Kein anderer Browser hat Verbindung zum Internet, außser IE

jgswcrnk · 12.06.2012, 23:52

Hallo Leute,
suche schon tagelang nach einer Lösung und bin schon fast am Verzweifeln.
Es sieht so aus: Kein anderer Browser(Firefox, Opera, Safari, usw) funktioniert, sprich hat keine Verbundung mit dem Internet ausßer Internet Explorer. An Firewall, Proxyeinstellungen, Antivirus kann es nicht liegen, habe schon alles überprüft. Bitte helft mir, Neuinstallation von Windows kommt nicht in frage.

danke

kira · 13.06.2012, 07:31

Hallo und Herzlich Willkommen!

Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]:

Zitat:

"Fernbehandlungen/Fernhilfe" und die damit verbundenen Haftungsrisken:
- da die Fehlerprüfung und Handlung werden über große Entfernungen durchgeführt, besteht keine Haftung unsererseits für die daraus entstehenden Folgen.
- also, jede Haftung für die daraus entstandene Schäden wird ausgeschlossen, ANWEISUNGEN UND DEREN BEFOLGUNG, ERFOLGT AUF DEINE EIGENE VERANTWORTUNG!
Charakteristische Merkmale/Profilinformationen:
- aus der verwendeten Loglisten oder Logdateien - wie z.B. deinen Realnamen, Seriennummer in Programm etc)- kannst Du durch [X] oder Sternchen (*) ersetzen
Die Systemprüfung und Bereinigung:
- kann einige Zeit in Anspruch nehmen (je nach Art der Infektion), kann aber sogar so stark kompromittiert sein, so dass eine wirkungsvolle technische Säuberung ist nicht mehr möglich bzw Du es neu installieren musst
Ich empfehle Dir die Anweisungen erst einmal komplett durchzulesen, bevor du es anwendest, weil wenn du etwas falsch machst, kann es wirklich gefährlich werden. Wenn du meinen Anweisungen Schritt für Schritt folgst, kann eigentlich nichts schief gehen.
Innerhalb der Betreuungszeit:
- ohne Abspräche bitte nicht auf eigene Faust handeln!- bei Problemen nachfragen.
Die Reihenfolge:
- genau so wie beschrieben bitte einhalten, nicht selbst die Reihenfolge wählen!
GECRACKTE SOFTWARE werden hier nicht geduldet!!!!
Ansonsten unsere Forumsregeln:
- Bitte erst lesen, dann posten!-> Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?

Alle Logfile mit einem vBCode Tag eingefügen, das bietet hier eine gute Übersicht, erleichtert mir die Arbeit! Falls das Logfile zu groß, teile es in mehrere Teile auf.

Sobald Du diesen Einführungstext gelesen hast, kannst Du beginnen

Hast du in der letzten Zeit:

Irgendwas an deinem System geändert?
Bitte genaue Informationen bekanntgeben! Wann hat das betreffende Problem erst aufgetreten ist usw?
Programme/Treiber/Spiele installiert,Update gezogen..etc - und waren die Quellen sicher?
Falls es Meldung/Bericht von deinem Antivirenprogramm oder andere Schutzprogramme gibt, bitte posten! Was gefunden und vor allem wo...
Beschreibe, welche Versuche du unternommen hast, um das Problem zu lösen (die schon vorhandenen Ergebnisse auch posten)

► Erster Teil des 3-teiligen Verfahren, werden wir dein System auf Viren untersuchen, bzw nach einem anderen Verursacher suchen:
Für Vista und Win7:
Wichtig: Alle Befehle bitte als Administrator ausführen! rechte Maustaste auf die Eingabeaufforderung und "als Administrator ausführen" auswählen
Auf der angewählten Anwendung einen Rechtsklick (rechte Maustaste) und "Als Administrator ausführen" wählen!

1.
Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

Doppelklick auf die OTL.exe
Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
Unter Extra Registry, wähle bitte Use SafeList
Klicke nun auf Run Scan links oben
Wenn der Scan beendet wurde werden 2 Logfiles erstellt - OTL.txt und Extras.txt
Poste die Logfiles in Code-Tags hier in den Thread.

