Pc-Probleme mit Logfile-Auswertung

aDBumsM · 22.01.2012, 20:06

Hey Leute,

seit heute weist mein Laptop einige Probleme, Avira kann jedoch keine Viren o.ä. finden.
Malwarebytes ist noch am suchen und dies hat HiJack This ausgespruckt:

Code:

ATTFilter

*Ehemals gepostete HiJack This-Logfile

U.a. lassen sich nun Google Chrome nicht mehr starten und das Booten dauert sehr lange. Ich hoffe, es ist nichts dran, wäre aber froh, wenn ihr euch meine Logfile durchlesen könntet.

Swisstreasure · 22.01.2012, 20:25

Eine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.

Bitte arbeite alle Schritte der Reihe nach ab.
Lese die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
Nur Scanns durchführen zu denen Du von einem Helfer aufgefordert wirst.
Bitte kein Crossposting ( posten in mehreren Foren).
Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf. Erschwert mir nämlich das auswerten.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist.

Vista und Win7 User
Alle Tools mit Rechtsklick "als Administrator ausführen" starten.

Schritt 1
http://www.trojaner-board.de/95173-b...es-posten.html

aDBumsM · 22.01.2012, 20:35

Also soll ich nun den ersten Schritt dieser Anleitung befolgen?
hxxp://www.trojaner-board.de/69886-alle-hilfesuchenden-eroeffnung-themas-beachten.html

Swisstreasure · 22.01.2012, 21:27

Ja führe was was dort steht.

aDBumsM · 22.01.2012, 21:56

Gut, habe ich gemacht.

Die Defogger.exe konnte keine Probleme feststellen, mir wurde sofort "Finished!" angezeigt. Darf ich nun wieder 'Re-Enable' auswählen?

Im Anhang sind die beiden Logfiles von OTL.exe.

Schritt 3 mit "msinfo32" soll ich nicht machen (laut Anleitung), da ich ein 64-Bit-System von Windows 7 nutze.

Das müsste dann alles gewesen sein.

Vorsichtshalber habe ich noch zusätzlich die Ergebnisse von Malwarebytes und HiJack-This hochgeladen.
Ich hoffe, mir kann jemd. helfen!

Swisstreasure · 22.01.2012, 22:46

Bitte poste die OTL Logs direkt hier im thread. nicht als Anhang.

aDBumsM · 22.01.2012, 23:37

Alles klar!

Extras:

Code:

ATTFilter

OTL Extras logfile created on: 22.01.2012 21:33:01 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\[Name]\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
5,91 Gb Total Physical Memory | 2,70 Gb Available Physical Memory | 45,74% Memory free
11,83 Gb Paging File | 8,56 Gb Available in Paging File | 72,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 196,29 Gb Total Space | 9,02 Gb Free Space | 4,59% Space Free | Partition Type: NTFS
Drive D: | 244,47 Gb Total Space | 22,59 Gb Free Space | 9,24% Space Free | Partition Type: NTFS
Drive E: | 4,82 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: SHAKALAKA-PC | User Name: [Name] | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programme\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Programme\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Programme\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Programme\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Programme\Orbitdownloader\orbitdm.exe" = D:\Programme\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"D:\Programme\Orbitdownloader\orbitnet.exe" = D:\Programme\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"D:\Programme\Orbitdownloader\orbitdm.exe" = D:\Programme\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"D:\Programme\Orbitdownloader\orbitnet.exe" = D:\Programme\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0919C44F-F18A-4E3B-A737-03685272CE72}" = Windows Live Remote Service Resources
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{0F696557-180C-4813-A754-5D43969B0691}" = Windows Live Family Safety
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{169C77B7-69C9-4648-9DD0-72B152AF269F}" = Windows Live Family Safety
"{17A4FD95-A507-43F1-BC92-D8572AF8340A}" = Windows Live Remote Service Resources
"{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources
"{1AAF3A3B-7B32-4DDF-8ABB-438DAEB46EEC}" = Windows Live Family Safety
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1C55470A-7C9E-4C63-B466-6AFFC69E94E9}" = Windows Live Family Safety
"{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources
"{289809B1-078A-49F3-83D0-7E51715B3915}" = Windows Live Family Safety
"{3946328A-5B3A-434C-A22B-64CF6652FBAD}" = Windows Live Family Safety
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{3C41721F-AF0F-4086-AA1C-4C7F29076228}" = Intel(R) PROSet/Wireless WiFi-Software
"{401C50F6-B443-43EE-8F27-A80DB19B03FD}" = Windows Live Family Safety
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources
"{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7734509D-A1F7-4A5E-AF9D-77CD17AE41AF}" = Windows Live Family Safety
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{825C7D3F-D0B3-49D5-A42B-CBB0FBE85E99}" = Windows Live Remote Client Resources
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources
"{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{9210D7A2-DC28-43F6-92F9-E6CD4C729F7B}" = Windows Live Family Safety
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B0BF8602-EA52-4B0A-A2BD-EDABB0977030}" = Windows Live Remote Client Resources
"{B22C8566-D522-4B40-A7AF-525F5A70D832}" = Windows Live Family Safety
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
"{C504EC13-E122-4939-BD6E-EE5A3BAA5FEC}" = Windows Live Remote Client Resources
"{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources
"{CB7935EF-43EE-4C0F-AC02-B0E4DD5DAC17}" = Windows Live Family Safety
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EFB20CF5-1A6D-41F3-8895-223346CE6291}" = Windows Live Remote Service Resources
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FAA3933C-6F0D-4350-B66B-9D7F7031343E}" = Windows Live Remote Service Resources
"{FAD0EC0B-753B-4A97-AD34-32AC1EC8DB69}" = Windows Live Remote Client Resources
"{FE4BE0BD-1EDB-4D24-9614-847B3C472887}" = Windows Live Family Safety
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-X64 8.0.5.0_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"MyDefrag v4.3.1_is1" = MyDefrag v4.3.1
"ProInst" = Intel PROSet Wireless
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}" = Sonic Focus
"{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live
"{0A9256E0-C924-46DE-921B-F6C4548A1C64}" = Windows Live Messenger
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack
"{1367FA2F-2B3D-430F-872F-588B93420BFC}" = TimeShift
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 29
"{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2AD2DD70-27F7-4343-BB4E-DE50A32D854B}" = Windows Live Messenger
"{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack
"{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh
"{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}" = CyberLink BD_3D Advisor 2.0
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{38253529-D97D-4901-AE53-5CC9736D3A2E}" = ASUS AI Recovery
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"{3D0C22FA-96D7-4789-BC5B-991A5A99BFFA}" = Windows Live Messenger
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{4356EDD5-144A-44F2-B352-A9232D280A0C}" = MAGIX Music Maker 17
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A275FD1-2F24-4274-8C01-813F5AD1A92D}" = Windows Live Messenger
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common
"{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack
"{5731C0A8-B266-451A-8D3F-8066AA21836F}" = Tom Clancy's Rainbow Six Vegas
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{5D7767FA-7FE8-4627-9F09-AEF7A25F1E07}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.1 Patch
"{5F6E678A-7E61-448A-86CB-BC2AD1E04138}" = Windows Live Messenger
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{63AE67AA-1AB1-4565-B4EF-ABBC5C841E8D}" = Windows Live Messenger
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6986737B-F286-40D1-87AF-938339DCF6AB}" = Windows Live Messenger
"{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack
"{6A563426-3474-41C6-B847-42B39F1485B2}" = Windows Live Messenger
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C5F8503-55D2-4398-858C-362B7A7AF51C}" = Firebird SQL Server - MAGIX Edition
"{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{709E38A9-7F80-4598-96CC-44B0D553FECE}" = Windows Live Messenger
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack
"{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack
"{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources
"{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials
"{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830}" = Manhunt
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed™ Most Wanted
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8DE8C34-7F51-4cc8-B326-C425793EE741}" = THE CHRONICLES OF RIDDICK: ESCAPE FROM BUTCHER BAY 
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common
"{B42A6552-1A83-4D79-9137-AB0C9036249A}" = Quake Live Mozilla Plugin
"{B45FABE7-D101-4D99-A671-E16DA40AF7F0}" = Microsoft Games for Windows - LIVE
"{B578C85A-A84C-4230-A177-C5B2AF565B8C}" = Microsoft Games for Windows - LIVE Redistributable
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C730B021-96D7-4F63-B52E-27F9A8155BE1}" = MAGIX Screenshare
"{C7411D97-EF5E-46B2-8B49-E408A344DF82}" = MAGIX Speed burnR (MSI)
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer
"{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail
"{DC4071FC-A3FF-4F6B-0001-CCB79085A90A}" = Formatwandler 4 SE
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EC9F368A-79DC-4AAE-907A-FC02D512034E}" = RippMe
"{ECD11609-368B-4C38-92DC-CC2F4DC54E6B}" = Audials
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心
"{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources
"{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.85
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"aTube Catcher" = aTube Catcher
"Avira AntiVir Desktop" = Avira Internet Security 2012
"DAEMON Tools Lite" = DAEMON Tools Lite
"foobar2000" = foobar2000 v1.1.7
"FormatFactory" = FormatFactory 2.70
"Foxit Reader_is1" = Foxit Reader 5.0
"GamersFirst LIVE!" = GamersFirst LIVE!
"Google Chrome" = Google Chrome
"GooTool" = GooTool
"InstallShield_{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"InstallShield_{5D7767FA-7FE8-4627-9F09-AEF7A25F1E07}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.1 Patch
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"MAGIX_{4356EDD5-144A-44F2-B352-A9232D280A0C}" = MAGIX Music Maker 17
"MAGIX_{C730B021-96D7-4F63-B52E-27F9A8155BE1}" = MAGIX Screenshare
"MAGIX_{C7411D97-EF5E-46B2-8B49-E408A344DF82}" = MAGIX Speed burnR (MSI)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.60.0.1800
"Mozilla Firefox 5.0.1 (x86 de)" = Mozilla Firefox 5.0.1 (x86 de)
"Mozilla Thunderbird (7.0.1)" = Mozilla Thunderbird (7.0.1)
"Mp3tag" = Mp3tag v2.49
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Orbit_is1" = Orbit Downloader
"Pidgin" = Pidgin
"Plants vs Zombies" = Plants vs Zombies
"Postal 2_is1" = Portal 2
"ProInst" = Intel PROSet Wireless
"Shutdown4U" = Shutdown4U
"Steam App 410" = Portal: First Slice
"VLC media player" = VLC media player 1.1.11
"WinLiveSuite" = Windows Live Essentials
"YTdetect" = Yahoo! Detect
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4B35F00C-E63D-40DC-9839-DF15A33EAC46}" = Grand Theft Auto Vice City
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"LastPass" = LastPass (uninstall only)
"Mozilla Firefox 7.0.1 (x86 de)" = Mozilla Firefox 7.0.1 (x86 de)
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"Wuala" = Wuala
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 22.12.2011 12:14:36 | Computer Name = Shakalaka-PC | Source = CVHSVC | ID = 100
Description = Nur zur Information.  Error: BITS connection error Type: 150::InternetConnectionFailure.
 
