrfnds) -- C:\WINDOWS\system32\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV - (symlcbrd) -- C:\WINDOWS\system32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (ApfiltrService) -- C:\WINDOWS\system32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (SiFilter) -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys (Silicon Image, Inc.)
DRV - (PrivateDisk) -- C:\WINDOWS\system32\drivers\privatediskm.sys (Utimaco Safeware AG)
DRV - (DMICall) -- C:\WINDOWS\system32\drivers\DMICall.sys (Sony Corporation)
DRV - (SNC) -- C:\WINDOWS\system32\drivers\SonyNC.sys (Sony Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\URLSearchHook: {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Programme\TorrentMan\tbTor1.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Programme\AskSearch\bin\DefaultSearch.dll ()
IE - HKCU\..\URLSearchHook: {e876a532-63a1-4c8d-80a8-c6e5d08a926f} - C:\Programme\Softonic_Deutsch_PStar\tbSof1.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1640187&SearchSource=3&q="
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.uni-mainz.de"
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5
FF - prefs.js..keyword.URL: "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101761&gct=&gc=1&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2009.11.29 20:17:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Programme\Mozilla Firefox\components [2010.06.28 21:14:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2010.06.30 21:21:02 | 000,000,000 | ---D | M]
[2008.12.17 23:57:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Extensions
[2010.07.10 13:19:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions
[2010.05.28 13:37:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.05.22 08:06:56 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.05.13 14:58:31 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010.06.05 17:31:05 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.06.05 17:34:28 | 000,000,000 | ---D | M] (DVDVideoSoft Toolbar) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}
[2010.05.28 13:37:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\de-DE@dictionaries.addons.mozilla.org
[2010.05.13 15:00:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\extensions\en-US@dictionaries.addons.mozilla.org
[2009.07.22 20:32:49 | 000,000,682 | ---- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\searchplugins\ask.xml
[2009.03.14 21:49:06 | 000,001,196 | ---- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Mozilla\Firefox\Profiles\q2330u6r.default\searchplugins\winamp-search.xml
[2009.10.12 16:30:26 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2009.02.11 21:16:16 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npbittorrent.dll
[2010.01.16 03:15:29 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.01.16 03:15:29 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.01.16 03:15:29 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.01.16 03:15:29 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.01.16 03:15:29 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2004.08.10 14:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Bitlord Toolbar) - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Programme\TorrentMan\tbTor1.dll (Conduit Ltd.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Programme\Google AFE\GoogleAFE.dll (Google)
O2 - BHO: (Softonic Deutsch PStar Toolbar) - {e876a532-63a1-4c8d-80a8-c6e5d08a926f} - C:\Programme\Softonic_Deutsch_PStar\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Bitlord Toolbar) - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Programme\TorrentMan\tbTor1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\GrabPro.dll ()
O3 - HKLM\..\Toolbar: (Softonic Deutsch PStar Toolbar) - {e876a532-63a1-4c8d-80a8-c6e5d08a926f} - C:\Programme\Softonic_Deutsch_PStar\tbSof1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {147D6308-0614-4112-89B1-31402F9B82C4} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Bitlord Toolbar) - {7C5C0F58-E061-457D-9033-77307F5ED00C} - C:\Programme\TorrentMan\tbTor1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\GrabPro.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic Deutsch PStar Toolbar) - {E876A532-63A1-4C8D-80A8-C6E5D08A926F} - C:\Programme\Softonic_Deutsch_PStar\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Mouse Suite 98 Daemon] C:\WINDOWS\System32\ico.exe (Primax Electronics Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Programme\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [uTorrent] C:\Programme\uTorrent\utorrent .exe (BitTorrent, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Bluetooth Manager.lnk = C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\HP Image Zone Schnellstart.lnk = C:\Programme\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk = C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Orbit.lnk = D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitdm.exe (Orbitdownloader.com)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Philips SA19xx Gere-Manager.lnk = C:\Programme\Philips\GoGear SA19xx Device Manager\main.exe (KeenHigh Tech.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Download by Orbit - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - D:\Backup Dateien\Eigene Bilder\Beauty for the Beast\Hot Men\Damien Rice\Lisa\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Free YouTube Download - C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubedownload.htm ()
