OTL.txt: Code:
OTL logfile created on: 13.08.2010 09:30:47 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Users\Seblon\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 39,00% Memory free
6,00 Gb Paging File | 4,00 Gb Available in Paging File | 69,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69,65 Gb Total Space | 42,47 Gb Free Space | 60,98% Space Free | Partition Type: NTFS
Drive D: | 69,64 Gb Total Space | 26,69 Gb Free Space | 38,33% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SEBLON-LAPTOP
Current User Name: Seblon
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Users\Seblon\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Gamigo Games\Fiesta Online(EU_German)\Fiesta.bin ()
PRC - C:\Programme\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Programme\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\T-Mobile\T-Mobile Internet Manager\DataCardMonitor.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Users\Seblon\AppData\Roaming\T-Mobile Internet Manager\ouc.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Programme\Winamp\Elevator.exe ()
PRC - C:\Programme\Winamp\winamp.exe (Nullsoft)
PRC - C:\Programme\Firebird\Firebird_1_5\bin\fbserver.exe (The Firebird Project)
PRC - C:\Programme\Firebird\Firebird_1_5\bin\fbguard.exe (The Firebird Project)
========== Modules (SafeList) ==========
MOD - C:\Users\Seblon\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\samcli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\netutils.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\dwmapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (Vsssat) -- File not found
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (wxpSvc) -- C:\Program Files\wLite\wService.exe (Moonware Studios)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (TeamViewer5) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) ActiveX-Installer (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
SRV - (IAANTMON) Intel(R) -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (FirebirdServerDefaultInstance) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe (The Firebird Project)
SRV - (FirebirdGuardianDefaultInstance) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe (The Firebird Project)
========== Driver Services (SafeList) ==========
DRV - (Lbd) -- C:\Windows\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (DrvAgent32) -- C:\Windows\System32\drivers\DrvAgent32.sys (Phoenix Technologies)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics Incorporated)
DRV - (VClone) -- C:\Windows\System32\drivers\VClone.sys (Elaborate Bytes AG)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC-Seriellschnittstellentreiber (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\System32\drivers\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwififlt) -- C:\Windows\System32\drivers\vwififlt.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (HidBatt) -- C:\Windows\system32\DRIVERS\HidBatt.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) Brother MFC-nur-Fax-Modem (USB) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) Brother MFC-WDM-Treiber (USB,seriell) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) Brother WDM-Treiber (seriell) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (SrvHsfV92) -- C:\Windows\System32\drivers\VSTDPV3.SYS (Conexant Systems, Inc.)
DRV - (SrvHsfWinac) -- C:\Windows\System32\drivers\VSTCNXT3.SYS (Conexant Systems, Inc.)
DRV - (SrvHsfHDA) -- C:\Windows\System32\drivers\VSTAZL3.SYS (Conexant Systems, Inc.)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (iaStor) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation)
DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (avgio) -- C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (tcpipBM) -- C:\Windows\System32\drivers\tcpipBM.sys (Bytemobile, Inc.)
DRV - (USBPNPA) -- C:\Windows\System32\drivers\CM108.sys (C-Media Inc)
DRV - (BlueletAudio) -- C:\Windows\System32\drivers\blueletaudio.sys (IVT Corporation.)
DRV - (Btcsrusb) -- C:\Windows\System32\drivers\btcusb.sys (IVT Corporation.)
DRV - (BlueletSCOAudio) -- C:\Windows\System32\drivers\BlueletSCOAudio.sys (IVT Corporation.)
DRV - (BT) -- C:\Windows\System32\drivers\btnetdrv.sys (IVT Corporation.)
DRV - (BTHidMgr) -- C:\Windows\System32\Drivers\BTHidMgr.sys (IVT Corporation.)
DRV - (BTHidEnum) -- C:\Windows\System32\Drivers\vbtenum.sys (IVT Corporation.)
DRV - (VcommMgr) -- C:\Windows\System32\drivers\VCommMgr.sys (IVT Corporation.)
DRV - (VComm) -- C:\Windows\System32\drivers\VComm.sys (IVT Corporation.)