 
Error - 23.12.2011 06:23:02 | Computer Name = Shakalaka-PC | Source = CVHSVC | ID = 100
Description = Nur zur Information.  Error: BITS connection error Type: 150::InternetConnectionFailure.
 
 
Error - 23.12.2011 06:44:46 | Computer Name = Shakalaka-PC | Source = MsiInstaller | ID = 1013
Description = 
 
Error - 23.12.2011 07:26:25 | Computer Name = Shakalaka-PC | Source = Application Hang | ID = 1002
Description = Programm WINWORDC.EXE, Version 0.0.0.0 kann nicht mehr unter Windows
 ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
 um nach weiteren Informationen zum Problem zu suchen.    Prozess-ID: f78    Startzeit: 
01ccc165977c8c37    Endzeit: 0    Anwendungspfad: Q:\140066.deu\Office14\WINWORDC.EXE    Berichts-ID:
 ed6fcb74-2d58-11e1-9bf0-f46d04fc897b  
 
Error - 23.12.2011 10:05:28 | Computer Name = Shakalaka-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: WolfSP.exe, Version: 0.0.0.0, Zeitstempel:
 0x3bf17241  Name des fehlerhaften Moduls: WolfSP.exe, Version: 0.0.0.0, Zeitstempel:
 0x3bf17241  Ausnahmecode: 0xc0000005  Fehleroffset: 0x00063657  ID des fehlerhaften Prozesses:
 0x2070  Startzeit der fehlerhaften Anwendung: 0x01ccc17ad26f1a2f  Pfad der fehlerhaften
 Anwendung: D:\Spiele\Return to Castle Wolfenstein\WolfSP.exe  Pfad des fehlerhaften
 Moduls: D:\Spiele\Return to Castle Wolfenstein\WolfSP.exe  Berichtskennung: 2aa8cac9-2d6f-11e1-9bf0-f46d04fc897b
 
Error - 24.12.2011 06:13:48 | Computer Name = Shakalaka-PC | Source = CVHSVC | ID = 100
Description = Nur zur Information.  Error: BITS connection error Type: 150::InternetConnectionFailure.
 
 
Error - 24.12.2011 09:18:01 | Computer Name = Shakalaka-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SbzEngine.exe, Version: 1.0.0.1, 
Zeitstempel: 0x42285ebb  Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17514,
 Zeitstempel: 0x4ce7c8f9  Ausnahmecode: 0xc0000374  Fehleroffset: 0x00000000000c40f2
ID
 des fehlerhaften Prozesses: 0x8a0  Startzeit der fehlerhaften Anwendung: 0x01ccc237d6f6efb5
Pfad
 der fehlerhaften Anwendung: D:\Spiele\Riddick EFBB\System\Win64_AMD64\SbzEngine.exe
Pfad
 des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll  Berichtskennung: b3e83e76-2e31-11e1-91ec-f46d04fc897b
 
Error - 24.12.2011 10:00:13 | Computer Name = Shakalaka-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: WolfSP.exe, Version: 0.0.0.0, Zeitstempel:
 0x3bf17241  Name des fehlerhaften Moduls: WolfSP.exe, Version: 0.0.0.0, Zeitstempel:
 0x3bf17241  Ausnahmecode: 0xc0000005  Fehleroffset: 0x00063657  ID des fehlerhaften Prozesses:
 0x1140  Startzeit der fehlerhaften Anwendung: 0x01ccc243793ce2cb  Pfad der fehlerhaften
 Anwendung: D:\Spiele\Return to Castle Wolfenstein\WolfSP.exe  Pfad des fehlerhaften
 Moduls: D:\Spiele\Return to Castle Wolfenstein\WolfSP.exe  Berichtskennung: 9905f58f-2e37-11e1-91ec-f46d04fc897b
 
Error - 24.12.2011 12:03:43 | Computer Name = Shakalaka-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SbzEngine.exe, Version: 1.0.0.1, 
Zeitstempel: 0x42285ebb  Name des fehlerhaften Moduls: MCCDyn.dll, Version: 0.0.0.0,
 Zeitstempel: 0x42285e25  Ausnahmecode: 0xc000041d  Fehleroffset: 0x000000000000c527
ID
 des fehlerhaften Prozesses: 0xaac  Startzeit der fehlerhaften Anwendung: 0x01ccc2549b612568
Pfad
 der fehlerhaften Anwendung: D:\Spiele\Riddick EFBB\System\Win64_AMD64\SbzEngine.exe
Pfad
 des fehlerhaften Moduls: D:\Spiele\Riddick EFBB\System\Win64_AMD64\MCCDyn.dll  Berichtskennung:
 da1053e1-2e48-11e1-91ec-f46d04fc897b
 
Error - 24.12.2011 18:19:51 | Computer Name = Shakalaka-PC | Source = Application Hang | ID = 1002
Description = Programm iw4sp.exe, Version 0.0.0.0 kann nicht mehr unter Windows 
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
 um nach weiteren Informationen zum Problem zu suchen.    Prozess-ID: bd4    Startzeit: 
01ccc289f94eb99a    Endzeit: 3    Anwendungspfad: D:\Spiele\Call of Duty 4 Modern Warfare
 2\iw4sp.exe    Berichts-ID: 617a3f2f-2e7d-11e1-91ec-f46d04fc897b  
 
[ System Events ]
Error - 21.11.2011 13:10:28 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 Google Update Service (gupdate) erreicht.
 
