| TrojaPferd10 | 04.09.2010 16:44 |
Vielen Dank für die schnelle Antwort!!
Malwarebytes' Log:
Malwarebytes' Anti-Malware 1.46
Malwarebytes
Datenbank Version: 4542
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
04.09.2010 16:39:00
mbam-log-2010-09-04 (16-39-00).txt
Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 145531
Laufzeit: 5 Minute(n), 46 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 3
Infizierte Verzeichnisse: 0
Infizierte Dateien: 1
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
C:\WINDOWS\system32\d3dx10d.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
OTL.txt:OTL Logfile: Code:
OTL logfile created on: 04.09.2010 16:50:50 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Dokumente und Einstellungen\Username\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 68,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): e:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 31,25 Gb Total Space | 7,69 Gb Free Space | 24,61% Space Free | Partition Type: NTFS
Drive D: | 86,91 Gb Total Space | 2,18 Gb Free Space | 2,50% Space Free | Partition Type: NTFS
Drive E: | 347,59 Gb Total Space | 3,57 Gb Free Space | 1,03% Space Free | Partition Type: NTFS
Drive F: | 1397,26 Gb Total Space | 823,72 Gb Free Space | 58,95% Space Free | Partition Type: NTFS
Drive G: | 465,76 Gb Total Space | 6,33 Gb Free Space | 1,36% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PCUsername
Current User Name: Username
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Dokumente und Einstellungen\Username\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\Opera\opera.exe (Opera Software)
PRC - C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Programme\Norton Internet Security\Engine\17.7.0.12\ccsvchst.exe (Symantec Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\CrossLoop\CrossLoopService.exe (CrossLoop Inc)
PRC - C:\WINDOWS\system32\bgsvcgen.exe (SOURCENEXT)
PRC - C:\Programme\SpeedFan\speedfan.exe (Almico Software (Almico's Home Page))
PRC - C:\Programme\TechniSat DVB\bin\Server4PC.exe (TechniSat Digital, S.A.)
PRC - C:\Programme\FreePDF_XP\fpassist.exe (shbox.de)
PRC - C:\Programme\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)
PRC - C:\Programme\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
PRC - C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
PRC - C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
PRC - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\agent.exe (Macrovision Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Vista Drive Icon\DrvIcon.exe (artArmin)
PRC - C:\Programme\Multimedia Keyboard Driver\M-KbdDrv.exe ()
PRC - C:\Programme\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
PRC - C:\Programme\Ahead\InCD\InCD.exe (Nero AG)
PRC - C:\Programme\Ahead\InCD\InCDsrv.exe (Nero AG)
PRC - C:\WINDOWS\system32\Tablet.exe (Wacom Technology, Corp.)
PRC - C:\WINDOWS\system32\WTablet\TabUserW.exe (Wacom Technology, Corp.)
PRC - C:\Programme\EPSON\ESM2\eEBAgent.exe (SEIKO EPSON CORPORATION)
PRC - C:\Programme\EPSON\ESM2\eEBSvc.exe ()
PRC - C:\WINDOWS\system32\LXSUPMON.EXE (Lexmark International Inc.)
========== Modules (SafeList) ==========
MOD - C:\Dokumente und Einstellungen\Username\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Programme\Norton Internet Security\Engine\17.7.0.12\asoehook.dll (Symantec Corporation)
MOD - C:\Programme\Norton Internet Security\Engine\17.7.0.12\microsoft.vc90.crt\msvcr90.dll (Microsoft Corporation)
MOD - C:\Programme\Norton Internet Security\Engine\17.7.0.12\microsoft.vc90.crt\msvcp90.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\TabHook.dll (Wacom Technology, Corp.)
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (FLEXnet Licensing Service) -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (Hamachi2Svc) -- C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (NIS) -- C:\Programme\Norton Internet Security\Engine\17.7.0.12\ccSvcHst.exe (Symantec Corporation)
SRV - (CrossLoopService) -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\CrossLoop\CrossLoopService.exe (CrossLoop Inc)
SRV - (uvnc_service) -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\CrossLoop\winvnc.exe (UltraVNC)
SRV - (bgsvcgen) -- C:\WINDOWS\System32\bgsvcgen.exe (SOURCENEXT)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Programme\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (odserv) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (Adobe Version Cue CS4) -- C:\Programme\Gemeinsame Dateien\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated)
SRV - (nTuneService) -- C:\Programme\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
SRV - (ose) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (InCDsrv) -- C:\Programme\Ahead\InCD\InCDsrv.exe (Nero AG)
SRV - (IDriverT) -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (TabletService) -- C:\WINDOWS\system32\Tablet.exe (Wacom Technology, Corp.)
SRV - (EpsonBidirectionalAgent) -- C:\Programme\EPSON\ESM2\eEBAgent.exe (SEIKO EPSON CORPORATION)
SRV - (EpsonBidirectionalService) -- C:\Programme\EPSON\ESM2\eEBSvc.exe ()
========== Driver Services (SafeList) ==========
DRV - (NVIDIAHWAccess) -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\NVIDIA\HWAccess.sys File not found
DRV - (Monfilt) -- C:\WINDOWS\System32\drivers\Monfilt.sys File not found
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys File not found
DRV - (EagleNT) -- C:\WINDOWS\System32\drivers\EagleNT.sys File not found
DRV - (cpuz130) -- C:\TEMP\cpuz130\cpuz_x32.sys File not found
DRV - (appliandMP) -- C:\WINDOWS\System32\DRIVERS\appliand.sys File not found
DRV - (Ambfilt) -- C:\WINDOWS\System32\drivers\Ambfilt.sys File not found
DRV - (BHDrvx86) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100810.004\BHDrvx86.sys (Symantec Corporation)
DRV - (NAVEX15) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100903.050\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100903.050\NAVENG.SYS (Symantec Corporation)
DRV - (eeCtrl) -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (SymEvent) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (IDSxpx86) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100903.003\IDSXpx86.sys (Symantec Corporation)
DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\NIS\1107000.00C\SYMTDI.SYS (Symantec Corporation)
DRV - (MBAMSwissArmy) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (SymIRON) -- C:\WINDOWS\system32\drivers\NIS\1107000.00C\Ironx86.SYS (Symantec Corporation)
DRV - (SymEFA) -- C:\WINDOWS\system32\drivers\NIS\1107000.00C\SYMEFA.SYS (Symantec Corporation)
DRV - (SRTSP) -- C:\WINDOWS\System32\Drivers\NIS\1107000.00C\SRTSP.SYS (Symantec Corporation)
DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\WINDOWS\system32\drivers\NIS\1107000.00C\SRTSPX.SYS (Symantec Corporation)
DRV - (truecrypt) -- C:\WINDOWS\system32\drivers\truecrypt.sys (TrueCrypt Foundation)
DRV - (UDNT) -- C:\WINDOWS\System32\drivers\udnt.sys ()
DRV - (UUsernameIS11) -- C:\WINDOWS\System32\drivers\UUsernameIS11.SYS (UUsername Data Systems Inc.)