2.
Um festzustellen, ob veraltete oder schädliche Software unter Programme installiert sind, ich würde gerne noch all deine installierten Programme sehen:

Download den CCleaner herunter
Software-Lizenzvereinbarung lesen, falls irgendeine Toolbar angeboten wird, bitte abwählen!-> starten -> Falls nötig, auf "Deutsch" einstellen.
starten-> klick auf `Extras` (um auf deinem System installierte Software zu anzeigen)-> dann auf `Als Textdatei speichern...`
ein Textdatei wird automatisch erstellt, poste auch dieses Logfile (also die Liste alle installierten Programme...eine Textdatei)

3.
Lade dir von hier -> TrendMicro™ HijackThis™/Version 2.0.4 herunter

Zitat:

Keine offenen Fenster, solang bis HijackThis läuft!!-> HijackThis starten-> "Do a system scan and save a logfile" klicken (kurz warten) -> das erhaltene Logfile "markieren" -> "kopieren"-> hier in deinem Thread (rechte Maustaste) "einfügen" (musst du im Forum eingeloggt sein!)

Zitat:

Damit dein Thread übersichtlicher und schön lesbar bleibt, am besten nutze den Code-Tags für deinen Post:
→ vor dein Log schreibst Du (also am Anfang des Logfiles):[code]
hier kommt dein Logfile rein - z.B OTL-Logfile o. sonstiges
→ dahinter - also am Ende der Logdatei: [/code]

gruß
kira

jgswcrnk · 13.06.2012, 09:19

Befor das passiert ist habe ich keine Änderungen vorgenommen. Erst nachdem habe ich ein Scan mit Malwarebytes gemacht. Mein Betriebsystem ist Windows 7 64-Bit, Windows Firewall, Microsoft Scrurity Essentials, Tuneup Untilities 2012.

Wsa ich vorgenommen hab:
Proxyeinstellungen überprüft.
Mit TuneUp die Registry gesäubert.
Alle möglichen Befehle in CMD eingegeben (flushdns, winsock reset,...)
Windows Firewall überprüft(Ausnahmen hinzugefügt, ausgeschaltet)
MSE deaktiviert.

1.OTL.txt
[code]
prOTL Logfile:

Code:

ATTFilter

OTL logfile created on: 13.06.2012 09:22:56 - Run 4
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Users\Alex\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 6,02 Gb Available Physical Memory | 75,25% Memory free
16,00 Gb Paging File | 13,37 Gb Available in Paging File | 83,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 49,64 Gb Free Space | 10,66% Space Free | Partition Type: NTFS
Drive G: | 372,61 Gb Total Space | 32,67 Gb Free Space | 8,77% Space Free | Partition Type: NTFS
Drive H: | 349,32 Gb Total Space | 27,36 Gb Free Space | 7,83% Space Free | Partition Type: NTFS
Drive I: | 349,32 Gb Total Space | 225,74 Gb Free Space | 64,62% Space Free | Partition Type: NTFS
Drive L: | 931,46 Gb Total Space | 260,41 Gb Free Space | 27,96% Space Free | Partition Type: NTFS
 