DRV - (SQTECH930B) -- C:\Windows\System32\drivers\Capt930b.sys ()
DRV - (O2MDRDR) -- C:\Windows\system32\DRIVERS\o2media.sys (O2Micro )
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.youth-fm.de/index.htm
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.aol.com/aolcom/search?invocationType=tb50ffTB50CLie7&query="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.youth-fm.de/"
FF - prefs.js..extensions.enabledItems: de-DE@dictionaries.addons.mozilla.org:2.0.1
FF - prefs.js..extensions.enabledItems: {daf44bf7-a45e-4450-979c-91cf07434c3d}:1.5.4
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.4
FF - prefs.js..extensions.enabledItems: {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.6.1
FF - prefs.js..extensions.enabledItems: beta@linkdiagnosis.com:2.2.41
FF - prefs.js..extensions.enabledItems: {E9A4B2C3-9857-4873-BA67-FB4271257B20}:1.3.2
FF - prefs.js..extensions.enabledItems: {e3f6c2cc-d8db-498c-af6c-499fb211db97}:1.8.3
FF - prefs.js..extensions.enabledItems: {70a9aa80-d283-4eae-8a87-ee7b769edf53}:1.0
FF - prefs.js..extensions.enabledItems: {d57c9ff1-6389-48fc-b770-f78bd89b6e8a}:1.33
FF - prefs.js..extensions.enabledItems: en-GB@dictionaries.addons.mozilla.org:1.19
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..network.proxy.backup.ftp: "200.63.17.162"
FF - prefs.js..network.proxy.backup.ftp_port: 8080
FF - prefs.js..network.proxy.backup.gopher: "200.63.17.162"
FF - prefs.js..network.proxy.backup.gopher_port: 8080
FF - prefs.js..network.proxy.backup.socks: "200.63.17.162"
FF - prefs.js..network.proxy.backup.socks_port: 8080
FF - prefs.js..network.proxy.backup.ssl: "200.63.17.162"
FF - prefs.js..network.proxy.backup.ssl_port: 8080
FF - prefs.js..network.proxy.ftp: "200.63.17.162"
FF - prefs.js..network.proxy.ftp_port: 8080
FF - prefs.js..network.proxy.gopher: "200.63.17.162"
FF - prefs.js..network.proxy.gopher_port: 8080
FF - prefs.js..network.proxy.http: "200.63.17.162"
FF - prefs.js..network.proxy.http_port: 8080
FF - prefs.js..network.proxy.no_proxies_on: "localhost, 127.0.0.1,samsung.router"
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "200.63.17.162"
FF - prefs.js..network.proxy.socks_port: 8080
FF - prefs.js..network.proxy.ssl: "200.63.17.162"
FF - prefs.js..network.proxy.ssl_port: 8080
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.07.26 10:03:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.07.22 14:38:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010.07.22 14:38:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2010.07.22 14:38:35 | 000,000,000 | ---D | M]
[2010.06.21 15:36:13 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Extensions
[2010.06.21 15:36:13 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org
[2010.08.13 04:37:38 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions
[2010.05.28 15:36:39 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.02.25 01:04:10 | 000,000,000 | ---D | M] (Html Validator) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
[2010.02.25 01:04:11 | 000,000,000 | ---D | M] (Page Speed Closure Compiler Extension) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{70a9aa80-d283-4eae-8a87-ee7b769edf53}
[2010.02.25 01:04:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{a880aeee-06f6-48e7-87c5-876fb64a2a56}
[2010.02.25 01:04:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{d57c9ff1-6389-48fc-b770-f78bd89b6e8a}
[2010.02.25 01:04:12 | 000,000,000 | ---D | M] (Extended Statusbar) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{daf44bf7-a45e-4450-979c-91cf07434c3d}
[2010.06.09 10:04:05 | 000,000,000 | ---D | M] (Page Speed) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
[2010.02.25 01:04:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\{E9A4B2C3-9857-4873-BA67-FB4271257B20}
[2010.06.02 10:12:06 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\beta@linkdiagnosis.com
[2010.02.25 01:04:06 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\de-DE@dictionaries.addons.mozilla.org
[2010.03.07 23:42:06 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\en-GB@dictionaries.addons.mozilla.org
[2010.05.28 15:36:32 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\firebug@software.joehewitt.com
[2010.03.10 10:45:28 | 000,000,000 | ---D | M] -- C:\Users\Seblon\AppData\Roaming\mozilla\Firefox\Profiles\pa69l60d.default\extensions\yslow@yahoo-inc.com
[2009.07.16 16:29:14 | 000,001,720 | ---- | M] () -- C:\Users\Seblon\AppData\Roaming\Mozilla\FireFox\Profiles\pa69l60d.default\searchplugins\aol-search.xml
[2010.08.09 09:19:37 | 000,000,947 | ---- | M] () -- C:\Users\Seblon\AppData\Roaming\Mozilla\FireFox\Profiles\pa69l60d.default\searchplugins\icqplugin.xml
[2009.05.21 10:08:00 | 000,002,167 | ---- | M] () -- C:\Users\Seblon\AppData\Roaming\Mozilla\FireFox\Profiles\pa69l60d.default\searchplugins\oneview.xml
[2010.08.13 04:37:38 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.04.16 09:29:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.03.02 23:47:09 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.03.02 23:47:09 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.03.02 23:47:09 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.03.02 23:47:09 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.03.02 23:47:09 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Alexa) - {EA582743-9076-4178-9AA6-7393FDF4D5CE} - C:\Programme\Alexa Toolbar\AlxTB2.9.39.dll (Alexa Internet, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [DataCardMonitor] C:\Programme\T-Mobile\T-Mobile Internet Manager\DataCardMonitor.exe (Huawei Technologies Co., Ltd.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Motor_Tracking_Tool] C:\Windows\twain_32\USB2.0 Motor Tracking Camera\MTTool.exe (Microsoft Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKCU..\Run: [HW_OPENEYE_OUC_T-Mobile Internet Manager] C:\Program Files\T-Mobile\T-Mobile Internet Manager\UpdateDog\ouc.exe (Huawei Technologies Co., Ltd.)