Error - 21.11.2011 13:10:28 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden
 Fehlers nicht gestartet:   %%1053
 
Error - 21.11.2011 16:54:49 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 Google Update Service (gupdate) erreicht.
 
Error - 21.11.2011 16:54:49 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden
 Fehlers nicht gestartet:   %%1053
 
Error - 22.11.2011 01:56:04 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 Google Update Service (gupdate) erreicht.
 
Error - 22.11.2011 01:56:04 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden
 Fehlers nicht gestartet:   %%1053
 
Error - 22.11.2011 02:19:28 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 Google Update Service (gupdate) erreicht.
 
Error - 22.11.2011 02:19:28 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden
 Fehlers nicht gestartet:   %%1053
 
Error - 22.11.2011 02:20:36 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 SSDP-Suche erreicht.
 
Error - 22.11.2011 02:20:36 | Computer Name = Shakalaka-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "SSDP-Suche" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%1053
 
 
< End of report >

aDBumsM · 22.01.2012, 23:38

Ich muss dies in zwei Postings machen, da zuviele Zeichen vorhaben waren und dies verhindert wurde.

OTL

Code:

ATTFilter

OTL logfile created on: 22.01.2012 21:33:01 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\[Name]\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
5,91 Gb Total Physical Memory | 2,70 Gb Available Physical Memory | 45,74% Memory free
11,83 Gb Paging File | 8,56 Gb Available in Paging File | 72,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 196,29 Gb Total Space | 9,02 Gb Free Space | 4,59% Space Free | Partition Type: NTFS
Drive D: | 244,47 Gb Total Space | 22,59 Gb Free Space | 9,24% Space Free | Partition Type: NTFS
Drive E: | 4,82 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: SHAKALAKA-PC | User Name: [Name] | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2012.01.22 21:31:56 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\[Name]\Desktop\OTL.exe
PRC - [2011.12.24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- D:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.12.24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- D:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011.12.09 16:17:32 | 000,342,480 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\avmailc.exe
PRC - [2011.10.18 16:13:07 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2011.10.18 16:03:45 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.10.18 16:03:42 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011.10.18 16:03:33 | 000,616,400 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\avfwsvc.exe
PRC - [2011.10.18 16:02:49 | 000,306,128 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Programme\Avira\AntiVir Desktop\avcenter.exe
PRC - [2011.10.06 21:35:23 | 000,924,632 | ---- | M] (Mozilla Corporation) -- D:\Programme\Mozilla Firefox\firefox.exe
PRC - [2011.08.03 12:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.07.15 06:53:01 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2011.07.14 13:21:10 | 000,108,032 | ---- | M] () -- D:\Programme\VLC\vlc.exe
PRC - [2011.06.24 06:37:58 | 000,049,340 | ---- | M] (The Pidgin developer community) -- D:\Programme\Pidgin\pidgin.exe
PRC - [2011.06.05 10:16:20 | 002,011,136 | ---- | M] () -- D:\Programme\foobar2000\foobar2000.exe
PRC - [2011.05.24 10:33:30 | 001,840,128 | ---- | M] (MAGIX AG) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
PRC - [2010.10.07 13:05:14 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2010.09.23 15:53:16 | 001,601,536 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2010.09.14 04:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2010.09.14 04:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010.08.17 13:55:42 | 005,732,992 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2010.07.10 06:45:00 | 000,984,400 | ---- | M] (Virage Logic Corporation / Sonic Focus) -- C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
PRC - [2009.12.15 09:39:38 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
PRC - [2009.06.19 09:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
PRC - [2009.06.15 16:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2011.10.19 18:33:17 | 000,928,256 | ---- | M] () -- C:\Users\[Name]\AppData\Roaming\Mozilla\Firefox\Profiles\vkuuxfit.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
MOD - [2011.10.06 21:35:22 | 001,833,944 | ---- | M] () -- D:\Programme\Mozilla Firefox\mozjs.dll
MOD - [2011.08.14 20:35:40 | 006,277,280 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011.08.12 18:22:42 | 000,904,525 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libcairo-2.dll
MOD - [2011.08.12 18:22:42 | 000,535,264 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\freetype6.dll
MOD - [2011.08.12 18:22:42 | 000,482,872 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libgio-2.0-0.dll
MOD - [2011.08.12 18:22:42 | 000,279,059 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libfontconfig-1.dll
MOD - [2011.08.12 18:22:42 | 000,219,305 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libpng14-14.dll
MOD - [2011.08.12 18:22:42 | 000,143,096 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libexpat-1.dll
MOD - [2011.08.12 18:22:42 | 000,095,189 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\libpangocairo-1.0-0.dll
MOD - [2011.08.12 18:22:42 | 000,090,496 | ---- | M] () -- D:\Programme\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
MOD - [2011.08.12 18:22:42 | 000,055,808 | ---- | M] () -- D:\Programme\Pidgin\Gtk\bin\zlib1.dll
MOD - [2011.07.14 13:21:22 | 001,712,128 | ---- | M] () -- D:\Programme\VLC\plugins\libvorbis_plugin.dll
MOD - [2011.07.14 13:21:22 | 001,137,664 | ---- | M] () -- D:\Programme\VLC\plugins\libxml_plugin.dll
MOD - [2011.07.14 13:21:22 | 001,108,992 | ---- | M] () -- D:\Programme\VLC\plugins\libtaglib_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,368,640 | ---- | M] () -- D:\Programme\VLC\plugins\libtheora_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,325,120 | ---- | M] () -- D:\Programme\VLC\plugins\libswscale_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,123,392 | ---- | M] () -- D:\Programme\VLC\plugins\libts_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,078,848 | ---- | M] () -- D:\Programme\VLC\plugins\libzip_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,052,736 | ---- | M] () -- D:\Programme\VLC\plugins\libty_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,046,592 | ---- | M] () -- D:\Programme\VLC\plugins\libwaveout_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,040,448 | ---- | M] () -- D:\Programme\VLC\plugins\libyuy2_i420_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,038,912 | ---- | M] () -- D:\Programme\VLC\plugins\libvout_wrapper_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,036,864 | ---- | M] () -- D:\Programme\VLC\plugins\libyuy2_i422_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,036,864 | ---- | M] () -- D:\Programme\VLC\plugins\libwav_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,036,352 | ---- | M] () -- D:\Programme\VLC\plugins\libvoc_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libtta_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,031,744 | ---- | M] () -- D:\Programme\VLC\plugins\libxa_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,031,232 | ---- | M] () -- D:\Programme\VLC\plugins\libyuvp_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,031,232 | ---- | M] () -- D:\Programme\VLC\plugins\libugly_resampler_plugin.dll
MOD - [2011.07.14 13:21:22 | 000,030,720 | ---- | M] () -- D:\Programme\VLC\plugins\libtrivial_mixer_plugin.dll
MOD - [2011.07.14 13:21:20 | 011,496,448 | ---- | M] () -- D:\Programme\VLC\plugins\libqt4_plugin.dll
MOD - [2011.07.14 13:21:20 | 002,169,856 | ---- | M] () -- D:\Programme\VLC\plugins\libskins2_plugin.dll
MOD - [2011.07.14 13:21:20 | 001,013,248 | ---- | M] () -- D:\Programme\VLC\plugins\libschroedinger_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,130,048 | ---- | M] () -- D:\Programme\VLC\plugins\libspeex_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,080,896 | ---- | M] () -- D:\Programme\VLC\plugins\libsap_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,052,224 | ---- | M] () -- D:\Programme\VLC\plugins\libreal_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,036,864 | ---- | M] () -- D:\Programme\VLC\plugins\libsmf_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,036,864 | ---- | M] () -- D:\Programme\VLC\plugins\libscaletempo_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,036,864 | ---- | M] () -- D:\Programme\VLC\plugins\librawvid_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,034,304 | ---- | M] () -- D:\Programme\VLC\plugins\libstream_filter_rar_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libsimple_channel_mixer_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\librawdv_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,031,744 | ---- | M] () -- D:\Programme\VLC\plugins\libscale_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,031,232 | ---- | M] () -- D:\Programme\VLC\plugins\libstream_filter_record_plugin.dll
MOD - [2011.07.14 13:21:20 | 000,030,720 | ---- | M] () -- D:\Programme\VLC\plugins\libspdif_mixer_plugin.dll