DRV - (DMX3191) -- C:\WINDOWS\System32\drivers\DMX3191.SYS (Microsoft Corporation)
DRV - (AEC671X) -- C:\WINDOWS\System32\drivers\AEC671X.SYS (Acard Technology Corp.)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (ccHP) -- C:\WINDOWS\system32\drivers\NIS\1107000.00C\ccHPx86.sys (Symantec Corporation)
DRV - (epmntdrv) -- C:\WINDOWS\system32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\WINDOWS\system32\EuGdiDrv.sys ()
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (NPF) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (SKYNET) -- C:\WINDOWS\system32\drivers\SkyNET.sys (TechniSat Digital, S.A.)
DRV - (SymDS) -- C:\WINDOWS\system32\drivers\NIS\1107000.00C\SYMDS.SYS (Symantec Corporation)
DRV - (ISODrive) -- C:\Programme\UltraISO\drivers\ISODrive.sys (EZB Systems, Inc.)
DRV - (fdrawcmd) -- C:\WINDOWS\system32\drivers\fdrawcmd.sys (simonowen.com)
DRV - (adfs) -- C:\WINDOWS\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (scsiscan) -- C:\WINDOWS\system32\drivers\scsiscan.sys (Microsoft Corporation)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- C:\WINDOWS\system32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (NVR0Dev) -- C:\WINDOWS\nvoclock.sys (NVidia Corp.)
DRV - (AmdTools) -- C:\WINDOWS\system32\drivers\AmdTools.sys (AMD, Inc.)
DRV - (CoachVid) -- C:\WINDOWS\system32\drivers\CoachVid.sys (FotoNation Inc.)
DRV - (speedfan) -- C:\WINDOWS\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (JRAID) -- C:\WINDOWS\System32\DRIVERS\jraid.sys (JMicron Technology Corp.)
DRV - (JGOGO) -- C:\WINDOWS\System32\DRIVERS\JGOGO.sys (JMicron )
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (InCDfs) -- C:\WINDOWS\System32\drivers\InCDfs.sys (Nero AG)
DRV - (InCDPass) -- C:\WINDOWS\system32\drivers\InCDpass.sys (Nero AG)
DRV - (incdrm) -- C:\WINDOWS\System32\drivers\InCDrm.sys (Nero AG)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\Hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (asc) -- C:\WINDOWS\System32\drivers\ASC.SYS (Advanced System Products, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\system32\drivers\ASPI32.SYS (Adaptec)
DRV - (flash) -- C:\WINDOWS\system32\drivers\flash.sys ()
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (PQNTDrv) -- C:\WINDOWS\System32\drivers\PQNTDRV.SYS ()
DRV - (PenClass) -- C:\WINDOWS\System32\Drivers\PenClass.sys (Wacom Technology Corporation)
DRV - (giveio) -- C:\WINDOWS\system32\giveio.sys ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\IPSFFPlgn\ [2010.07.04 21:59:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\ [2010.07.04 21:48:39 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2010.09.02 19:26:16 | 000,418,621 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 007guard.com - 007guard and Free Antivirus
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 14440 more lines...
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - E:\CS4\/Adobe Contribute CS4/contributeieplugin.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programme\Norton Internet Security\Engine\17.7.0.12\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programme\Norton Internet Security\Engine\17.7.0.12\ipsbho.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - E:\CS4\/Adobe Contribute CS4/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security\Engine\17.7.0.12\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security\Engine\17.7.0.12\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\Programme\Gemeinsame Dateien\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [DivXUpdate] C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [DrvIcon] C:\Programme\Vista Drive Icon\DrvIcon.exe (artArmin)
O4 - HKLM..\Run: [FreePDF Assistant] C:\Programme\FreePDF_XP\fpassist.exe (shbox.de)
O4 - HKLM..\Run: [InCD] C:\Programme\Ahead\InCD\InCD.exe (Nero AG)
O4 - HKLM..\Run: [JMB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (JMicron Technology Corp.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE (Lexmark International Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MutlimediaKbdDriver] C:\Programme\Multimedia Keyboard Driver\M-KbdDrv.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [ISUSPM] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [NVIDIA nTune] C:\Programme\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\EPSON Background Monitor.lnk = C:\Programme\EPSON\ESM2\Stms.exe (SEIKO EPSON CORPORATION)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Server4PC.lnk = C:\Programme\TechniSat DVB\bin\Server4PC.exe (TechniSat Digital, S.A.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\TabUserW.exe.lnk = C:\WINDOWS\system32\WTablet\TabUserW.exe (Wacom Technology, Corp.)
O4 - Startup: C:\Dokumente und Einstellungen\Username\Startmenü\Programme\Autostart\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\Username\Startmenü\Programme\Autostart\OpenOffice.org 3.1.lnk = C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\Username\Startmenü\Programme\Autostart\SpeedFan.lnk = C:\Programme\SpeedFan\speedfan.exe (Almico Software (Almico's Home Page))
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1259855622085 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab (RIM AxLoader)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.03 16:22:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{f01d1f7e-e02f-11de-a8a2-00d0d702b7a1}\Shell\AutoRun\command - "" = Q:\SmithTechPortableMenu\spm.exe -- File not found
O33 - MountPoints2\{f01d1f7e-e02f-11de-a8a2-00d0d702b7a1}\Shell\Name1\command - "" = Q:\SmithTechPortableMenu\spm.exe -- File not found
O33 - MountPoints2\Q\Shell - "" = AutoRun
O33 - MountPoints2\Q\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\Q\Shell\AutoRun\command - "" = Q:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 90 Days ==========
[2010.09.04 16:44:53 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Username\Desktop\OTL.exe
[2010.09.04 16:31:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Malwarebytes
[2010.09.04 16:31:26 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.09.04 16:31:25 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.09.04 16:31:25 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.09.04 16:31:25 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2010.09.04 13:15:21 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Desktop\Neuer Ordner
[2010.09.04 12:38:06 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Username\Recent
[2010.09.03 17:30:01 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.09.02 21:02:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\Badaboom
[2010.09.02 21:02:22 | 000,000,000 | ---D | C] -- C:\Programme\Badaboom
[2010.09.02 16:30:19 | 000,000,000 | -HSD | C] -- C:\found.004
[2010.08.31 18:37:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\{71AFB5C7-FA7F-44A5-B299-E1180D894EA4}
[2010.08.31 18:37:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\{59E944E4-78AD-4CDB-AC10-6C6AA3DC4E2E}
[2010.08.30 21:11:49 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Skype
[2010.08.28 11:48:06 | 000,000,000 | -HSD | C] -- C:\found.003
[2010.08.23 23:13:27 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\WMTools Downloaded Files
[2010.08.22 08:53:21 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\vlc
[2010.08.01 11:58:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\.mediathek
[2010.08.01 11:47:19 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\DonationCoder