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - Startup: C:\Users\Seblon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AnGeL.exe - Verknüpfung.lnk = D:\c\seblon\Desktop\Bot\AnGeL.exe (-)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Windows\web\related.htm File not found
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Windows\web\related.htm File not found
O13 - gopher Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab (QuickTime Object)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} hxxp://game.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.220.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{4c5586dc-4dcd-11df-bcd4-0015831212e7}\Shell - "" = AutoRun
O33 - MountPoints2\{4c5586dc-4dcd-11df-bcd4-0015831212e7}\Shell\AutoRun\command - "" = F:\SETUP.EXE -- File not found
O33 - MountPoints2\{a25250c4-6351-11df-9d3a-0015831212e7}\Shell - "" = AutoRun
O33 - MountPoints2\{a25250c4-6351-11df-9d3a-0015831212e7}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{a25250cf-6351-11df-9d3a-0015831212e7}\Shell - "" = AutoRun
O33 - MountPoints2\{a25250cf-6351-11df-9d3a-0015831212e7}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.08.13 09:28:36 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Seblon\Desktop\OTL.exe
[2010.08.13 08:19:44 | 128,750,008 | ---- | C] (Lavasoft ) -- C:\Users\Seblon\Desktop\Ad-AwareInstall.exe
[2010.08.13 07:01:01 | 000,000,000 | ---D | C] -- C:\Users\Seblon\AppData\Roaming\Malwarebytes
[2010.08.13 07:00:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.08.13 07:00:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.08.13 07:00:38 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.08.13 07:00:38 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.08.13 06:58:04 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Seblon\Desktop\mbam-setup.exe
[2010.08.10 13:23:15 | 000,000,000 | ---D | C] -- C:\Programme\seRapid
[2010.08.09 20:44:08 | 000,398,848 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\TVWizudlg.exe
[2010.08.09 20:44:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2010.08.09 20:39:53 | 000,997,912 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igxpun.exe
[2010.08.09 20:39:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2010.08.09 20:38:50 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.08.09 20:38:16 | 000,000,000 | ---D | C] -- C:\Programme\MSXML 4.0
[2010.08.09 20:35:01 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.08.09 20:35:01 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.08.09 20:35:01 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.08.09 20:35:01 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.08.09 20:34:12 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.08.09 20:34:11 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.08.09 20:34:11 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.08.09 20:33:56 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.08.09 20:33:55 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.08.09 20:33:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.08.09 20:33:15 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.08.09 20:33:15 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.08.09 20:22:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2010.08.09 20:21:57 | 002,898,464 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2010.08.09 20:21:57 | 002,745,760 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys
[2010.08.09 20:21:57 | 001,784,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2010.08.09 20:21:57 | 001,265,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2010.08.09 20:21:57 | 000,551,456 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2010.08.09 20:21:57 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2010.08.09 20:21:57 | 000,326,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2010.08.09 20:21:57 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2010.08.09 20:21:57 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2010.08.09 20:21:57 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2010.08.09 20:21:57 | 000,052,256 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2010.08.09 20:21:56 | 001,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2010.08.09 20:21:56 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2010.08.09 20:21:56 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2010.08.09 20:21:56 | 000,159,744 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2010.08.09 20:21:56 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2010.08.09 20:21:55 | 000,266,240 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2010.08.09 20:21:55 | 000,142,848 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2010.08.09 20:21:55 | 000,125,952 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2010.08.09 20:21:55 | 000,000,000 | ---D | C] -- C:\Programme\Realtek