MOD - [2011.07.14 13:21:18 | 001,231,872 | ---- | M] () -- D:\Programme\VLC\plugins\libmkv_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,441,856 | ---- | M] () -- D:\Programme\VLC\plugins\libmod_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,237,568 | ---- | M] () -- D:\Programme\VLC\plugins\libpng_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,194,048 | ---- | M] () -- D:\Programme\VLC\plugins\libmp4_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,128,000 | ---- | M] () -- D:\Programme\VLC\plugins\libmpgatofixed32_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,108,032 | ---- | M] () -- D:\Programme\VLC\plugins\libplaylist_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,093,184 | ---- | M] () -- D:\Programme\VLC\plugins\libmpc_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,089,600 | ---- | M] () -- D:\Programme\VLC\plugins\libogg_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,051,200 | ---- | M] () -- D:\Programme\VLC\plugins\libps_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,040,960 | ---- | M] () -- D:\Programme\VLC\plugins\libnuv_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,038,912 | ---- | M] () -- D:\Programme\VLC\plugins\libmono_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,037,888 | ---- | M] () -- D:\Programme\VLC\plugins\libmpeg_audio_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,035,840 | ---- | M] () -- D:\Programme\VLC\plugins\libpva_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,035,840 | ---- | M] () -- D:\Programme\VLC\plugins\libnsv_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libnsc_plugin.dll
MOD - [2011.07.14 13:21:18 | 000,031,232 | ---- | M] () -- D:\Programme\VLC\plugins\libmpgv_plugin.dll
MOD - [2011.07.14 13:21:16 | 001,776,128 | ---- | M] () -- D:\Programme\VLC\plugins\liblibass_plugin.dll
MOD - [2011.07.14 13:21:16 | 001,085,440 | ---- | M] () -- D:\Programme\VLC\plugins\liblive555_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,379,904 | ---- | M] () -- D:\Programme\VLC\plugins\libgme_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,338,432 | ---- | M] () -- D:\Programme\VLC\plugins\liblua_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,135,680 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_rgb_sse2_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,073,728 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_rgb_mmx_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,052,224 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_rgb_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,048,640 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_yuy2_sse2_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,046,592 | ---- | M] () -- D:\Programme\VLC\plugins\libhotkeys_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,046,080 | ---- | M] () -- D:\Programme\VLC\plugins\libi422_yuy2_sse2_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,039,936 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_yuy2_mmx_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,038,400 | ---- | M] () -- D:\Programme\VLC\plugins\libi420_yuy2_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,037,888 | ---- | M] () -- D:\Programme\VLC\plugins\libi422_yuy2_mmx_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,036,352 | ---- | M] () -- D:\Programme\VLC\plugins\libi422_yuy2_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,035,840 | ---- | M] () -- D:\Programme\VLC\plugins\liblpcm_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,035,328 | ---- | M] () -- D:\Programme\VLC\plugins\libmjpeg_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libmemcpymmxext_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libglobalhotkeys_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,032,768 | ---- | M] () -- D:\Programme\VLC\plugins\libi422_i420_plugin.dll
MOD - [2011.07.14 13:21:16 | 000,032,768 | ---- | M] () -- D:\Programme\VLC\plugins\libgrey_yuv_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,652,800 | ---- | M] () -- D:\Programme\VLC\plugins\libfreetype_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,309,760 | ---- | M] () -- D:\Programme\VLC\plugins\libfaad_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,265,216 | ---- | M] () -- D:\Programme\VLC\plugins\libflac_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,258,048 | ---- | M] () -- D:\Programme\VLC\plugins\libfluidsynth_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,231,424 | ---- | M] () -- D:\Programme\VLC\plugins\libdvdnav_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,210,944 | ---- | M] () -- D:\Programme\VLC\plugins\libdshow_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,178,176 | ---- | M] () -- D:\Programme\VLC\plugins\libdtstofloat32_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,067,072 | ---- | M] () -- D:\Programme\VLC\plugins\libdirectx_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,061,440 | ---- | M] () -- D:\Programme\VLC\plugins\libdirect3d_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,041,984 | ---- | M] () -- D:\Programme\VLC\plugins\libflacsys_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,041,472 | ---- | M] () -- D:\Programme\VLC\plugins\libes_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,039,424 | ---- | M] () -- D:\Programme\VLC\plugins\libfilesystem_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,039,424 | ---- | M] () -- D:\Programme\VLC\plugins\libdts_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,037,376 | ---- | M] () -- D:\Programme\VLC\plugins\libfake_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,032,256 | ---- | M] () -- D:\Programme\VLC\plugins\libdtstospdif_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,032,256 | ---- | M] () -- D:\Programme\VLC\plugins\libdolby_surround_decoder_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,031,744 | ---- | M] () -- D:\Programme\VLC\plugins\libfloat32_mixer_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,031,744 | ---- | M] () -- D:\Programme\VLC\plugins\libdemux_cdg_plugin.dll
MOD - [2011.07.14 13:21:14 | 000,031,232 | ---- | M] () -- D:\Programme\VLC\plugins\libdrawable_plugin.dll
MOD - [2011.07.14 13:21:12 | 008,248,320 | ---- | M] () -- D:\Programme\VLC\plugins\libavcodec_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,088,064 | ---- | M] () -- D:\Programme\VLC\plugins\libavi_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,072,192 | ---- | M] () -- D:\Programme\VLC\plugins\libasf_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,057,856 | ---- | M] () -- D:\Programme\VLC\plugins\libblend_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,046,592 | ---- | M] () -- D:\Programme\VLC\plugins\libaout_directx_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,045,568 | ---- | M] () -- D:\Programme\VLC\plugins\libaraw_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,041,472 | ---- | M] () -- D:\Programme\VLC\plugins\libaudio_format_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,034,304 | ---- | M] () -- D:\Programme\VLC\plugins\libcdg_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,033,792 | ---- | M] () -- D:\Programme\VLC\plugins\libaiff_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,033,280 | ---- | M] () -- D:\Programme\VLC\plugins\libaes3_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,032,768 | ---- | M] () -- D:\Programme\VLC\plugins\libconverter_fixed_plugin.dll
MOD - [2011.07.14 13:21:12 | 000,032,256 | ---- | M] () -- D:\Programme\VLC\plugins\libau_plugin.dll
MOD - [2011.07.14 13:21:10 | 002,263,552 | ---- | M] () -- D:\Programme\VLC\libvlccore.dll
MOD - [2011.07.14 13:21:10 | 000,108,032 | ---- | M] () -- D:\Programme\VLC\vlc.exe
MOD - [2011.07.14 13:21:10 | 000,101,376 | ---- | M] () -- D:\Programme\VLC\libvlc.dll
MOD - [2011.07.14 13:21:10 | 000,090,112 | ---- | M] () -- D:\Programme\VLC\plugins\libaccess_bd_plugin.dll
MOD - [2011.07.14 13:21:10 | 000,065,536 | ---- | M] () -- D:\Programme\VLC\plugins\liba52tofloat32_plugin.dll
MOD - [2011.07.14 13:21:10 | 000,036,352 | ---- | M] () -- D:\Programme\VLC\plugins\liba52_plugin.dll
MOD - [2011.07.14 13:21:10 | 000,030,720 | ---- | M] () -- D:\Programme\VLC\plugins\liba52tospdif_plugin.dll
MOD - [2011.06.24 06:38:16 | 000,036,068 | ---- | M] () -- D:\Programme\Pidgin\plugins\xmppdisco.dll
MOD - [2011.06.24 06:38:16 | 000,030,333 | ---- | M] () -- D:\Programme\Pidgin\plugins\xmppconsole.dll
MOD - [2011.06.24 06:38:14 | 000,024,106 | ---- | M] () -- D:\Programme\Pidgin\plugins\ticker.dll
MOD - [2011.06.24 06:38:14 | 000,023,455 | ---- | M] () -- D:\Programme\Pidgin\plugins\winprefs.dll
MOD - [2011.06.24 06:38:14 | 000,022,901 | ---- | M] () -- D:\Programme\Pidgin\plugins\win2ktrans.dll
MOD - [2011.06.24 06:38:14 | 000,017,951 | ---- | M] () -- D:\Programme\Pidgin\plugins\timestamp_format.dll
MOD - [2011.06.24 06:38:14 | 000,013,589 | ---- | M] () -- D:\Programme\Pidgin\plugins\timestamp.dll
MOD - [2011.06.24 06:38:12 | 000,063,229 | ---- | M] () -- D:\Programme\Pidgin\plugins\spellchk.dll
MOD - [2011.06.24 06:38:12 | 000,024,487 | ---- | M] () -- D:\Programme\Pidgin\plugins\themeedit.dll
MOD - [2011.06.24 06:38:12 | 000,019,854 | ---- | M] () -- D:\Programme\Pidgin\plugins\ssl-nss.dll
MOD - [2011.06.24 06:38:12 | 000,010,624 | ---- | M] () -- D:\Programme\Pidgin\plugins\statenotify.dll
MOD - [2011.06.24 06:38:12 | 000,007,162 | ---- | M] () -- D:\Programme\Pidgin\plugins\ssl.dll
MOD - [2011.06.24 06:38:10 | 000,023,390 | ---- | M] () -- D:\Programme\Pidgin\plugins\pidginrc.dll
MOD - [2011.06.24 06:38:10 | 000,010,203 | ---- | M] () -- D:\Programme\Pidgin\plugins\sendbutton.dll
MOD - [2011.06.24 06:38:10 | 000,010,075 | ---- | M] () -- D:\Programme\Pidgin\plugins\relnot.dll
MOD - [2011.06.24 06:38:10 | 000,010,026 | ---- | M] () -- D:\Programme\Pidgin\plugins\psychic.dll
MOD - [2011.06.24 06:38:08 | 000,022,335 | ---- | M] () -- D:\Programme\Pidgin\plugins\notify.dll
MOD - [2011.06.24 06:38:08 | 000,014,905 | ---- | M] () -- D:\Programme\Pidgin\plugins\markerline.dll
MOD - [2011.06.24 06:38:08 | 000,011,669 | ---- | M] () -- D:\Programme\Pidgin\plugins\offlinemsg.dll
MOD - [2011.06.24 06:38:08 | 000,009,126 | ---- | M] () -- D:\Programme\Pidgin\plugins\newline.dll
MOD - [2011.06.24 06:38:06 | 000,149,298 | ---- | M] () -- D:\Programme\Pidgin\plugins\libsilc.dll
MOD - [2011.06.24 06:38:06 | 000,045,348 | ---- | M] () -- D:\Programme\Pidgin\plugins\libsimple.dll
MOD - [2011.06.24 06:38:06 | 000,039,509 | ---- | M] () -- D:\Programme\Pidgin\plugins\log_reader.dll
MOD - [2011.06.24 06:38:06 | 000,018,502 | ---- | M] () -- D:\Programme\Pidgin\plugins\libyahoo.dll
MOD - [2011.06.24 06:38:06 | 000,017,519 | ---- | M] () -- D:\Programme\Pidgin\plugins\libxmpp.dll
MOD - [2011.06.24 06:38:06 | 000,014,951 | ---- | M] () -- D:\Programme\Pidgin\plugins\libyahoojp.dll