[2010.08.01 11:45:56 | 000,000,000 | ---D | C] -- C:\Programme\WinPcap
[2010.08.01 11:45:45 | 000,000,000 | ---D | C] -- C:\Programme\URLSnooper2
[2010.08.01 11:45:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\DonationCoder
[2010.08.01 11:43:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\mdnslib
[2010.08.01 11:29:38 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\My Streaming Media
[2010.08.01 11:29:37 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\Jaksta_Pty_Ltd
[2010.08.01 11:28:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Replay Media Catcher
[2010.07.29 22:58:21 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\GTA San Andreas User Files
[2010.07.16 17:21:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\PSpad
[2010.07.16 17:21:39 | 000,000,000 | ---D | C] -- C:\Programme\PSPad editor
[2010.07.04 15:18:06 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\CBHD502
[2010.07.04 11:41:54 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.07.04 11:41:54 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.07.04 11:41:53 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Symantec Shared
[2010.07.04 11:41:53 | 000,000,000 | ---D | C] -- C:\Programme\Symantec
[2010.07.04 11:41:38 | 000,000,000 | ---D | C] -- C:\Programme\Norton Internet Security
[2010.07.04 11:39:36 | 000,000,000 | ---D | C] -- C:\Programme\NortonInstaller
[2010.07.01 15:29:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Tific
[2010.06.30 20:28:56 | 000,000,000 | -HSD | C] -- C:\found.002
[2010.06.27 11:43:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Opera WebServer
[2010.06.26 20:00:30 | 000,000,000 | ---D | C] -- C:\Programme\Opera 10.60 Beta
[2010.06.24 13:51:50 | 000,000,000 | -HSD | C] -- C:\found.001
[2010.06.19 10:28:09 | 000,000,000 | -HSD | C] -- C:\found.000
[2010.06.17 22:31:25 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Minnetonka Audio Software
[2010.06.17 22:30:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\SWF & FLV Toolbox
[2010.06.17 22:29:25 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Application Data
[2010.06.17 22:15:10 | 000,000,000 | ---D | C] -- C:\Programme\Seabyrd Technologies
[2010.06.17 18:47:55 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.06.13 12:26:02 | 000,000,000 | ---D | C] -- C:\Programme\ProgDVB
[2010.06.08 16:40:37 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Präsentation
[2009.12.23 15:32:33 | 000,047,360 | ---- | C] (VSO Software) -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\pcouffin.sys
[33 C:\Dokumente und Einstellungen\Username\*.tmp files -> C:\Dokumente und Einstellungen\Username\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 90 Days ==========
[2010.09.04 16:47:00 | 000,001,082 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.09.04 16:45:04 | 000,910,084 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.09.04 16:45:04 | 000,448,470 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2010.09.04 16:45:04 | 000,322,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.09.04 16:45:04 | 000,079,910 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2010.09.04 16:45:04 | 000,046,556 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.09.04 16:44:54 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Username\Desktop\OTL.exe
[2010.09.04 16:41:03 | 000,000,332 | ---- | M] () -- C:\WINDOWS\System32\tablet.dat
[2010.09.04 16:40:43 | 000,000,104 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010.09.04 16:40:40 | 000,001,078 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.09.04 16:40:40 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.09.04 16:40:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.09.04 16:39:38 | 010,485,760 | -H-- | M] () -- C:\Dokumente und Einstellungen\Username\NTUSER.DAT
[2010.09.04 16:31:29 | 000,000,676 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.04 12:39:38 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.09.04 12:39:19 | 000,115,200 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.09.03 23:57:57 | 000,002,243 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2010.09.02 19:26:16 | 000,418,621 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.09.02 16:28:04 | 000,684,066 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1107000.00C\Cat.DB
[2010.09.01 18:06:57 | 000,000,065 | ---- | M] () -- C:\WINDOWS\prncalib.ini
[2010.09.01 15:35:18 | 000,124,683 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\wixx1.tda4
[2010.09.01 15:34:11 | 000,124,706 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\neueswixx.tda4
[2010.08.30 18:58:54 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.08.23 23:14:08 | 000,052,653 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton2.JPG
[2010.08.23 23:13:23 | 000,062,417 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton1.JPG
[2010.08.23 23:12:35 | 000,050,636 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton3.JPG
[2010.08.23 20:50:16 | 000,000,780 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.08.22 14:51:04 | 000,640,574 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 001.jpg
[2010.08.22 14:48:35 | 000,568,001 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 003.jpg
[2010.08.22 14:43:19 | 005,032,644 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 002.jpg
[2010.08.22 08:53:17 | 000,000,691 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
[2010.08.22 08:52:26 | 019,563,096 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\vlc-1.1.3-win32.exe
[2010.08.22 08:26:07 | 000,001,709 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader 9.lnk
[2010.08.14 12:01:49 | 000,001,436 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\XnView.lnk
[2010.08.13 13:23:04 | 000,000,572 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Opera.lnk
[2010.08.12 16:42:06 | 002,351,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.08.12 15:05:12 | 000,503,964 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB983583_20100812_130321484.html
[2010.08.10 12:12:32 | 000,089,376 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\peter propangas.mp3
[2010.08.05 22:20:42 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\.gtkrc-2.0
[2010.08.03 14:25:20 | 000,416,397 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100902-192616.backup
[2010.08.01 12:11:51 | 048,321,452 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\100730_aspekte_asp.asx.mp4
[2010.08.01 12:06:50 | 009,734,640 | ---- | M] () -- C:\100730_aspekte_asp.asx.mp4
[2010.08.01 11:47:19 | 000,000,046 | ---- | M] () -- C:\WINDOWS\System32\DonationCoder_urlsnooper_InstallInfo.dat
[2010.08.01 11:45:56 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\-1
[2010.07.26 14:19:05 | 000,020,878 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Unbenannt-1.jpg
[2010.07.25 19:20:02 | 000,000,256 | ---- | M] () -- C:\WINDOWS\System32\pool.bin
[2010.07.25 19:19:03 | 001,123,908 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\bio_11_ka3.pdf
[2010.07.24 17:38:15 | 000,117,295 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Cliche-Double_post.jpg
[2010.07.23 15:07:42 | 000,041,156 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\beeren_johannisbeere_schwarz.jpg
[2010.07.15 20:19:40 | 000,021,529 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\gfcgb