Computer Name: SHOGUN | User Name: Alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Alex\Desktop\OTL (1).exe (OldTimer Tools)
PRC - C:\Program Files (x86)\DisplayFusion\DisplayFusionAppHook.exe (Binary Fortress Software)
PRC - C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Windows\SysWOW64\nlssrv32.exe (Nalpeiron Ltd.)
PRC - C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
PRC - C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe (Synchro Arts Ltd)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\1a690902e9a6293de228c16fab21e2f7\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\9eed0fcdc582550a65536d1150b49574\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\d0f04f2340a0cd5f443d0d570f6dbc11\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\90555968565afd59bce4b0974e9903bd\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\69f6e582cb79f107c61308b468c1a215\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Flexera Software, Inc.)
SRV:64bit: - (NisSrv) -- C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV:64bit: - (emaudsv) -- C:\Windows\SysNative\emaudsv.exe (E-MU Systems)
SRV:64bit: - (nHancer) -- C:\Program Files\nHancer\nHancerService.exe (KSE - Korndörfer Software Engineering)
SRV:64bit: - (NIHardwareService) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (IAStorDataMgrSvc) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (nTuneService) -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
SRV - (Futuremark SystemInfo Service) -- C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe (Futuremark Corporation)
SRV - (Macromedia Licensing Service) -- C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe ()
SRV - (nlsX86cc) -- C:\Windows\SysWOW64\nlssrv32.exe (Nalpeiron Ltd.)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files (x86)\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (TunngleService) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Synchro Arts License Manager) -- C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe (Synchro Arts Ltd)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Maxtor\Schedule2\schedul2.exe (Acronis)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (CrystalSysInfo) -- C:\Program Files\MediaCoder iPod Edition x64\SysInfoX64.sys File not found
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (cpuz135) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys (CPUID)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (acsock) -- C:\Windows\SysNative\drivers\acsock64.sys (Cisco Systems, Inc.)
DRV:64bit: - (xhcdrv) -- C:\Windows\SysNative\drivers\xhcdrv.sys (VIA Technologies, Inc.)
DRV:64bit: - (VUSB3HUB) -- C:\Windows\SysNative\drivers\ViaHub3.sys (VIA Technologies, Inc.)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Rovi Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (L8042Kbd) -- C:\Windows\SysNative\drivers\L8042Kbd.sys (Logitech, Inc.)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (emusba10) -- C:\Windows\SysNative\drivers\emusba10.sys (E-MU Systems)
DRV:64bit: - (ArcSec) -- C:\Windows\SysNative\drivers\ArcSec.sys ()
DRV:64bit: - (ivusb) -- C:\Windows\SysNative\drivers\ivusb.sys (Initio Corporation)
DRV:64bit: - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.)
DRV:64bit: - (taphss) -- C:\Windows\SysNative\drivers\taphss.sys (AnchorFree Inc)
DRV:64bit: - (SMIGrabber3C) -- C:\Windows\SysNative\drivers\SmiUsbGrabber3C.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (RTL8187B) -- C:\Windows\SysNative\drivers\RTL8187B.sys (Realtek Semiconductor Corporation                           )
DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (tap0901t) TAP-Win32 Adapter V9 (Tunngle) -- C:\Windows\SysNative\drivers\tap0901t.sys (Tunngle.net)
DRV:64bit: - (nvoclk64) -- C:\Windows\SysNative\drivers\nvoclk64.sys (NVIDIA Corp.)
DRV:64bit: - (WmXlCore) -- C:\Windows\SysNative\drivers\WmXlCore.sys (Logitech Inc.)
DRV:64bit: - (WmVirHid) -- C:\Windows\SysNative\drivers\WmVirHid.sys (Logitech Inc.)
DRV:64bit: - (WmFilter) -- C:\Windows\SysNative\drivers\WmFilter.sys (Logitech Inc.)
DRV:64bit: - (WmBEnum) -- C:\Windows\SysNative\drivers\WmBEnum.sys (Logitech Inc.)
DRV:64bit: - (ithsgt) -- C:\Windows\SysNative\drivers\ithsgt.sys ()
DRV:64bit: - (lilsgt) -- C:\Windows\SysNative\drivers\lilsgt.sys ()
DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation)
DRV:64bit: - (libusb0) -- C:\Windows\SysNative\drivers\libusb0.sys (hxxp://libusb-win32.sourceforge.net)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (61883) -- C:\Windows\SysNative\drivers\61883.sys (Microsoft Corporation)
DRV:64bit: - (Avc) -- C:\Windows\SysNative\drivers\avc.sys (Microsoft Corporation)
DRV:64bit: - (MSDV) -- C:\Windows\SysNative\drivers\msdv.sys (Microsoft Corporation)
DRV:64bit: - (netr28ux) -- C:\Windows\SysNative\drivers\netr28ux.sys (Ralink Technology Corp.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (PowerISO Computing, Inc.)
DRV:64bit: - (mv61xx) -- C:\Windows\SysNative\drivers\mv61xx.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (mrdd) -- C:\Windows\SysNative\drivers\mrdd.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (vcd10bus) -- C:\Windows\SysNative\drivers\vcd10bus.sys (H+H Software GmbH)
DRV:64bit: - (LoopBeMidi1) nerds.de LoopBe1 - Internal Midi Port SvcDesc(WDM) -- C:\Windows\SysNative\drivers\loopbe1.sys (nerds.de)
DRV:64bit: - (ENTECH64) -- C:\Windows\SysNative\drivers\Entech64.sys (EnTech Taiwan)
DRV:64bit: - (vcd9bus) -- C:\Windows\SysNative\drivers\vcd9bus.sys (H+H Software GmbH)
DRV:64bit: - (SynasUSB) -- C:\Windows\SysNative\drivers\synUSB64.sys (SIA Syncrosoft)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (ZD1211BU(ZyDAS)) ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS) -- C:\Windows\SysNative\drivers\ZD1211BU.sys (ZyDAS Technology Corporation)
DRV:64bit: - (ZD1211U(ZyDAS)) ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS) -- C:\Windows\SysNative\drivers\ZD1211U.sys (ZyDAS Technology Corporation)
DRV - (zogvkg) -- C:\Windows\SysWOW64\drivers\gmiq.sys ()
DRV - (ncfjxloa) -- C:\Windows\SysWOW64\drivers\puzh.sys ()
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (cpudrv64) -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys ()
DRV - (ithsgt) -- C:\Windows\SysWOW64\drivers\ithsgt.sys ()
DRV - (lilsgt) -- C:\Windows\SysWOW64\drivers\lilsgt.sys ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (libusb0) -- C:\Windows\SysWOW64\drivers\libusb0.sys (hxxp://libusb-win32.sourceforge.net)
DRV - (NPF) -- C:\Windows\SysWOW64\drivers\npf.sys (CACE Technologies)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://search.searchcompletion.com/?si=10197&home=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = hxxp://search.searchcompletion.com/?si=10197&home=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {97AAC9CF-CB0B-4E03-B886-E9D9D7D96A11}
IE - HKCU\..\SearchScopes\{97AAC9CF-CB0B-4E03-B886-E9D9D7D96A11}: "URL" = hxxp://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.2.2:8080
 