MOD - [2011.06.24 06:38:04 | 000,301,713 | ---- | M] () -- D:\Programme\Pidgin\plugins\libmsn.dll
MOD - [2011.06.24 06:38:04 | 000,121,433 | ---- | M] () -- D:\Programme\Pidgin\plugins\libmxit.dll
MOD - [2011.06.24 06:38:04 | 000,096,958 | ---- | M] () -- D:\Programme\Pidgin\plugins\libsametime.dll
MOD - [2011.06.24 06:38:04 | 000,092,138 | ---- | M] () -- D:\Programme\Pidgin\plugins\libnovell.dll
MOD - [2011.06.24 06:38:04 | 000,088,548 | ---- | M] () -- D:\Programme\Pidgin\plugins\libmyspace.dll
MOD - [2011.06.24 06:38:02 | 000,183,790 | ---- | M] () -- D:\Programme\Pidgin\plugins\libgg.dll
MOD - [2011.06.24 06:38:02 | 000,079,871 | ---- | M] () -- D:\Programme\Pidgin\plugins\libirc.dll
MOD - [2011.06.24 06:38:02 | 000,073,029 | ---- | M] () -- D:\Programme\Pidgin\plugins\libbonjour.dll
MOD - [2011.06.24 06:38:02 | 000,012,177 | ---- | M] () -- D:\Programme\Pidgin\plugins\joinpart.dll
MOD - [2011.06.24 06:38:02 | 000,011,163 | ---- | M] () -- D:\Programme\Pidgin\plugins\libicq.dll
MOD - [2011.06.24 06:38:02 | 000,010,232 | ---- | M] () -- D:\Programme\Pidgin\plugins\libaim.dll
MOD - [2011.06.24 06:38:00 | 000,013,528 | ---- | M] () -- D:\Programme\Pidgin\plugins\history.dll
MOD - [2011.06.24 06:38:00 | 000,012,665 | ---- | M] () -- D:\Programme\Pidgin\plugins\idle.dll
MOD - [2011.06.24 06:38:00 | 000,010,860 | ---- | M] () -- D:\Programme\Pidgin\plugins\extplacement.dll
MOD - [2011.06.24 06:38:00 | 000,008,793 | ---- | M] () -- D:\Programme\Pidgin\plugins\gtkbuddynote.dll
MOD - [2011.06.24 06:38:00 | 000,007,511 | ---- | M] () -- D:\Programme\Pidgin\plugins\iconaway.dll
MOD - [2011.06.24 06:37:58 | 000,019,058 | ---- | M] () -- D:\Programme\Pidgin\plugins\convcolors.dll
MOD - [2011.06.24 06:37:58 | 000,014,574 | ---- | M] () -- D:\Programme\Pidgin\plugins\autoaccept.dll
MOD - [2011.06.24 06:37:58 | 000,007,899 | ---- | M] () -- D:\Programme\Pidgin\plugins\buddynote.dll
MOD - [2011.06.24 06:37:56 | 000,336,466 | ---- | M] () -- D:\Programme\Pidgin\libjabber.dll
MOD - [2011.06.24 06:37:56 | 000,255,025 | ---- | M] () -- D:\Programme\Pidgin\liboscar.dll
MOD - [2011.06.24 06:37:56 | 000,194,434 | ---- | M] () -- D:\Programme\Pidgin\libymsg.dll
MOD - [2011.06.24 06:37:48 | 000,582,656 | ---- | M] () -- D:\Programme\Pidgin\exchndl.dll
MOD - [2011.06.24 06:37:46 | 000,475,580 | ---- | M] () -- D:\Programme\Pidgin\spellcheck\libgtkspell-0.dll
MOD - [2011.06.24 06:26:34 | 000,417,501 | ---- | M] () -- D:\Programme\Pidgin\sqlite3.dll
MOD - [2011.06.24 06:26:04 | 002,719,062 | ---- | M] () -- D:\Programme\Pidgin\libsilc-1-1-2.dll
MOD - [2011.06.24 06:26:04 | 001,206,642 | ---- | M] () -- D:\Programme\Pidgin\libsilcclient-1-1-2.dll
MOD - [2011.06.24 06:26:00 | 000,173,805 | ---- | M] () -- D:\Programme\Pidgin\libmeanwhile-1.dll
MOD - [2011.06.24 06:24:44 | 001,213,633 | ---- | M] () -- D:\Programme\Pidgin\libxml2-2.dll
MOD - [2011.06.05 10:16:20 | 002,011,136 | ---- | M] () -- D:\Programme\foobar2000\foobar2000.exe
MOD - [2011.06.05 10:14:24 | 001,128,960 | ---- | M] () -- D:\Programme\foobar2000\components\foo_ui_std.dll
MOD - [2011.06.05 10:14:24 | 000,364,544 | ---- | M] () -- D:\Programme\foobar2000\components\foo_albumlist.dll
MOD - [2011.06.05 10:14:22 | 000,275,456 | ---- | M] () -- D:\Programme\foobar2000\components\foo_dsp_std.dll
MOD - [2011.06.05 10:14:20 | 000,299,008 | ---- | M] () -- D:\Programme\foobar2000\components\foo_cdda.dll
MOD - [2011.06.05 10:13:58 | 001,431,040 | ---- | M] () -- D:\Programme\foobar2000\components\foo_input_std.dll
MOD - [2011.06.05 10:13:54 | 000,282,624 | ---- | M] () -- D:\Programme\foobar2000\components\foo_rgscan.dll
MOD - [2011.06.05 10:13:50 | 000,479,744 | ---- | M] () -- D:\Programme\foobar2000\components\foo_converter.dll
MOD - [2011.06.05 10:12:42 | 000,148,480 | ---- | M] () -- D:\Programme\foobar2000\shared.dll
MOD - [2011.05.10 19:47:00 | 000,004,096 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
MOD - [2010.09.23 15:53:16 | 001,601,536 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
MOD - [2010.03.14 19:51:58 | 000,077,876 | ---- | M] () -- D:\Programme\foobar2000\zlib1.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - [2011.05.02 13:27:50 | 001,517,328 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011.05.02 13:10:26 | 000,844,560 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011.03.03 15:57:58 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2010.09.23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010.04.17 00:07:42 | 000,134,928 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2011.12.24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- D:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.12.09 16:17:32 | 000,342,480 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService)
SRV - [2011.11.06 00:29:46 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.10.18 16:13:07 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.10.18 16:05:22 | 000,463,824 | ---- | M] (Avira Operations GmbH & Co. KG) [Disabled | Stopped] -- D:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE -- (AntiVirWebService)
SRV - [2011.10.18 16:03:45 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.10.18 16:03:33 | 000,616,400 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Programme\Avira\AntiVir Desktop\avfwsvc.exe -- (AntiVirFirewallService)
SRV - [2011.08.03 12:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.05.24 10:33:30 | 001,840,128 | ---- | M] (MAGIX AG) [Unknown | Running] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2011.04.26 13:54:12 | 002,702,848 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2010.09.14 04:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2010.09.14 04:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.12.15 09:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009.06.15 16:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2011.12.10 15:24:08 | 000,023,152 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011.12.10 00:26:48 | 000,088,480 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2011.12.10 00:26:48 | 000,046,400 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2011.12.09 16:18:34 | 000,130,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011.11.17 10:38:32 | 000,047,208 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:64bit: - [2011.11.17 10:38:28 | 000,037,480 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rrnetcap.sys -- (RRNetCapMP)
DRV:64bit: - [2011.11.17 10:38:28 | 000,037,480 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rrnetcap.sys -- (RRNetCap)
DRV:64bit: - [2011.10.21 17:30:04 | 012,310,112 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011.10.18 16:25:09 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2011.10.18 16:24:51 | 000,097,312 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2011.10.18 16:24:37 | 000,139,512 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avfwot.sys -- (avfwot)
DRV:64bit: - [2011.10.18 16:24:36 | 000,113,768 | ---- | M] (Avira GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avfwim.sys -- (avfwim)
DRV:64bit: - [2011.08.14 12:50:29 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.08.03 12:50:00 | 000,027,240 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2011.05.01 22:33:06 | 008,593,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Intel(R)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.01.13 12:58:30 | 000,413,800 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.12.13 22:12:40 | 000,138,024 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2010.11.20 14:34:04 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm)
DRV:64bit: - [2010.11.20 14:34:04 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
DRV:64bit: - [2010.11.20 14:33:36 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 12:35:34 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
DRV:64bit: - [2010.11.20 12:35:22 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr)
DRV:64bit: - [2010.11.20 12:07:06 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.20 12:07:06 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.10.22 01:00:00 | 000,460,800 | ---- | M] (AVM GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fwlanusb.sys -- (FWLANUSB)
DRV:64bit: - [2010.10.22 01:00:00 | 000,014,120 | ---- | M] (AVM Berlin) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avmeject.sys -- (avmeject)
DRV:64bit: - [2010.10.19 23:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:64bit: - [2010.10.14 17:28:16 | 000,317,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2010.09.23 08:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010.09.14 04:45:52 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2010.09.14 04:45:50 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2010.09.14 04:45:48 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2010.09.14 04:45:44 | 000,760,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2010.09.13 11:24:26 | 000,437,272 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010.08.03 19:43:14 | 000,290,920 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtsuvstor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2010.04.17 00:07:28 | 000,013,832 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2009.10.05 02:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009.07.20 10:29:40 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:34:18 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.24 01:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2005.11.03 15:40:56 | 000,089,600 | ---- | M] (Protection Technology) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV:64bit: - [2005.08.10 13:46:20 | 000,068,608 | ---- | M] (Protection Technology) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV:64bit: - [2005.05.16 14:21:16 | 000,007,168 | ---- | M] (Protection Technology) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2010.07.26 12:57:20 | 000,017,024 | ---- | M] (ASUS) [Kernel | System | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.02 16:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
 