[2010.07.13 14:09:31 | 000,000,256 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\pool.bin
[2010.07.12 21:43:31 | 002,539,134 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Yolanda Be Cool vrs. DCUP - We No Speak Americano (Dutch Radio Version).mp3
[2010.07.11 14:59:06 | 001,525,310 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\l
[2010.07.10 11:32:29 | 000,132,974 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Einwilligung_Erziehungsberechtigter.pdf
[2010.07.08 08:00:14 | 000,525,396 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\operette-hifi-de-fw43.cod
[2010.07.08 08:00:14 | 000,000,424 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\operette-hifi-de-fw43.alx
[2010.07.07 13:39:45 | 000,030,965 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\1.3dr
[2010.07.07 13:16:21 | 000,000,103 | ---- | M] () -- C:\WINDOWS\System32\nvUnsupRes.dat
[2010.07.05 21:02:26 | 000,018,522 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\t206ide.jed
[2010.07.04 21:48:22 | 000,001,937 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Norton Internet Security.LNK
[2010.07.04 11:41:53 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.07.04 11:41:53 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.07.04 11:41:53 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.07.04 11:41:53 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.07.03 22:58:15 | 000,298,966 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\cbhd502.tos
[2010.06.29 15:40:25 | 000,002,503 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Desktop\Microsoft Office Word 2007.lnk
[2010.06.29 15:11:42 | 000,003,089 | ---- | M] () -- C:\WINDOWS\magic32.ini
[2010.06.27 21:03:24 | 017,606,771 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\physik_11_ka3.pdf
[2010.06.24 18:27:42 | 009,610,982 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\physik_11_ka4.pdf
[2010.06.24 18:13:49 | 004,584,594 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Phy_KA4_2.pdf
[2010.06.23 17:00:04 | 000,114,326 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB977354_20100623_145940187.html
[2010.06.23 16:59:35 | 000,505,502 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB976576_20100623_145757109.html
[2010.06.17 22:31:27 | 000,001,025 | ---- | M] () -- C:\WINDOWS\System32\sysprs7.tgz
[2010.06.17 22:31:27 | 000,001,025 | ---- | M] () -- C:\WINDOWS\System32\sysprs7.dll
[2010.06.17 22:31:27 | 000,001,025 | ---- | M] () -- C:\WINDOWS\System32\clauth2.dll
[2010.06.17 22:31:27 | 000,001,025 | ---- | M] () -- C:\WINDOWS\System32\clauth1.dll
[2010.06.17 22:31:27 | 000,000,219 | ---- | M] () -- C:\WINDOWS\System32\lsprst7.tgz
[2010.06.17 22:31:27 | 000,000,205 | ---- | M] () -- C:\WINDOWS\System32\lsprst7.dll
[2010.06.17 22:31:27 | 000,000,087 | ---- | M] () -- C:\WINDOWS\System32\ssprs.tgz
[2010.06.17 22:31:27 | 000,000,073 | ---- | M] () -- C:\WINDOWS\System32\ssprs.dll
[2010.06.17 22:31:25 | 000,000,021 | ---- | M] () -- C:\WINDOWS\SurCode.INI
[2010.06.17 22:12:55 | 000,000,256 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\pool.bin
[2010.06.13 12:37:40 | 000,004,922 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eesymaex.lyu
[2010.06.13 12:26:36 | 000,000,655 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ProgDVB 6.lnk
[2010.06.09 15:15:33 | 000,583,776 | ---- | M] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB982168_20100609_131312046.html
[33 C:\Dokumente und Einstellungen\Username\*.tmp files -> C:\Dokumente und Einstellungen\Username\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.09.04 16:31:29 | 000,000,676 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.01 18:06:57 | 000,000,065 | ---- | C] () -- C:\WINDOWS\prncalib.ini
[2010.09.01 15:35:18 | 000,124,683 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\wixx1.tda4
[2010.09.01 15:34:11 | 000,124,706 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\neueswixx.tda4
[2010.08.31 18:38:09 | 000,000,755 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Rim.Desktop.HttpServerSetup.log
[2010.08.23 23:14:08 | 000,052,653 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton2.JPG
[2010.08.23 23:13:23 | 000,062,417 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton1.JPG
[2010.08.23 23:12:34 | 000,050,636 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\norton3.JPG
[2010.08.22 14:42:18 | 000,568,001 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 003.jpg
[2010.08.22 13:28:06 | 005,032,644 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 002.jpg
[2010.08.22 13:24:46 | 000,640,574 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Desktop\ebay 001.jpg
[2010.08.22 08:53:17 | 000,000,691 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
[2010.08.22 08:51:31 | 019,563,096 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\vlc-1.1.3-win32.exe
[2010.08.22 08:26:07 | 000,001,709 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader 9.lnk
[2010.08.12 15:04:57 | 000,005,158 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\ASPNETSetup_00002.log
[2010.08.12 15:03:21 | 012,290,384 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB983583_20100812_130321484-Msi0.txt
[2010.08.12 15:03:20 | 000,503,964 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB983583_20100812_130321484.html
[2010.08.10 12:12:32 | 000,089,376 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\peter propangas.mp3
[2010.08.02 11:03:12 | 000,636,328 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\cheats gta san andreas2.txt
[2010.08.01 12:07:50 | 048,321,452 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\100730_aspekte_asp.asx.mp4
[2010.08.01 12:05:57 | 009,734,640 | ---- | C] () -- C:\100730_aspekte_asp.asx.mp4
[2010.08.01 11:47:19 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\DonationCoder_urlsnooper_InstallInfo.dat
[2010.08.01 11:45:56 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\-1
[2010.07.26 14:19:03 | 000,020,878 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Unbenannt-1.jpg
[2010.07.25 19:17:23 | 001,123,908 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\bio_11_ka3.pdf
[2010.07.24 17:38:15 | 000,117,295 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Cliche-Double_post.jpg
[2010.07.23 15:07:42 | 000,041,156 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\beeren_johannisbeere_schwarz.jpg
[2010.07.15 20:17:39 | 000,021,529 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\gfcgb
[2010.07.13 14:09:31 | 000,000,256 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\pool.bin
[2010.07.13 13:52:50 | 000,160,033 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Loader-(2010-07-13).log
[2010.07.13 13:47:09 | 000,008,831 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\synchronize.log
[2010.07.13 13:45:16 | 000,525,396 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\operette-hifi-de-fw43.cod
[2010.07.13 13:45:16 | 000,000,424 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\operette-hifi-de-fw43.alx
[2010.07.12 21:43:27 | 002,539,134 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Yolanda Be Cool vrs. DCUP - We No Speak Americano (Dutch Radio Version).mp3
[2010.07.11 14:55:48 | 001,525,310 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\l
[2010.07.10 11:32:29 | 000,132,974 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Einwilligung_Erziehungsberechtigter.pdf