[2010.08.09 20:21:51 | 000,831,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.08.09 20:21:51 | 000,000,000 | -H-D | C] -- C:\Programme\Temp
[2010.08.09 20:17:47 | 000,000,000 | ---D | C] -- C:\Programme\Synaptics
[2010.08.09 20:17:10 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01009.dll
[2010.08.09 20:17:09 | 000,229,040 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\drivers\SynTP.sys
[2010.08.09 20:17:09 | 000,206,120 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynCtrl.dll
[2010.08.09 20:17:09 | 000,169,256 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynCOM.dll
[2010.08.09 20:17:09 | 000,161,064 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynTPAPI.dll
[2010.08.09 20:17:09 | 000,120,104 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynTPCo4.dll
[2010.08.09 20:11:05 | 000,330,264 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\iaStor.sys
[2010.08.09 20:10:24 | 000,000,000 | ---D | C] -- C:\Programme\Apoint2K
[2010.08.09 20:09:58 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01007.dll
[2010.08.09 20:09:58 | 000,203,824 | ---- | C] (Alps Electric Co., Ltd.) -- C:\Windows\System32\drivers\Apfiltr.sys
[2010.08.09 20:09:58 | 000,108,606 | ---- | C] (Alps Electric Co., Ltd.) -- C:\Windows\System32\Vxdif.dll
[2010.08.09 20:09:28 | 000,000,000 | ---D | C] -- C:\Programme\Cisco
[2010.08.09 20:08:25 | 000,000,000 | ---D | C] -- C:\Programme\Broadcom
[2010.08.09 20:03:21 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2010.08.09 20:03:21 | 000,000,000 | ---D | C] -- C:\Programme\Intel
[2010.08.09 20:02:40 | 000,000,000 | ---D | C] -- C:\Intel
[2010.08.09 20:01:52 | 000,000,000 | ---D | C] -- C:\Programme\Option
[2010.08.09 19:51:43 | 000,604,672 | ---- | C] (Ralink Technology, Corp.) -- C:\Windows\System32\netr28.sys
[2010.08.09 19:51:43 | 000,221,184 | ---- | C] (Ralink Technology, Inc.) -- C:\Windows\System32\RaCoInst.dll
[2010.08.09 19:51:43 | 000,000,000 | ---D | C] -- C:\Windows\Options
[2010.08.09 19:46:09 | 001,781,760 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\athr.sys
[2010.08.09 19:46:09 | 000,000,000 | ---D | C] -- C:\Programme\Atheros
[2010.08.09 19:45:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros
[2010.08.09 19:45:37 | 000,000,000 | ---D | C] -- C:\Users\Seblon\AppData\Roaming\InstallShield
[2010.08.09 19:35:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Ralink
[2010.08.07 14:30:16 | 000,000,000 | ---D | C] -- C:\Users\Seblon\Documents\Fiesta
[2010.07.25 15:59:48 | 000,000,000 | ---D | C] -- C:\Windows\Presets
[2010.07.25 10:59:54 | 000,000,000 | ---D | C] -- C:\Programme\VirtualDJ
[2010.07.25 08:28:20 | 000,000,000 | ---D | C] -- C:\Programme\No23Live
[2010.07.24 21:48:54 | 000,000,000 | ---D | C] -- C:\Programme\edcast
[2010.07.22 14:35:21 | 000,000,000 | ---D | C] -- C:\Programme\Apple Software Update
[2010.07.22 14:30:48 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.07.20 13:27:54 | 000,000,000 | ---D | C] -- C:\Users\Seblon\Desktop\youthfm
[2010.07.19 23:41:06 | 000,000,000 | ---D | C] -- C:\Users\Seblon\Desktop\yfm und im
[2010.07.19 20:04:08 | 000,000,000 | ---D | C] -- C:\Users\Seblon\AppData\Roaming\DivX
[2010.07.19 20:03:44 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\PX Storage Engine
[2010.07.19 20:02:50 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DivX Shared
[2010.07.19 19:58:49 | 000,000,000 | ---D | C] -- C:\Programme\DivX
[2010.07.19 19:58:03 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.08.13 09:39:28 | 003,407,872 | -HS- | M] () -- C:\Users\Seblon\NTUSER.DAT
[2010.08.13 09:37:49 | 000,741,376 | ---- | M] () -- C:\Windows\System32\drivers\jzhkpqtl.sys
[2010.08.13 09:28:56 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Seblon\Desktop\OTL.exe