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: D:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files (x86)\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files (x86)\Google\Update\1.2.183.13\npGoogleOneClick8.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@doubletwist.com/NPPodcast: C:\Program Files (x86)\Common Files\doubleTwist\NPPodcast.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\[Name]\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\[Name]\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: D:\Programme\Mozilla Firefox\components [2011.10.06 21:35:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: D:\Programme\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Components: D:\Programme\Mozilla Thunderbird\components [2011.10.24 10:26:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Plugins: D:\Programme\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: D:\Programme\Mozilla Firefox\components [2011.10.06 21:35:24 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: D:\Programme\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: D:\Programme\Mozilla Thunderbird\components [2011.10.24 10:26:13 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: D:\Programme\Mozilla Thunderbird\plugins
 
[2011.08.08 14:39:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\[Name]\AppData\Roaming\mozilla\Extensions
[2011.10.19 18:33:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\6tnrqupf.Ersatz\extensions
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\6tnrqupf.Ersatz\extensions\support@lastpass.com
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\7rj9pow9.Server2Go\extensions
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\7rj9pow9.Server2Go\extensions\support@lastpass.com
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\9tnab3pr.default\extensions
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\9tnab3pr.default\extensions\support@lastpass.com
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions
[2011.08.08 14:41:42 | 000,000,000 | ---D | M] (CookieCuller) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}
[2011.08.21 15:53:42 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.08.08 14:41:41 | 000,000,000 | ---D | M] (FDislike) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions\fbdislike@doweb.fr
[2011.10.19 18:26:39 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions\foxmarks@kei.com
[2011.10.19 18:33:17 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\[Name]\AppData\Roaming\mozilla\Firefox\Profiles\vkuuxfit.default\extensions\support@lastpass.com
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\[Name]\AppData\Local\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\[Name]\AppData\Local\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\[Name]\AppData\Local\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8153_0\npSkypeChromePlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.2.183.13\npGoogleOneClick8.dll
CHR - plugin: Google Update (Enabled) = C:\Users\[Name]\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = D:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: di.slik.es - the Facebook Dislike Button = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmlfebmbccbmdaihmpefcfehaodlecb\1.2.0.4_0\
CHR - Extension: Xmarks Bookmark Sync = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla\1.0.17_0\
CHR - Extension: YouTube = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Adblock Plus (Beta) = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\
CHR - Extension: Google-Suche = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: FlashBlock = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\gofhjkjmkpinhpoiabjplobcaignabnl\0.9.31_0\
CHR - Extension: LastPass = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\1.80.5_0\
CHR - Extension: Unfriend Finder = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\kddnblacojpnmjdlpnndlcamnmmkfina\34_0\
CHR - Extension: Google Mail = C:\Users\[Name]\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Programme\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [avgnt] D:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] D:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (Virage Logic Corporation / Sonic Focus)
O4 - HKLM..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - D:\Programme\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - D:\Programme\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - D:\Programme\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - D:\Programme\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000016 - D:\Programme\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0CBB994A-2CC2-4B25-BAE9-B9D6443C3311}: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C03EC5E9-3525-45E9-A683-9B1500429214}: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F31A7734-D2A6-4913-B4E3-3CFAF8A0EC04}: DhcpNameServer = 192.168.178.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) -C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.12.01 06:20:01 | 000,009,662 | R--- | M] () - E:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2006.12.01 06:20:01 | 000,000,048 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{c211f4e3-c665-11e0-a055-fca256234b13}\Shell - "" = AutoRun
O33 - MountPoints2\{c211f4e3-c665-11e0-a055-fca256234b13}\Shell\AutoRun\command - "" = F:\start.exe
O33 - MountPoints2\{cb0a4f5a-c1ad-11e0-9571-f46d04fc897b}\Shell - "" = AutoRun
O33 - MountPoints2\{cb0a4f5a-c1ad-11e0-9571-f46d04fc897b}\Shell\AutoRun\command - "" = G:\pushinst.exe
O33 - MountPoints2\{e85b5208-aea3-11e0-b182-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{e85b5208-aea3-11e0-b182-806e6f6e6963}\Shell\AutoRun\command - "" = E:\launcher.exe -- [2006.12.01 06:20:01 | 000,126,976 | R--- | M] (InstallShield Software Corporation)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.01.22 21:31:34 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\[Name]\Desktop\OTL.exe
[2012.01.22 21:20:06 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Desktop\Neuer Ordner (3)
[2012.01.22 19:19:17 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\[Name]\Desktop\HiJackThis204.exe
[2012.01.17 23:20:39 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Desktop\Cro_Meine_Musik_Mixtape
[2012.01.11 16:58:32 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012.01.11 16:58:32 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012.01.11 16:58:32 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012.01.11 16:58:32 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012.01.11 16:58:26 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012.01.11 16:58:07 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012.01.11 16:58:07 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012.01.08 22:23:29 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\Toribash
[2012.01.08 19:25:54 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\1-abc
[2012.01.07 22:34:11 | 155,975,414 | ---- | C] (Macrovision Corporation) -- C:\Users\[Name]\Desktop\rainbow_six_vegas_1.06.exe
[2012.01.03 08:47:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeShift
[2012.01.03 02:38:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\id Software
[2012.01.03 02:38:07 | 000,000,000 | ---D | C] -- C:\ProgramData\id Software
[2012.01.03 02:25:17 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Local\ElevatedDiagnostics
[2012.01.02 22:11:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\directx
[2011.12.31 00:04:39 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2011.12.31 00:04:30 | 000,000,000 | ---D | C] -- C:\Windows\_ISTMP1.DIR
[2011.12.30 12:21:17 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Desktop\postal 3
[2011.12.29 20:58:49 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Desktop\Wuala Neu
[2011.12.29 14:35:59 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\Ashampoo
[2011.12.29 14:35:45 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Local\ashampoo
[2011.12.29 14:35:45 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2011.12.29 14:35:44 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2011.12.29 14:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2011.12.28 23:57:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