[2010.07.07 13:39:45 | 000,030,965 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\1.3dr
[2010.07.07 13:16:21 | 000,000,103 | ---- | C] () -- C:\WINDOWS\System32\nvUnsupRes.dat
[2010.07.05 21:02:26 | 000,018,522 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\t206ide.jed
[2010.07.04 15:17:38 | 000,298,966 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\cbhd502.tos
[2010.07.04 11:41:54 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.07.04 11:41:54 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.07.04 11:41:52 | 000,001,937 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Norton Internet Security.LNK
[2010.06.27 21:02:39 | 017,606,771 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\physik_11_ka3.pdf
[2010.06.24 18:27:42 | 009,610,982 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\physik_11_ka4.pdf
[2010.06.24 18:13:48 | 004,584,594 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Eigene Dateien\Phy_KA4_2.pdf
[2010.06.23 16:59:55 | 000,004,372 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\dd_wcf_retCA57D7.txt
[2010.06.23 16:59:40 | 002,360,734 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB977354_20100623_145940187-Msi0.txt
[2010.06.23 16:59:38 | 000,114,326 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB977354_20100623_145940187.html
[2010.06.23 16:59:23 | 000,005,158 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\ASPNETSetup_00001.log
[2010.06.23 16:57:57 | 011,703,948 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB976576_20100623_145757109-Msi0.txt
[2010.06.23 16:57:55 | 000,505,502 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 2.0-KB976576_20100623_145757109.html
[2010.06.17 22:31:27 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.tgz
[2010.06.17 22:31:27 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
[2010.06.17 22:31:27 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2010.06.17 22:31:27 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2010.06.17 22:31:27 | 000,000,219 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.tgz
[2010.06.17 22:31:27 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
[2010.06.17 22:31:27 | 000,000,087 | ---- | C] () -- C:\WINDOWS\System32\ssprs.tgz
[2010.06.17 22:31:27 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
[2010.06.17 22:31:25 | 000,000,021 | ---- | C] () -- C:\WINDOWS\SurCode.INI
[2010.06.17 22:12:55 | 000,000,256 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\pool.bin
[2010.06.13 12:37:40 | 000,004,922 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eesymaex.lyu
[2010.06.13 12:26:35 | 000,000,655 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ProgDVB 6.lnk
[2010.06.09 15:15:21 | 000,004,370 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\dd_wcf_retCAEB4.txt
[2010.06.09 15:15:05 | 002,208,470 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB982168_20100609_131312046-Msi1.txt
[2010.06.09 15:14:46 | 000,005,158 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\ASPNETSetup_00000.log
[2010.06.09 15:13:12 | 011,156,724 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB982168_20100609_131312046-Msi0.txt
[2010.06.09 15:13:10 | 000,583,776 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Microsoft .NET Framework 3.0-KB982168_20100609_131312046.html
[2010.06.09 15:13:02 | 000,075,723 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\dd_clwireg.txt
[2010.05.14 20:28:19 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\EEBAPI.dll
[2010.05.14 20:28:19 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\EEBDSCVR.dll
[2010.05.14 20:28:19 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\EBAPI.dll
[2010.05.12 16:19:07 | 000,000,736 | ---- | C] () -- C:\WINDOWS\Irodio.INI
[2010.05.08 12:19:42 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2010.05.08 12:19:42 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2010.05.08 12:19:42 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2010.05.07 22:35:58 | 000,004,536 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010.04.27 15:30:47 | 000,494,557 | ---- | C] () -- C:\WINDOWS\System32\dxgi.dll
[2010.04.27 15:30:47 | 000,025,037 | ---- | C] () -- C:\WINDOWS\System32\Nucleus.dll
[2010.04.27 15:30:46 | 000,566,624 | ---- | C] () -- C:\WINDOWS\System32\d3d10.dll
[2010.04.27 15:30:46 | 000,519,912 | ---- | C] () -- C:\WINDOWS\System32\d3dx10d_33.dll
[2010.04.27 14:14:42 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010.04.25 13:18:02 | 000,003,252 | ---- | C] () -- C:\WINDOWS\System32\drivers\PQNTDRV.SYS
[2010.04.17 11:53:59 | 000,003,089 | ---- | C] () -- C:\WINDOWS\magic32.ini
[2010.04.17 11:53:59 | 000,000,191 | ---- | C] () -- C:\WINDOWS\KPCMS.INI
[2010.04.17 11:52:32 | 000,027,648 | ---- | C] () -- C:\WINDOWS\udcli32.dll
[2010.04.17 11:52:31 | 000,076,260 | ---- | C] () -- C:\WINDOWS\System32\drivers\udnt.sys
[2010.04.17 11:52:31 | 000,054,784 | ---- | C] () -- C:\WINDOWS\bdongle.dll
[2010.02.14 19:59:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TabUnst.dll
[2010.02.14 19:59:50 | 000,015,744 | ---- | C] () -- C:\WINDOWS\System32\wintab.dll
[2010.02.14 19:59:43 | 000,013,408 | ---- | C] () -- C:\WINDOWS\System32\tabinst.dll
[2010.02.14 19:59:43 | 000,004,032 | ---- | C] () -- C:\WINDOWS\System32\tabins16.dll
[2010.01.19 15:28:35 | 000,007,133 | ---- | C] () -- C:\WINDOWS\System32\drivers\flash.sys
[2010.01.16 23:56:55 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2009.12.27 13:05:19 | 000,000,032 | ---- | C] () -- C:\WINDOWS\Menu.INI
[2009.12.23 15:36:33 | 000,000,040 | -HS- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\.zreglib
[2009.12.23 15:32:37 | 000,000,033 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\pcouffin.log
[2009.12.23 15:32:33 | 000,087,608 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\inst.exe
[2009.12.23 15:32:33 | 000,007,887 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\pcouffin.cat
[2009.12.23 15:32:33 | 000,001,144 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\pcouffin.inf
[2009.12.20 18:55:52 | 000,000,600 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\PUTTY.RND
[2009.12.16 14:27:31 | 000,000,037 | ---- | C] () -- C:\WINDOWS\eprint.INI
[2009.12.10 14:28:43 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\redmonnt.dll
[2009.12.04 15:57:26 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.12.04 15:05:12 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\Cbndll.dll
[2009.12.04 13:59:23 | 000,000,097 | ---- | C] () -- C:\WINDOWS\uUsernamedrv.ini
[2009.12.04 13:52:54 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\Lffpx7.dll
[2009.12.04 13:52:54 | 000,088,576 | ---- | C] () -- C:\WINDOWS\System32\Lffpx90n.dll
[2009.12.04 13:52:51 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Lfkodak.dll
[2009.12.04 12:55:39 | 000,115,200 | ---- | C] () -- C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.12.03 20:49:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\lxaxlcnp.dll
[2009.12.03 16:28:24 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2007.03.12 12:01:30 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2003.11.25 17:05:20 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\UNLHA32.DLL
[2003.07.22 17:33:10 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\mbr_sqlite.dll
[1998.01.15 14:46:22 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\OatLHA.DLL
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== LOP Check ==========