[2010.08.13 08:28:54 | 128,750,008 | ---- | M] (Lavasoft ) -- C:\Users\Seblon\Desktop\Ad-AwareInstall.exe
[2010.08.13 08:12:21 | 000,054,016 | ---- | M] () -- C:\Windows\System32\drivers\amde.sys
[2010.08.13 08:03:53 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.08.13 08:03:53 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.08.13 07:58:42 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.08.13 07:58:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.08.13 07:58:28 | 2359,980,032 | -HS- | M] () -- C:\hiberfil.sys
[2010.08.13 07:57:42 | 001,905,824 | -H-- | M] () -- C:\Users\Seblon\AppData\Local\IconCache.db
[2010.08.13 07:52:47 | 000,013,351 | ---- | M] () -- C:\Users\Seblon\AppData\Roaming\phpdesigner2007pe.xml
[2010.08.13 07:00:47 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.13 06:58:47 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Seblon\Desktop\mbam-setup.exe
[2010.08.10 13:33:13 | 000,001,094 | ---- | M] () -- C:\Windows\seRapid.INI
[2010.08.10 13:23:15 | 000,000,899 | ---- | M] () -- C:\Users\Seblon\Desktop\InfoRapid Suchen & Ersetzen.lnk
[2010.08.10 13:22:58 | 001,045,824 | ---- | M] () -- C:\Users\Seblon\Desktop\se.exe
[2010.08.09 20:42:59 | 000,319,632 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.08.09 20:17:55 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2010.08.09 20:10:33 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01007.Wdf
[2010.08.09 20:08:19 | 000,006,656 | ---- | M] () -- C:\Windows\System32\bcmwlrc.dll
[2010.08.09 19:32:55 | 000,000,000 | ---- | M] () -- C:\Windows\Setup.INI
[2010.07.30 16:45:46 | 000,029,810 | ---- | M] () -- C:\Users\Seblon\Desktop\einladung-gray.jpg
[2010.07.30 16:43:43 | 000,043,506 | ---- | M] () -- C:\Users\Seblon\Desktop\einladung.jpg
[2010.07.27 15:15:03 | 000,018,065 | ---- | M] () -- C:\Users\Seblon\Desktop\traum.jpg
[2010.07.27 15:12:59 | 000,008,288 | ---- | M] () -- C:\Users\Seblon\Desktop\Herz.gif
[2010.07.27 01:49:33 | 000,035,122 | ---- | M] () -- C:\Users\Seblon\Documents\getränkemarken.odt
[2010.07.27 01:24:56 | 000,003,029 | ---- | M] () -- C:\Users\Seblon\Desktop\marke.jpg
[2010.07.26 12:09:02 | 001,472,002 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.07.26 12:09:02 | 000,643,866 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.07.26 12:09:02 | 000,607,190 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.07.26 12:09:02 | 000,126,394 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.07.26 12:09:02 | 000,103,568 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.07.25 11:00:34 | 000,000,923 | ---- | M] () -- C:\Users\Seblon\Desktop\Virtual DJ.lnk
[2010.07.25 09:58:42 | 000,002,048 | ---- | M] () -- C:\Users\Seblon\Desktop\SimpleCast.lnk
[2010.07.25 08:28:22 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\No23Live.lnk
[2010.07.24 21:55:02 | 000,000,989 | ---- | M] () -- C:\Users\Seblon\Desktop\edcast.lnk
[2010.07.22 19:33:47 | 000,000,572 | ---- | M] () -- C:\Windows\win.ini
[2010.07.18 16:46:57 | 000,016,896 | ---- | M] () -- C:\Users\Seblon\Documents\flug18-07.doc
[2010.07.18 16:38:35 | 000,069,808 | ---- | M] () -- C:\Users\Seblon\Documents\flug18-07.pdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.08.13 08:12:21 | 000,054,016 | ---- | C] () -- C:\Windows\System32\drivers\amde.sys
[2010.08.13 07:00:47 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.10 13:33:07 | 000,001,094 | ---- | C] () -- C:\Windows\seRapid.INI
[2010.08.10 13:23:15 | 000,000,899 | ---- | C] () -- C:\Users\Seblon\Desktop\InfoRapid Suchen & Ersetzen.lnk
[2010.08.10 13:22:50 | 001,045,824 | ---- | C] () -- C:\Users\Seblon\Desktop\se.exe
[2010.08.09 20:44:08 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2010.08.09 20:44:08 | 000,121,232 | ---- | C] () -- C:\Windows\System32\IScrNB.bmp
[2010.08.09 20:21:58 | 000,189,796 | ---- | C] () -- C:\Windows\System32\drivers\RTConvEQ.dat
[2010.08.09 20:21:58 | 000,001,112 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
[2010.08.09 20:21:58 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
[2010.08.09 20:21:58 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2010.08.09 20:21:58 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2010.08.09 20:21:58 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2010.08.09 20:17:55 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2010.08.09 20:10:33 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01007.Wdf