O8 - Extra context menu item: Google Sidewiki... - C:\Programme\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O8 - Extra context menu item: Save YouTube Video - C:\Programme\Gemeinsame Dateien\DVDVideoSoft\Dll\IEContextMenuY.dll (DVSTeam)
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_10\bin\NPJPI150_10.dll (Sun Microsystems, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: sony-europe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sonystyle-europe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: vaio-link.com ([]* in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\WINDOWS\system32\kbdsock.dll) - C:\WINDOWS\System32\kbdsock.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: TaskMan - (C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\iptyr.exe) - C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\iptyr.exe (Avira GmbH)
O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\WINDOWS\System32\VESWinlogon.dll (Sony Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Rush Of Air\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Rush Of Air\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.03.16 16:05:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - Unable to obtain root file information for disk G:\
O33 - MountPoints2\{46ec3cff-6f2f-11df-adc4-0013a90996ff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{46ec3cff-6f2f-11df-adc4-0013a90996ff}\Shell\AutoRun\command - "" = stara\\bagra.exe
O33 - MountPoints2\{46ec3cff-6f2f-11df-adc4-0013a90996ff}\Shell\explore\command - "" = stara\bagra.exe
O33 - MountPoints2\{46ec3cff-6f2f-11df-adc4-0013a90996ff}\Shell\install\command - "" = stara\bagra.exe
O33 - MountPoints2\{46ec3cff-6f2f-11df-adc4-0013a90996ff}\Shell\open\command - "" = stara\bagra.exe
O33 - MountPoints2\{7ad52157-b270-11de-878f-0013027dc3bc}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{7ad52157-b270-11de-878f-0013027dc3bc}\Shell\AutoRun\command - "" = I:\dupler\kromirani.exe -- File not found
O33 - MountPoints2\{7ad52157-b270-11de-878f-0013027dc3bc}\Shell\explore\command - "" = I:\dupler\\kromirani.exe -- File not found
O33 - MountPoints2\{7ad52157-b270-11de-878f-0013027dc3bc}\Shell\open\command - "" = I:\dupler\\kromirani.exe -- File not found
O33 - MountPoints2\{a43fb87f-6f46-11df-a34c-0013a90996ff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a43fb87f-6f46-11df-a34c-0013a90996ff}\Shell\AutoRun\command - "" = stara\\bagra.exe
O33 - MountPoints2\{a43fb87f-6f46-11df-a34c-0013a90996ff}\Shell\explore\command - "" = stara\bagra.exe
O33 - MountPoints2\{a43fb87f-6f46-11df-a34c-0013a90996ff}\Shell\install\command - "" = stara\bagra.exe
O33 - MountPoints2\{a43fb87f-6f46-11df-a34c-0013a90996ff}\Shell\open\command - "" = stara\bagra.exe
O33 - MountPoints2\{a5fef326-9175-11de-8743-0013027dc3bc}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a5fef326-9175-11de-8743-0013027dc3bc}\Shell\AutoRun\command - "" = stara\\bagra.exe
O33 - MountPoints2\{a5fef326-9175-11de-8743-0013027dc3bc}\Shell\explore\command - "" = stara\bagra.exe
O33 - MountPoints2\{a5fef326-9175-11de-8743-0013027dc3bc}\Shell\install\command - "" = stara\bagra.exe
O33 - MountPoints2\{a5fef326-9175-11de-8743-0013027dc3bc}\Shell\open\command - "" = stara\bagra.exe
O33 - MountPoints2\{aa320254-57cf-11db-bfff-0002c7e9573e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{aa320254-57cf-11db-bfff-0002c7e9573e}\Shell\AutoRun\command - "" = H:\dupler\kromirani.exe -- File not found
O33 - MountPoints2\{aa320254-57cf-11db-bfff-0002c7e9573e}\Shell\explore\command - "" = H:\dupler\\kromirani.exe -- File not found
O33 - MountPoints2\{aa320254-57cf-11db-bfff-0002c7e9573e}\Shell\open\command - "" = H:\dupler\\kromirani.exe -- File not found
O33 - MountPoints2\G\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\G\Shell\AutoRun\command - "" = stara\\bagra.exe
O33 - MountPoints2\G\Shell\explore\command - "" = stara\bagra.exe
O33 - MountPoints2\G\Shell\install\command - "" = stara\bagra.exe
O33 - MountPoints2\G\Shell\open\command - "" = stara\bagra.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.07.10 14:12:47 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Recent
[2010.07.10 14:06:59 | 000,000,000 | ---D | C] -- C:\Programme\CCleaner
[2010.07.10 14:05:33 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Programme\OTL.exe
[2010.07.10 14:05:25 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Programme\ccsetup233.exe