[2011.12.28 23:57:10 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\Engelmann Media
[2011.12.28 23:55:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Engelmann Media
[2011.12.28 23:55:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.A.D
[2011.12.28 23:55:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Ogg+WebM
[2011.12.28 23:55:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\OGG
[2011.12.28 23:55:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HDX4
[2011.12.28 16:59:50 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Documents\Subscriptions
[2011.12.28 16:50:06 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Local\doubleTwist Corporation
[2011.12.28 16:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011.12.28 15:54:28 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Local\CrashRpt
[2011.12.28 15:54:17 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2011.12.28 15:53:55 | 000,000,000 | ---D | C] -- C:\ProgramData\RapidSolution
[2011.12.28 15:53:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 9
[2011.12.28 15:50:21 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Local\RapidSolution
[2011.12.28 15:36:42 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Desktop\csi Staffel 04
[2011.12.26 19:21:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Advisor
[2011.12.26 19:02:07 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Documents\MAGIX_Music_Maker_17
[2011.12.26 19:02:07 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Documents\MAGIX Downloads
[2011.12.26 18:57:47 | 000,000,000 | ---D | C] -- C:\Users\[Name]\AppData\Roaming\MAGIX
[2011.12.26 18:57:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
[2011.12.26 18:57:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MAGIX
[2011.12.26 18:56:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011.12.26 18:56:50 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
[2011.12.26 18:56:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MAGIX Services
[2011.12.23 21:58:07 | 000,000,000 | ---D | C] -- C:\Users\[Name]\Documents\GTA Vice City User Files
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\[Name]\AppData\Local\*.tmp files -> C:\Users\[Name]\AppData\Local\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.01.22 21:38:01 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.01.22 21:31:56 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\[Name]\Desktop\OTL.exe
[2012.01.22 21:31:09 | 000,000,000 | ---- | M] () -- C:\Users\[Name]\defogger_reenable
[2012.01.22 21:15:05 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-822022335-4213822873-853705237-1001UA.job
[2012.01.22 20:32:15 | 000,050,477 | ---- | M] () -- C:\Users\[Name]\Desktop\Defogger.exe
[2012.01.22 19:38:03 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.01.22 19:19:34 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\[Name]\Desktop\HiJackThis204.exe
[2012.01.22 18:59:24 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.01.22 18:59:24 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.01.22 18:51:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.01.22 18:51:30 | 467,492,863 | -HS- | M] () -- C:\hiberfil.sys
[2012.01.22 18:04:15 | 000,000,154 | ---- | M] () -- C:\Windows\SOF.INI
[2012.01.22 18:04:01 | 000,000,600 | ---- | M] () -- C:\Windows\Rtcw.INI
[2012.01.22 17:15:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-822022335-4213822873-853705237-1001Core.job
[2012.01.20 23:58:06 | 000,000,663 | ---- | M] () -- C:\Users\[Name]\Desktop\Wuala Neu - Verknüpfung.lnk
[2012.01.18 23:09:34 | 000,334,022 | ---- | M] () -- C:\Users\[Name]\Desktop\image (2).jpg
[2012.01.18 23:09:02 | 000,216,715 | ---- | M] () -- C:\Users\[Name]\Desktop\image (1).jpg
[2012.01.18 23:08:02 | 000,216,715 | ---- | M] () -- C:\Users\[Name]\Desktop\image.jpg
[2012.01.14 17:13:07 | 029,880,701 | ---- | M] () -- C:\Users\[Name]\Desktop\PCW_SH_WindowsXXL03_2011_ePaper.pdf
[2012.01.13 17:16:03 | 001,530,778 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.01.13 17:16:03 | 000,667,896 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.01.13 17:16:03 | 000,628,402 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.01.13 17:16:03 | 000,134,578 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.01.13 17:16:03 | 000,110,864 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.01.10 22:35:15 | 000,000,218 | ---- | M] () -- C:\Users\[Name]\.recently-used.xbel
[2012.01.08 01:35:12 | 000,000,701 | ---- | M] () -- C:\Users\[Name]\Desktop\Toribash.lnk
[2012.01.08 00:00:30 | 155,975,414 | ---- | M] (Macrovision Corporation) -- C:\Users\[Name]\Desktop\rainbow_six_vegas_1.06.exe
[2012.01.07 23:43:46 | 000,014,479 | ---- | M] () -- C:\Users\[Name]\Desktop\windowsill.png
[2011.12.30 17:35:50 | 000,007,597 | ---- | M] () -- C:\Users\[Name]\AppData\Local\Resmon.ResmonCfg
[2011.12.27 10:33:42 | 000,001,345 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2011.12.27 10:33:13 | 000,346,840 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\[Name]\AppData\Local\*.tmp files -> C:\Users\[Name]\AppData\Local\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2012.01.22 21:31:09 | 000,000,000 | ---- | C] () -- C:\Users\[Name]\defogger_reenable
[2012.01.22 20:31:19 | 000,050,477 | ---- | C] () -- C:\Users\[Name]\Desktop\Defogger.exe
[2012.01.22 18:52:33 | 000,001,441 | ---- | C] () -- C:\Users\[Name]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012.01.21 13:26:34 | 076,542,468 | ---- | C] () -- C:\Users\[Name]\Desktop\Leon.Der.Profi.UNCUT.DC.German.1994.AC3.DVDRiP.CD2.avi
[2012.01.21 13:26:22 | 189,982,724 | ---- | C] () -- C:\Users\[Name]\Desktop\Leon.Der.Profi.UNCUT.DC.German.1994.AC3.DVDRiP.CD1.avi
[2012.01.20 23:58:06 | 000,000,663 | ---- | C] () -- C:\Users\[Name]\Desktop\Wuala Neu - Verknüpfung.lnk
[2012.01.18 23:09:09 | 000,334,022 | ---- | C] () -- C:\Users\[Name]\Desktop\image (2).jpg
[2012.01.18 23:08:52 | 000,216,715 | ---- | C] () -- C:\Users\[Name]\Desktop\image (1).jpg
[2012.01.18 23:07:54 | 000,216,715 | ---- | C] () -- C:\Users\[Name]\Desktop\image.jpg
[2012.01.17 23:19:27 | 015,426,457 | ---- | C] () -- C:\Users\[Name]\Desktop\PCW_SH_AppWelt_03_11_ePaper.pdf
[2012.01.14 17:01:18 | 029,880,701 | ---- | C] () -- C:\Users\[Name]\Desktop\PCW_SH_WindowsXXL03_2011_ePaper.pdf
[2012.01.10 22:35:15 | 000,000,218 | ---- | C] () -- C:\Users\[Name]\.recently-used.xbel
[2012.01.08 01:35:12 | 000,000,701 | ---- | C] () -- C:\Users\[Name]\Desktop\Toribash.lnk
[2012.01.07 23:43:46 | 000,014,479 | ---- | C] () -- C:\Users\[Name]\Desktop\windowsill.png
[2011.12.31 00:06:43 | 000,000,154 | ---- | C] () -- C:\Windows\SOF.INI
[2011.12.24 23:20:24 | 000,007,597 | ---- | C] () -- C:\Users\[Name]\AppData\Local\Resmon.ResmonCfg
[2011.12.24 11:12:50 | 000,018,373 | ---- | C] () -- C:\Users\[Name]\Desktop\pzdgtavc.exe
[2011.11.29 10:28:22 | 000,311,296 | ---- | C] () -- C:\Windows\SysWow64\EMRegSys.dll
[2011.11.19 13:22:57 | 000,000,600 | ---- | C] () -- C:\Windows\Rtcw.INI
[2011.10.21 17:27:54 | 000,217,536 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011.10.21 17:22:54 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011.10.21 17:03:04 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2011.10.16 19:27:59 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.10.16 19:27:51 | 000,281,200 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.08.09 19:37:58 | 001,557,708 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.08.09 12:18:49 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011.05.31 08:01:33 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011.04.13 03:48:48 | 000,131,472 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2011.03.26 00:16:10 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2009.07.29 06:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009.07.14 17:15:00 | 000,178,432 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009.07.14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009.02.26 07:50:32 | 000,000,176 | ---- | C] () -- C:\Windows\explorer.exe.config
[2007.04.27 09:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
 