[2010.08.09 20:08:29 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2010.08.09 19:51:43 | 000,353,812 | ---- | C] () -- C:\Windows\System32\netr28.inf
[2010.08.09 19:51:43 | 000,021,606 | ---- | C] () -- C:\Windows\System32\netr28.cat
[2010.08.09 19:51:43 | 000,013,931 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2010.08.09 19:46:09 | 000,330,449 | ---- | C] () -- C:\Windows\System32\netathr.inf
[2010.08.09 19:46:09 | 000,053,090 | ---- | C] () -- C:\Windows\System32\athrext.cat
[2010.08.09 19:32:55 | 000,000,000 | ---- | C] () -- C:\Windows\Setup.INI
[2010.08.01 20:43:07 | 000,530,512 | ---- | C] () -- C:\Users\Seblon\Desktop\3jahre.mp3
[2010.07.30 16:45:46 | 000,029,810 | ---- | C] () -- C:\Users\Seblon\Desktop\einladung-gray.jpg
[2010.07.30 16:43:43 | 000,043,506 | ---- | C] () -- C:\Users\Seblon\Desktop\einladung.jpg
[2010.07.27 15:15:03 | 000,018,065 | ---- | C] () -- C:\Users\Seblon\Desktop\traum.jpg
[2010.07.27 15:12:58 | 000,008,288 | ---- | C] () -- C:\Users\Seblon\Desktop\Herz.gif
[2010.07.27 01:49:30 | 000,035,122 | ---- | C] () -- C:\Users\Seblon\Documents\getränkemarken.odt
[2010.07.27 01:24:56 | 000,003,029 | ---- | C] () -- C:\Users\Seblon\Desktop\marke.jpg
[2010.07.25 11:00:34 | 000,000,923 | ---- | C] () -- C:\Users\Seblon\Desktop\Virtual DJ.lnk
[2010.07.25 09:58:42 | 000,002,048 | ---- | C] () -- C:\Users\Seblon\Desktop\SimpleCast.lnk
[2010.07.25 08:28:22 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\No23Live.lnk
[2010.07.24 21:55:02 | 000,000,989 | ---- | C] () -- C:\Users\Seblon\Desktop\edcast.lnk
[2010.07.18 16:38:33 | 000,069,808 | ---- | C] () -- C:\Users\Seblon\Documents\flug18-07.pdf
[2010.05.18 10:22:15 | 000,741,376 | ---- | C] () -- C:\Windows\System32\drivers\jzhkpqtl.sys
[2010.04.22 18:53:34 | 000,053,248 | ---- | C] () -- C:\Windows\System32\mgxasio2.dll
[2010.04.22 18:51:55 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll
[2010.04.22 18:51:32 | 000,007,119 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2010.04.17 13:00:17 | 000,554,496 | ---- | C] () -- C:\Windows\System32\dvmsg.dll
[2010.04.06 15:47:21 | 000,015,363 | ---- | C] () -- C:\Windows\930TwCfg.INI
[2010.04.06 15:47:18 | 000,376,374 | ---- | C] () -- C:\Windows\System32\drivers\Capt930b.sys
[2010.04.06 15:47:18 | 000,025,728 | ---- | C] () -- C:\Windows\System32\drivers\Camd930b.sys
[2010.03.23 16:46:20 | 000,000,028 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.02.25 02:00:06 | 000,034,308 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2009.07.14 02:55:09 | 000,587,776 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2004.02.24 17:09:30 | 000,045,568 | ---- | C] () -- C:\Windows\System32\xWSock32.dll
[2003.10.10 16:12:58 | 000,141,824 | ---- | C] () -- C:\Windows\System32\xmenu2.dll
[2002.08.09 11:10:04 | 000,017,408 | ---- | C] () -- C:\Windows\System32\xNSLookup.dll
< End of report > Extras.txt: Code:
OTL Extras logfile created on: 13.08.2010 09:30:47 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Users\Seblon\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 39,00% Memory free
6,00 Gb Paging File | 4,00 Gb Available in Paging File | 69,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69,65 Gb Total Space | 42,47 Gb Free Space | 60,98% Space Free | Partition Type: NTFS
Drive D: | 69,64 Gb Total Space | 26,69 Gb Free Space | 38,33% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SEBLON-LAPTOP
Current User Name: Seblon
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{05ADEEC8-BD58-43D9-A9E3-1F53B0DA117A}" = Opera 10.51
"{0A5825FD-0FB7-4e45-9037-858D463F2943}" = BPDSoftware
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{2217B0B4-35CB-48C6-B640-864DF2F30F99}" = OpenOffice.org 3.2
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 20
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2951A232-69BA-4925-BB9A-CEEB72B18B4F}" = BPDSoftware_Ini
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{32EF7022-B623-4B6A-B41D-400558207243}_is1" = Company Logo Designer 2.xx
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{398E8625-6F3A-4C54-B54C-28F0ABB89774}" = BPD_HPSU
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{572F2A62-70CD-4429-8758-6D4D6DC696E1}" = 4500_Help
"{5BB4D7C1-52F2-4BFD-9E40-0D419E2E3021}" = bpd_scan
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{6697D99E-E550-4498-B793-4A8DD8A1821F}" = ProductContext