[2010.07.09 17:34:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Eigene Dateien\DVDVideoSoft
[2010.07.09 17:15:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Eigene Dateien\Downloads
[2010.07.09 00:56:56 | 000,104,448 | RHS- | C] (Avira GmbH) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\iptyr.exe
[2010.07.04 07:59:59 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Uniblue
[2010.07.04 07:59:46 | 000,000,000 | ---D | C] -- C:\Programme\Uniblue
[2010.07.04 07:59:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Lokale Einstellungen\Anwendungsdaten\OpenCandy
[2010.07.04 07:58:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\OpenCandy
[2010.06.27 22:44:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\McAfee
[2010.06.27 10:51:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee Security Scan
[2010.06.27 10:51:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee
[2010.06.27 10:51:02 | 000,000,000 | ---D | C] -- C:\Programme\McAfee Security Scan
[2010.06.19 16:05:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Amazon
[2010.06.19 16:03:08 | 000,000,000 | ---D | C] -- C:\Programme\Amazon
[2010.06.11 16:28:36 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Programme\*.tmp files -> C:\Programme\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.07.10 14:39:13 | 000,001,044 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010.07.10 14:22:00 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.07.10 14:21:44 | 005,505,024 | ---- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\ntuser.dat
[2010.07.10 14:21:03 | 000,000,206 | ---- | M] () -- C:\Programme\cc_20100710_142100.reg
[2010.07.10 14:20:24 | 000,000,206 | ---- | M] () -- C:\Programme\cc_20100710_142022.reg
[2010.07.10 14:20:09 | 000,000,206 | ---- | M] () -- C:\Programme\cc_20100710_142007.reg
[2010.07.10 14:19:33 | 000,000,082 | ---- | M] () -- C:\Programme\cc_20100710_141931.reg
[2010.07.10 14:19:02 | 000,000,082 | ---- | M] () -- C:\Programme\cc_20100710_141901.reg
[2010.07.10 14:18:45 | 000,000,082 | ---- | M] () -- C:\Programme\cc_20100710_141842.reg
[2010.07.10 14:18:26 | 000,003,400 | ---- | M] () -- C:\Programme\cc_20100710_141823.reg
[2010.07.10 14:17:54 | 000,016,782 | ---- | M] () -- C:\Programme\cc_20100710_141751.reg
[2010.07.10 14:17:19 | 000,412,906 | ---- | M] () -- C:\Programme\cc_20100710_141627.reg
[2010.07.10 14:14:00 | 000,001,232 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2846574174-2151054430-3358899327-1006UA.job
[2010.07.10 14:07:01 | 000,000,658 | ---- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\Desktop\CCleaner.lnk
[2010.07.10 14:05:33 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Programme\OTL.exe
[2010.07.10 14:05:25 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Programme\ccsetup233.exe
[2010.07.10 14:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At15.job
[2010.07.10 13:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At14.job
[2010.07.10 12:59:30 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.07.10 12:58:45 | 000,001,205 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Orbit.lnk
[2010.07.10 12:58:28 | 000,045,378 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.07.10 12:58:25 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.07.10 12:58:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.07.10 12:58:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.07.10 12:58:18 | 1071,828,992 | -HS- | M] () -- C:\hiberfil.sys
[2010.07.09 21:10:46 | 000,000,300 | -HS- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\ntuser.ini
[2010.07.09 21:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At22.job
[2010.07.09 20:14:00 | 000,001,180 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2846574174-2151054430-3358899327-1006Core.job
[2010.07.09 20:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At21.job
[2010.07.09 19:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At20.job
[2010.07.09 18:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At19.job
[2010.07.09 17:16:35 | 000,000,408 | ---- | M] () -- C:\WINDOWS\tasks\1-Klick-Wartung.job
[2010.07.09 17:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At18.job
[2010.07.09 00:56:55 | 000,104,448 | RHS- | M] (Avira GmbH) -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\iptyr.exe
[2010.07.09 00:02:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2010.07.08 23:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At24.job
[2010.07.08 22:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At23.job
[2010.07.08 16:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At17.job
[2010.07.07 11:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At12.job
[2010.07.07 10:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At11.job
[2010.07.04 15:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At16.job
[2010.07.04 09:01:47 | 000,171,520 | ---- | M] () -- C:\Dokumente und Einstellungen\Rush Of Air\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.04 09:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At10.job