[2009.12.03 17:41:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CMUV
[2010.08.01 11:45:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\DonationCoder
[2009.12.04 16:16:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Easy CD-DA Extractor
[2009.12.10 14:28:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreePDF
[2010.06.17 22:31:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Minnetonka Audio Software
[2009.12.04 14:45:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Nikon
[2010.05.01 18:35:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Research In Motion
[2009.12.23 15:36:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SlySoft
[2009.12.03 17:40:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Technisat
[2010.06.17 22:30:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
[2010.04.20 17:01:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TrueCrypt
[2010.05.12 16:10:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TuneUp Software
[2010.04.27 15:38:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ubisoft
[2009.12.26 23:16:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\vsosdk
[2010.05.12 16:06:02 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.09.04 16:51:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\.purple
[2010.01.16 18:10:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Anvil-Soft
[2009.12.05 17:09:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\CadSoft
[2010.05.08 17:39:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009.12.16 14:24:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\diginet
[2010.08.01 11:47:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\DonationCoder
[2010.05.04 15:47:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\dvdisaster
[2009.12.27 01:18:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\FreeVideoConverter
[2010.08.02 11:03:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\gtk-2.0
[2010.05.12 16:20:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\JAM Software
[2009.12.04 16:19:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\LEAPS
[2010.02.27 00:18:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\LolClient.F24C99354F615F3BAB18AE7B93E3F9B9E8784FA6.1
[2010.06.03 00:18:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Mp3tag
[2009.12.03 21:29:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\OpenOffice.org
[2010.06.26 20:00:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Opera
[2010.02.19 23:33:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Pegasys Inc
[2010.05.01 15:01:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Research In Motion
[2010.07.01 15:29:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Tific
[2010.04.20 17:04:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\TrueCrypt
[2010.05.12 16:06:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\TuneUp Software
[2010.04.27 15:38:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Ubisoft
[2010.05.01 12:06:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\Vso
[2010.02.16 16:44:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\WinFF
[2010.09.03 19:25:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Username\Anwendungsdaten\XnView
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 131 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:60466E88
< End of report >
--- --- ---
Extras.txt:OTL Logfile: Code:
OTL Extras logfile created on: 04.09.2010 16:50:50 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Dokumente und Einstellungen\Username\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 68,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): e:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 31,25 Gb Total Space | 7,69 Gb Free Space | 24,61% Space Free | Partition Type: NTFS
Drive D: | 86,91 Gb Total Space | 2,18 Gb Free Space | 2,50% Space Free | Partition Type: NTFS
Drive E: | 347,59 Gb Total Space | 3,57 Gb Free Space | 1,03% Space Free | Partition Type: NTFS
Drive F: | 1397,26 Gb Total Space | 823,72 Gb Free Space | 58,95% Space Free | Partition Type: NTFS
Drive G: | 465,76 Gb Total Space | 6,33 Gb Free Space | 1,36% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PCUsername
Current User Name: Username
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Programme\Opera\Opera.exe (Opera Software)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programme\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Programme\Opera 10.60 Beta\Opera.exe" "%1" File not found
https [open] -- "C:\Programme\Opera 10.60 Beta\Opera.exe" "%1" File not found
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Betrachten mit XnView] -- "C:\Programme\XnView\xnview.exe" "%1" (XnView, XnView Software - Free graphic and photo viewer, converter, organizer)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Programme\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Programme\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Programme\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"8375:TCP" = 8375:TCP:*:Enabled:League of Legends Launcher
"8375:UDP" = 8375:UDP:*:Enabled:League of Legends Launcher
"8376:TCP" = 8376:TCP:*:Enabled:League of Legends Launcher
"8376:UDP" = 8376:UDP:*:Enabled:League of Legends Launcher
"6912:TCP" = 6912:TCP:*:Enabled:League of Legends Launcher
"6912:UDP" = 6912:UDP:*:Enabled:League of Legends Launcher
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"5910:TCP" = 5910:TCP:*:Enabled:vnc5910
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
"3703:TCP" = 3703:TCP:*:Enabled:Adobe Version Cue CS4 Server
"3704:TCP" = 3704:TCP:*:Enabled:Adobe Version Cue CS4 Server
"51000:TCP" = 51000:TCP:*:Enabled:Adobe Version Cue CS4 Server
"51001:TCP" = 51001:TCP:*:Enabled:Adobe Version Cue CS4 Server
"4481:TCP" = 4481:TCP:LocalSubNet:Enabled:BlackBerry Desktop Software music sync service data transfer
"4481:UDP" = 4481:UDP:LocalSubNet:Enabled:BlackBerry Desktop Software music sync service discovery
"4482:TCP" = 4482:TCP:LocalSubNet:Enabled:BlackBerry Desktop Software music sync service data transfer
"4482:UDP" = 4482:UDP:LocalSubNet:Enabled:BlackBerry Desktop Software music sync service discovery
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programme\Opera\opera.exe" = C:\Programme\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Programme\Microsoft Office\Office12\ONENOTE.EXE" = C:\Programme\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Programme\gamigo\heroes in the sky\HIS.exe" = C:\Programme\gamigo\heroes in the sky\HIS.exe:*:Enabled:his -- File not found
"C:\Dokumente und Einstellungen\Username\Desktop\OperaTor\Opera\opera.exe" = C:\Dokumente und Einstellungen\Username\Desktop\OperaTor\Opera\opera.exe:*:Enabled:Opera Internet Browser -- File not found
"E:\games\lol\game\Riot Games\League of Legends\air\LolClient.exe" = E:\games\lol\game\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby -- File not found
"E:\games\lol\game\Riot Games\League of Legends\game\League of Legends.exe" = E:\games\lol\game\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client -- File not found
"C:\Programme\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Programme\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- File not found
"G:\Assassins Creed II\AssassinsCreedIIGame.exe" = G:\Assassins Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II -- File not found