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A1482E0-7119-4A66-BBF1-FFD95A6BA16C}" = No23Live
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{884BB5CC-108E-41a9-936D-955C999C06A1}_x" = Driver Installer
"{892772D7-1A4D-45A8-86E3-1D6CE9543659}" = CadiaFakturaFreeware
"{8F32C384-D237-4516-9F2B-223E8963A2FB}" = Lager
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9527450C-64B3-11D5-9B31-000021116B62}" = SmartCamera Ver 2.1
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A67BB21E-D419-45BB-AB86-7D87D14BBCE2}" = Safari
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CD0773D5-C18E-495c-B39B-21A96415EDD5}" = HP Officejet J4500 Series
"{D0AF1483-31AD-4FEB-A961-C9327185439F}" = USB2.0 Motor Tracking Camera
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D142FE39-3386-4d82-9AD3-36D4A92AC3C2}" = DocMgr
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DFA72D36-5C42-4379-A294-9EC88A56D27B}" = Driver Installer
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E11448F2-0B44-4239-B04E-D88FE743E929}" = Officejet J4500 Series
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{EFE356A6-91C3-450F-A469-504ACA655A7A}_is1" = PADGen 3.1.0.41
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F8584160-CC6E-11d5-954F-5254AB1A4DB7}" = Pluto Client
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FDE773CD-9201-4655-87F3-4E051860D47D}" = Ralink Wireless LAN v3.0.2.0 Installation Program for Windows7
"{FDEC11CC-4BD6-4a8c-A398-3CCD8E43EACA}" = J4500
"ActiveTouchMeetingClient" = WebEx
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Alexa Toolbar" = Alexa Toolbar
"AMIP" = AMIP (remove only)
"Audacity_is1" = Audacity 1.2.6
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"CamStudio" = CamStudio
"Casino.com" = Casino.com
"ColorPic" = ColorPic
"Daolnwod Software Submitter_is1" = Daolnwod Software Submitter 1.5
"Der VerkehrsGigant-Gold Edition" = Der VerkehrsGigant-Gold Edition
"DivX Setup.divx.com" = DivX-Setup
"DriverAgent.exe" = DriverAgent by eSupport.com
"FBDBServer_1_5_is1" = Firebird 1.5.2.4731
"Fiesta Online(EU_German)" = Fiesta Online(EU_German) 1.02.093
"FileZilla Client" = FileZilla Client 3.3.2.1
"HammerHead Rhythm Station" = HammerHead Rhythm Station
"HD Tune_is1" = HD Tune 2.55
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HP Document Manager" = HP Document Manager 1.0
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"ImgBurn" = ImgBurn
"InfoRapid Suchen & Ersetzen" = InfoRapid Suchen & Ersetzen
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus! Live" = Messenger Plus! Live
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Mozilla Thunderbird (2.0.0.24)" = Mozilla Thunderbird (2.0.0.24)
"PaRaMeter_is1" = PaRaMeter 1.3
"PHP Designer 2007 - Personal_is1" = PHP Designer 2007 - Personal - version 5.0.2
"SAM3" = SAM Broadcaster (remove only)
"SHOUTcastDSP" = SHOUTcast Source DSP 1.9.1 (remove only)
"SimpleCast" = SimpleCast (remove only)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 5" = TeamViewer 5
"T-Mobile Internet Manager" = T-Mobile Internet Manager
"Tunnelier" = Bitvise Tunnelier 4.29 (remove only)
"TVWiz" = Intel(R) TV Wizard
"Ultravnc2_is1" = UltraVNC 1.0.8.2
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 1.0.5
"Winamp" = Winamp
"Windows Essentials Media Codec Pack" = Windows Essentials Media Codec Pack 2.3d
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"wLite" = webcamXP Lite
"Wormux" = Wormux
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Imagicon" = Imagicon
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.07.2010 15:29:10 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: skypePM.exe, Version: 3.0.0.5, Zeitstempel:
0x2a425e19 Name des fehlerhaften Moduls: ezPMUtils.dll, Version: 3.0.0.91, Zeitstempel:
0x2a425e19 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000b49f7 ID des fehlerhaften Prozesses:
0x22b4 Startzeit der fehlerhaften Anwendung: 0x01cb27545af89d55 Pfad der fehlerhaften
Anwendung: C:\Program Files\Skype\Plugin Manager\skypePM.exe Pfad des fehlerhaften
Moduls: C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll Berichtskennung: e76fc2a1-936b-11df-91f5-0015831212e7
Error - 22.07.2010 08:37:25 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Die Anwendung oder der Dienst "Internet Explorer" konnte nicht heruntergefahren
werden.