[2010.07.04 08:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At9.job
[2010.07.04 06:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At7.job
[2010.07.04 05:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At6.job
[2010.07.04 04:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At5.job
[2010.07.04 03:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At4.job
[2010.07.04 02:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At3.job
[2010.07.04 01:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At2.job
[2010.06.28 07:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At8.job
[2010.06.27 22:43:26 | 000,001,575 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk
[2010.06.24 21:21:17 | 001,066,602 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.24 21:21:17 | 000,475,470 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2010.06.24 21:21:17 | 000,453,864 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.24 21:21:17 | 000,091,426 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2010.06.24 21:21:17 | 000,076,096 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.19 16:02:45 | 001,008,736 | ---- | M] () -- C:\Programme\AmazonMP3Installer-de_DE.exe
[2010.06.12 16:12:21 | 000,267,008 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Programme\*.tmp files -> C:\Programme\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.07.10 14:21:01 | 000,000,206 | ---- | C] () -- C:\Programme\cc_20100710_142100.reg
[2010.07.10 14:20:23 | 000,000,206 | ---- | C] () -- C:\Programme\cc_20100710_142022.reg
[2010.07.10 14:20:08 | 000,000,206 | ---- | C] () -- C:\Programme\cc_20100710_142007.reg
[2010.07.10 14:19:33 | 000,000,082 | ---- | C] () -- C:\Programme\cc_20100710_141931.reg
[2010.07.10 14:19:02 | 000,000,082 | ---- | C] () -- C:\Programme\cc_20100710_141901.reg
[2010.07.10 14:18:45 | 000,000,082 | ---- | C] () -- C:\Programme\cc_20100710_141842.reg
[2010.07.10 14:18:25 | 000,003,400 | ---- | C] () -- C:\Programme\cc_20100710_141823.reg
[2010.07.10 14:17:53 | 000,016,782 | ---- | C] () -- C:\Programme\cc_20100710_141751.reg
[2010.07.10 14:17:00 | 000,412,906 | ---- | C] () -- C:\Programme\cc_20100710_141627.reg
[2010.07.10 14:07:01 | 000,000,658 | ---- | C] () -- C:\Dokumente und Einstellungen\Rush Of Air\Desktop\CCleaner.lnk
[2010.07.04 07:59:09 | 000,001,205 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Orbit.lnk
[2010.06.27 10:51:02 | 000,001,575 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk
[2010.06.19 16:01:04 | 001,008,736 | ---- | C] () -- C:\Programme\AmazonMP3Installer-de_DE.exe
[2010.04.28 19:41:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vaioupdt .INI
[2010.02.12 21:30:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\wdigr.sys
[2008.10.27 13:49:11 | 000,001,005 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.01.04 23:58:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.01.04 23:57:22 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008.01.04 23:57:22 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008.01.04 23:56:24 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2007.08.21 12:47:49 | 000,000,098 | ---- | C] () -- C:\WINDOWS\WirelessFTP.INI
[2006.10.09 16:33:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI
[2006.03.17 14:18:13 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006.03.17 11:49:15 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2006.03.17 11:49:15 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2006.03.17 11:49:15 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2006.03.17 11:49:15 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2006.03.17 11:49:15 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2006.03.17 11:49:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2006.03.17 11:40:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VAIOUpdt.INI
[2006.03.16 07:48:19 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006.03.16 07:48:10 | 000,004,152 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.11.01 10:53:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005.09.02 15:44:08 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005.08.05 15:26:04 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005.07.22 22:30:20 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2005.01.01 04:40:34 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005.01.01 04:31:40 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2005.01.01 04:28:45 | 000,000,059 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2004.07.20 18:04:02 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\TosBtHcrpAPI.dll
[2004.01.15 15:43:28 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\TBTMonUI.dll
[2003.02.20 17:53:42 | 000,005,702 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.07.06 15:30:00 | 000,003,254 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010.02.07 15:16:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Artweaver