"G:\Assassins Creed II\AssassinsCreedII.exe" = G:\Assassins Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update -- File not found
"G:\Assassins Creed II\UPlayBrowser.exe" = G:\Assassins Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay -- File not found
"G:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe" = G:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI) -- File not found
"G:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe" = G:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV) -- File not found
"C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\CrossLoop\vncviewer.exe" = C:\Dokumente und Einstellungen\Username\Lokale Einstellungen\Anwendungsdaten\CrossLoop\vncviewer.exe:*:Enabled:vncviewer.exe -- (UltraVNC)
"G:\Call of Duty - World at War\CoDWaWmp.exe" = G:\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- File not found
"G:\Call of Duty - World at War\CoDWaW.exe" = G:\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- File not found
"C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"C:\Programme\Gemeinsame Dateien\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe" = C:\Programme\Gemeinsame Dateien\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe:*:Enabled:Adobe Version Cue CS4 Server -- (Adobe Systems Incorporated)
"E:\games\Unreal Tournament 3 (LG)\Binaries\UT3.exe" = E:\games\Unreal Tournament 3 (LG)\Binaries\UT3.exe:*:Enabled:Unreal Tournament 3 -- ()
"C:\Programme\Pidgin\pidgin.exe" = C:\Programme\Pidgin\pidgin.exe:*:Enabled:Pidgin -- (The Pidgin developer community)
"F:\Call of Duty - World at War\CoDWaW.exe" = F:\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop -- File not found
"C:\Programme\Opera 10.60 Beta\opera.exe" = C:\Programme\Opera 10.60 Beta\opera.exe:*:Enabled:Opera Internet Browser -- File not found
"C:\Programme\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe" = C:\Programme\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe:*:Enabled:BlackBerry Desktop Software -- (Research In Motion)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{059A00AC-1205-423C-91C7-7E6168D804DA}" = MainConcept DTV Decoder Standard
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{09E2111C-16B1-4DDF-BF0D-F994C9A12350}" = Adobe Setup
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{0FCCC22A-4667-49BC-AE94-B2901AD7ADF6}" = Multimedia Keyboard Driver
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{134007CC-7026-46C2-B46F-40D9FD2AF385}" = Technisat DVB-VC80 Redistributable Modules
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14F70205-1940-4000-88C7-BE799A6B2CAD}" = Adobe Soundbooth CS4
"{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}" = Adobe SGM CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{17E2F183-BAC4-4D01-BD7A-59F781E17EFA}" = REALTEK PCIE NIC Driver
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1B7C06E1-4888-47A6-992A-0990B9683486}" = Adobe Version Cue CS4 Server
"{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}" = Adobe InDesign CS4
"{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}" = Adobe InDesign CS4 Icon Handler
"{1E5007FA-DA5E-4EDD-BDE5-14D128D66887}" = PowerQuest PartitionMagic 7.0
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 19
"{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}" = Adobe CS4 American English Speech Analysis Models
"{297D51FC-9AE2-4778-AB62-D202E7EE7D53}" = Robot Arena 2
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2BAF2B96-7560-48B4-87D4-10178DDBE217}" = Adobe InDesign CS4 Application Feature Set Files (Roman)
"{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4
"{3360D505-B0AA-4284-92DF-F872AF90A448}" = BlackBerry Device Software Updater
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JRAID
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3A6829EF-0791-4FDD-9382-C690DD0821B9}" = Adobe Flash Player 10 ActiveX
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}" = Adobe Fireworks CS4
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{47C6F987-685A-41AE-B092-E75B277AEE39}" = Adobe Flash CS4 Extension - Flash Lite STI others
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A52555C-032A-4083-BDD9-6A85ABFB39A8}" = Adobe SING CS4
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{53480870-02D8-48FB-BC27-72C956885168}" = O&O MediaRecovery
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54971F17-9D16-4D43-95D6-3A86E3D20EDB}" = Office-Bibliothek 4.1
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{5EAD5443-7194-46CC-A055-428E6ABB1BAF}" = Adobe Encore CS4
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC71C02-898F-11D4-8680-FC7C9DB0951F}" = exPressIT 5
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{70858C67-8761-4444-895A-0A8B2E9E144E}" = Opera 10.61
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7406DF60-016D-476B-A2C7-55D997592047}" = Adobe OnLocation CS4
"{760E3EF8-577D-483E-9CB2-E759880AD82E}" = League of Legends
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7822CFC5-6D52-4E55-BFB0-2BA64368542D}" = BBSAK
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}" = Adobe InDesign CS4 Common Base Files
"{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}" = Zune Desktop Theme
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{87C51198-5A95-4577-9F47-B953D862FA90}" = EPSON Status Monitor 2
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8A74DEFD-A224-49CC-AB80-4E88BC730125}" = LogMeIn Hamachi
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{90120000-0010-0407-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (German) 12
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{910BEE2C-3C2F-4DC0-9FF0-61DD5F5E8E47}" = Duden Korrektor PLUS
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9AE4AC96-A5F4-4F19-9D13-066C8B3CE034}" = Nikon Scan
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A6EC82A0-1414-475D-8AFD-469089F3080D}" = Adobe Contribute CS4
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB212B59-FF45-4C18-B369-F630CB268DAF}" = TMPGEnc 4.0 XPress
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.4 - Deutsch
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}" = Adobe Premiere Pro CS4 Functional Content
"{B17B1D8F-D822-42E1-A72C-7D9E84CF7B29}" = UT3 Domination (CBP Edition)
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B7F560B3-6EFF-4026-A982-843895A41149}" = Adobe BridgeTalk Plugin CS3
"{B8D91F6B-803A-4579-9DAD-1377B56DC657}" = TMPGEnc Authoring Works 4
"{B9F4561A-924D-4510-A85A-BB0960C338CB}" = Adobe Asset Services CS4
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCB313A5-1AD0-4829-9D6F-EB41C3CFCD4B}" = Phase 5 HTML-Editor
"{BD3374D3-C2E6-42B7-A80B-E850B6886246}" = Adobe Flash CS4 STI-other
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{C6783FB4-2E95-4ED0-8A32-1BF32821689F}" = AMD CPUInfo
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D032A7F0-8B5C-4603-8B46-235025D5F9C1}" = TechniSat DVB-PC TV Star
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1C18EDD-571A-4BDD-BE7B-1DD86027D7FF}" = Adobe Creative Suite 3 Design Premium
"{D25F26E6-7F37-4580-9E83-2BDD9BE9E0CE}" = BlackBerry Desktop Software 6.0
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4
"{D765F1CE-5AE5-4C47-B134-AE58AC474740}" = OpenOffice.org 3.1
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FDBBAF14-5ED8-49B7-A5BE-1C35668B074D}" = Unreal Tournament 3 (LG)