Error - 24.07.2010 15:30:34 | Computer Name = Seblon-Laptop | Source = sc_serv2 | ID = 1
Description =
Error - 24.07.2010 15:30:34 | Computer Name = Seblon-Laptop | Source = sc_serv2 | ID = 1
Description =
Error - 25.07.2010 04:41:21 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: rundll32.exe_shell32.dll, Version:
6.1.7600.16385, Zeitstempel: 0x4a5bc637 Name des fehlerhaften Moduls: ntdll.dll,
Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdadb Ausnahmecode: 0xc0000374 Fehleroffset:
0x000c283b ID des fehlerhaften Prozesses: 0x32c0 Startzeit der fehlerhaften Anwendung:
0x01cb2bd51df044f2 Pfad der fehlerhaften Anwendung: C:\Windows\System32\rundll32.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll Berichtskennung: 65ce9491-97c8-11df-91f5-0015831212e7
Error - 25.07.2010 04:41:26 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7600.16450,
Zeitstempel: 0x4aeba271 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bdadb Ausnahmecode: 0xc0000374 Fehleroffset: 0x000c283b ID des fehlerhaften
Prozesses: 0xd10 Startzeit der fehlerhaften Anwendung: 0x01cb1daeece5f60f Pfad der
fehlerhaften Anwendung: C:\Windows\Explorer.EXE Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung:
692e46f7-97c8-11df-91f5-0015831212e7
Error - 25.07.2010 04:52:06 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: rundll32.exe_Shell32.dll, Version:
6.1.7600.16385, Zeitstempel: 0x4a5bc637 Name des fehlerhaften Moduls: ntdll.dll,
Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdadb Ausnahmecode: 0xc0000374 Fehleroffset:
0x000c283b ID des fehlerhaften Prozesses: 0x3a70 Startzeit der fehlerhaften Anwendung:
0x01cb2bd699e0703f Pfad der fehlerhaften Anwendung: C:\Windows\system32\rundll32.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll Berichtskennung: e61a8935-97c9-11df-91f5-0015831212e7
Error - 31.07.2010 07:28:58 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SAMBC.exe, Version: 1.0.0.0, Zeitstempel:
0x2a425e19 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bdaae Ausnahmecode: 0x0eedfade Fehleroffset: 0x00009617 ID des fehlerhaften
Prozesses: 0xcfc Startzeit der fehlerhaften Anwendung: 0x01cb2ff6c5c16de1 Pfad der
fehlerhaften Anwendung: C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe Pfad des fehlerhaften
Moduls: C:\Windows\system32\KERNELBASE.dll Berichtskennung: cefe4374-9c96-11df-a799-0015831212e7
Error - 05.08.2010 19:04:02 | Computer Name = Seblon-Laptop | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DivXUpdate.exe, Version: 1.0.1.10,
Zeitstempel: 0x4c06fc6d Name des fehlerhaften Moduls: MSVCP80.dll, Version: 8.0.50727.4927,
Zeitstempel: 0x4a275370 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000100b5 ID des fehlerhaften
Prozesses: 0x70c Startzeit der fehlerhaften Anwendung: 0x01cb2e577477a457 Pfad der
fehlerhaften Anwendung: C:\Program Files\DivX\DivX Update\DivXUpdate.exe Pfad des
fehlerhaften Moduls: C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\MSVCP80.dll
Berichtskennung:
bccc024c-a0e5-11df-a799-0015831212e7
Error - 09.08.2010 13:36:05 | Computer Name = Seblon-Laptop | Source = VSS | ID = 8194
Description =
[ System Events ]
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706be fehlgeschlagen: Sicherheitsupdate für Windows 7 (KB979482)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Sicherheitsupdate für Windows 7 (KB979559)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Windows-Tool zum Entfernen bösartiger Software
- Juli 2010 (KB890830)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Sicherheitsupdate für Windows 7 (KB978542)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Update für Windows 7 (KB980408)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Kumulatives Sicherheitsupdate für ActiveX Killbits
für Windows 7 (KB980195)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Definition Update for Windows Defender - KB915597
(Definition 1.87.1528.0)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Microsoft .NET Framework 3.5 SP1-Update für Windows
7 x86 (KB982526)
Error - 09.08.2010 14:40:46 | Computer Name = Seblon-Laptop | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800706ba fehlgeschlagen: Sicherheitsupdate für Windows 7 (KB978601)
Error - 09.08.2010 14:43:20 | Computer Name = Seblon-Laptop | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
tcpipBM
< End of report > |