[2009.03.14 22:39:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\River Past G5
[2009.09.23 18:44:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
[2007.05.01 17:28:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TuneUp Software
[2009.03.15 15:56:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2009.09.19 19:27:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009.07.08 10:36:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2007.07.02 15:57:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\10 Finger BreakOut
[2010.06.19 16:05:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Amazon
[2010.02.07 15:16:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Artweaver
[2010.07.09 17:33:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\BitTorrent
[2010.07.10 14:38:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\DNA
[2010.06.05 17:31:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\DVDVideoSoftIEHelpers
[2009.09.13 09:55:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\GetRightToGo
[2009.09.13 10:14:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\GrabPro
[2010.02.08 19:46:03 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\gtk-2.0
[2010.02.07 15:30:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Inkscape
[2007.09.09 17:42:15 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\InterVideo
[2009.09.13 09:58:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Moyea
[2010.07.04 07:59:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\OpenCandy
[2010.07.10 12:59:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Orbit
[2009.03.14 22:13:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\River Past G5
[2010.02.08 17:35:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Serif
[2009.02.25 20:32:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Softplicity
[2006.10.09 16:17:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Template
[2007.08.21 12:47:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Toshiba
[2007.05.01 17:28:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\TuneUp Software
[2010.07.04 07:59:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Uniblue
[2010.07.10 12:59:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\uTorrent
[2009.10.25 15:27:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Vso
[2009.04.16 10:25:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Rush Of Air\Anwendungsdaten\Xilisoft Corporation
[2010.07.09 17:16:35 | 000,000,408 | ---- | M] () -- C:\WINDOWS\Tasks\1-Klick-Wartung.job
[2010.07.09 00:02:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
[2010.07.04 09:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At10.job
[2010.07.07 10:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At11.job
[2010.07.07 11:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At12.job
[2010.06.02 12:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At13.job
[2010.07.10 13:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At14.job
[2010.07.10 14:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At15.job
[2010.07.04 15:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At16.job
[2010.07.08 16:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At17.job
[2010.07.09 17:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At18.job
[2010.07.09 18:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At19.job
[2010.07.04 01:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At2.job
[2010.07.09 19:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At20.job
[2010.07.09 20:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At21.job
[2010.07.09 21:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At22.job
[2010.07.08 22:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At23.job
[2010.07.08 23:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At24.job
[2010.07.04 02:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At3.job
[2010.07.04 03:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At4.job
[2010.07.04 04:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At5.job
[2010.07.04 05:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At6.job
[2010.07.04 06:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At7.job
[2010.06.28 07:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At8.job
[2010.07.04 08:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At9.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 104 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:DFC5A2B2
< End of report > --- --- ---
Ich hab einfach Angst, dass auf meinem Computer Prozesse laufen, von denen ich nichts weiß und durch die ich ernsthafte Probleme bekomme kann, z.B. bei Passwortspionage.
Von daher gilt mein ganzer Dank dem Team, die ihr euch in diesen schrecklich heißen Tagen an den Computer setzt, um Ahnungslosen wie mir zu helfen! Ich weiß das wirklich zu schätzen!:D
Liebe Grüße,
Saskia |