========== LOP Check ==========
 
[2011.12.05 10:40:32 | 000,032,576 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:5D458568

< End of report >

Swisstreasure · 24.01.2012, 12:27

Zitat:

seit heute weist mein Laptop einige Probleme,

Die wären?

aDBumsM · 24.01.2012, 17:55

Chrome hat sich nach dem Start sofort beendet, mein Desktop hat sich auf Werkseinstellungen zurückgestellt (Einstellungen im Windows Explorer), die Standart-Treiber auf meinem Laptop wurden gelöscht und regelmäßig wird meine Verbindung zu Pidgin (Instant-Messanger) beendet und ich bekomme die Meldung, dass dies durch ein Programm auf meinem PC zustade käme. Alles ohne das Verändern einer Einstellung und plötzlich nach einem Neustart.

Beides konnte ich zwar durch Neuinstallation und mühsame Einstellungsänderungen beglichen.
Den Gedanke, dass ein Virus Schuld sein könnte, ist aber immernoch da.

Swisstreasure · 24.01.2012, 21:58

Du hast eine Neuinstallation durchgeführt?

aDBumsM · 24.01.2012, 23:26

Nur von Google Chrome, das OS habe ich nicht neu aufgesetzt.

Swisstreasure · 25.01.2012, 21:59

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

aDBumsM · 25.01.2012, 22:22

Wird dadruch mein gesamter PC online auf Viren durchsucht?
Ich habe eine Upload-Rate von 12kbit/s, das würde Wochen dauern, bis es fertig ist.

Gibt es keine andere Lösung?

Swisstreasure · 25.01.2012, 23:22

Das geht nicht so lang. Mach es über Nacht .)

22.01.2012, 21:27	#4
Swisstreasure /// Malwareteam	Pc-Probleme mit Logfile-Auswertung Ja führe was was dort steht.

22.01.2012, 22:46	#6
Swisstreasure /// Malwareteam	Pc-Probleme mit Logfile-Auswertung Bitte poste die OTL Logs direkt hier im thread. nicht als Anhang.

24.01.2012, 21:58	#11
Swisstreasure /// Malwareteam	Pc-Probleme mit Logfile-Auswertung Du hast eine Neuinstallation durchgeführt?

25.01.2012, 23:22	#15
Swisstreasure /// Malwareteam	Pc-Probleme mit Logfile-Auswertung Das geht nicht so lang. Mach es über Nacht .)

Pc-Probleme mit Logfile-Auswertung

Log-Analyse und Auswertung: Pc-Probleme mit Logfile-Auswertung