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3B18191663CDFABAA2A93D4267E54D683153FF60" = Windows-Treiberpaket - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adobe_697a06b96d8bcbe2d77b88e7d5448d0" = Adobe Creative Suite 4 Master Collection
"Adobe_c14ac4070fd9614ffe63f4bb533db2c" = Add or Remove Adobe Creative Suite 3 Design Premium
"Aspell English Dictionary_is1" = Aspell English Dictionary-0.50-2
"Aspell German Dictionary_is1" = Aspell German Dictionary-0.50-2
"Audacity_is1" = Audacity 1.2.6
"Badaboom" = Badaboom 1.1.1.194
"BlackBerry_Desktop" = BlackBerry Desktop Software 6.0
"Camera Drivers_is1" = Camera Drivers V1.4
"CCleaner" = CCleaner
"Charlie II" = Charlie II (Deinstallation)
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"CrossLoop_is1" = CrossLoop 2.71
"Der CD-Label-Profi 2001" = Der CD-Label-Profi 2001
"DivX Setup.divx.com" = DivX-Setup
"DVBViewer TE2_is1" = DVBViewer TE2
"DVD Shrink_is1" = DVD Shrink 3.2
"EAGLE 5.6.0" = EAGLE 5.6.0
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 5.8.1 Home Edition
"Easy CD-DA Extractor 12" = Easy CD-DA Extractor 12
"EPSON Printer and Utilities" = EPSON Printer Software
"fdrawcmd" = Fdrawcmd.sys 1.0.1.10
"FLV Player" = FLV Player 2.0 (build 25)
"FreePDF_XP" = FreePDF (Remove only)
"GNU Aspell_is1" = GNU Aspell 0.50-3
"GPL Ghostscript 8.70" = GPL Ghostscript 8.70
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (nur entfernen)
"HijackThis" = HijackThis 2.0.2
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{297D51FC-9AE2-4778-AB62-D202E7EE7D53}" = Robot Arena 2
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{87C51198-5A95-4577-9F47-B953D862FA90}" = EPSON Status Monitor 2
"InstallShield_{910BEE2C-3C2F-4DC0-9FF0-61DD5F5E8E47}" = Duden Korrektor PLUS
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"JDownloader" = JDownloader
"Kalucker_is1" = Kalucker
"Kronen-Design_is1" = Kronen-Design 1.33
"Lexmark Supplies Monitor" = Lexmark Supplies Monitor
"Lexmark Z25-Z35" = Lexmark Z25-Z35
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Midtown Madness 1.0" = Microsoft Midtown Madness
"Mp3tag" = Mp3tag v2.46a
"NeroMultiInstaller!UninstallKey" = Nero Suite
"NIS" = Norton Internet Security
"NMPUninstallKey" = Nero Media Player
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"Pidgin" = Pidgin
"Polipo" = Polipo 1.0.4.1
"ProgDVB" = ProgDVB
"ProgMediaServer" = Prog Media Server Pro
"PSPad editor_is1" = PSPad editor
"Redirection Port Monitor" = RedMon - Redirection Port Monitor
"SilverFast TWAIN V4" = SilverFast TWAIN
"SilverFast V4" = SilverFast
"SpeedFan" = SpeedFan (remove only)
"SystemRequirementsLab" = System Requirements Lab
"Tor" = Tor (remove only)
"Treiber für das Wacom Tablett" = Treiber für das Wacom Tablett
"TrueCrypt" = TrueCrypt
"UltraISO_is1" = UltraISO Premium V9.35
"URLSnooper 2_is1" = URL Snooper v2.28.01
"Vidalia" = Vidalia 0.2.7
"Vista Drive Icon" = Vista Drive Icon 1.4
"VLC media player" = VLC media player 1.1.3
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"Winmail Opener" = Winmail Opener 1.4
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR
"XnView_is1" = XnView 1.97.6
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Analog Clock" = Analog Clock
"InstallShield_{FDBBAF14-5ED8-49B7-A5BE-1C35668B074D}" = Unreal Tournament 3 (LG)
"pdfsam" = pdfsam
"UT3 CBP3 Vol 1" = Unreal Tournament 3 - Community Bonus Pack 3 - Volume 1
"UT3 CBP3 Vol 2" = Unreal Tournament 3 - Community Bonus Pack 3 - Volume 2
"UT3 CBP3 Vol 3" = Unreal Tournament 3 - Community Bonus Pack 3 - Volume 3
"Winamp Detect" = Winamp Erkennungs-Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 04.08.2010 09:55:31 | Computer Name = PCUsername | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung opera.exe, Version 10.60.3445.0, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 06.08.2010 14:18:34 | Computer Name = PCUsername | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung DVBViewerTE.exe, Version 1.0.4.101, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 06.08.2010 14:20:02 | Computer Name = PCUsername | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung DVBViewerTE.exe, Version 1.0.4.101, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
Error - 24.08.2010 14:47:25 | Computer Name = PCUsername | Source = Google Update | ID = 20
Description =
Error - 24.08.2010 14:54:32 | Computer Name = PCUsername | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung divxupdate.exe, Version 1.0.1.10, fehlgeschlagenes
Modul msvcp80.dll, Version 8.0.50727.4053, Fehleradresse 0x000100b5.
Error - 24.08.2010 15:47:28 | Computer Name = PCUsername | Source = Google Update | ID = 20
Description =
Error - 24.08.2010 16:47:35 | Computer Name = PCUsername | Source = Google Update | ID = 20
Description =
Error - 27.08.2010 11:47:14 | Computer Name = PCUsername | Source = Google Update | ID = 20
Description =
Error - 27.08.2010 16:38:35 | Computer Name = PCUsername | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung dvbviewerte.exe, Version 1.0.4.101, fehlgeschlagenes
Modul quartz.dll, Version 6.5.2600.5933, Fehleradresse 0x000ae29a.
Error - 02.09.2010 15:59:40 | Computer Name = PCUsername | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung DVBViewerTE.exe, Version 1.0.4.101, Stillstandmodul
hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.
[ System Events ]
Error - 04.09.2010 09:34:20 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 5.100.183.61 registriert werden. Der Computer mit IP-Adresse 5.100.183.61
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 09:34:31 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 192.168.1.3 registriert werden. Der Computer mit IP-Adresse 192.168.1.3
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 09:39:30 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 5.100.183.61 registriert werden. Der Computer mit IP-Adresse 5.100.183.61
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 09:39:41 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 192.168.1.3 registriert werden. Der Computer mit IP-Adresse 192.168.1.3
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 09:41:48 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 5.100.183.61 registriert werden. Der Computer mit IP-Adresse 5.100.183.61
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 09:42:00 | Computer Name = PCUsername | Source = NetBT | ID = 4321
Description = Der Name "MSHEIMNETZ :1d" konnte nicht auf der Schnittstelle mit
IP-Adresse 192.168.1.3 registriert werden. Der Computer mit IP-Adresse 192.168.1.3
hat nicht zugelassen, dass dieser Computer diesen Namen verwendet.
Error - 04.09.2010 10:02:30 | Computer Name = PCUsername | Source = Service Control Manager | ID = 7000
Description = Der Dienst "UDNT" wurde aufgrund folgenden Fehlers nicht gestartet:
%%20
Error - 04.09.2010 10:40:46 | Computer Name = PCUsername | Source = sr | ID = 1
Description = Beim Verarbeiten der Datei "" auf Volume "HarddiskVolume1" ist im
Wiederherstellungsfilter der unerwartete Fehler "0xC0000001" aufgetreten. Die Volumeüberwachung
wurde angehalten.
Error - 04.09.2010 10:41:06 | Computer Name = PCUsername | Source = Service Control Manager | ID = 7000
Description = Der Dienst "UDNT" wurde aufgrund folgenden Fehlers nicht gestartet:
%%20
Error - 04.09.2010 10:41:07 | Computer Name = PCUsername | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
sym_u3
< End of report >
--- --- --- |