========== FireFox ==========
 
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_257.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0:  File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@research.microsoft.com/HDView: C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll (Microsoft Research)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll (OnLive)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012.06.06 14:09:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.03.17 01:08:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.06.12 00:27:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions\celtx@celtx.com
[2012.06.12 00:28:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Firefox\Profiles\qeoh0y3x.default\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\distribution\extensions
[2012.06.06 00:06:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.06.06 00:36:57 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.06.06 00:36:57 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012.06.06 00:36:57 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2012.06.06 00:36:57 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.06.06 00:36:57 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.06.06 00:36:57 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: O3D Plugin (Enabled) = C:\Users\Alex\AppData\Roaming\Mozilla\plugins\npo3dautoplugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: HD View (Enabled) = C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: OnLive Game Client Detector (Enabled) = C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
 
O1 HOSTS File: ([2012.05.17 18:00:18 | 000,002,368 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 26 more lines...
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found.
O2 - BHO: (no name) - {074C1DC5-9320-4A9A-947D-C042949C6216} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [DisplayFusion] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbar present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay =  [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre6\bin\npjpi160_29.dll (Sun Microsystems, Inc.)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} hxxp://lads.myspace.com/upload/MySpaceUploader2.cab (MySpace Uploader Control)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072912BE-B184-4610-BAA0-56300DB32A4A}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A6F9897-B41D-4F4B-85C2-73A680536228}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A89F0EFD-D773-491C-8FAA-CE1403EF6523}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AFB761EB-8939-4F71-97A2-8DC824BFB587}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3431957-2AC6-4042-8CA0-D90B6DCAD96B}: DhcpNameServer = 192.168.2.2
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O24 - Desktop WallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.09.22 04:35:20 | 000,000,061 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{f8666bc3-2036-11e0-8800-0022150a062a}\Shell - "" = AutoRun
O33 - MountPoints2\{f8666bc3-2036-11e0-8800-0022150a062a}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O33 - MountPoints2\{fed29af8-c95a-11de-83af-0022150a062a}\Shell - "" = AutoRun
O33 - MountPoints2\{fed29af8-c95a-11de-83af-0022150a062a}\Shell\AutoRun\command - "" = F:\InternalMixing_1.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.06.13 09:26:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012.06.13 09:22:19 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.13 00:09:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Malwarebytes
[2012.06.13 00:09:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.06.13 00:09:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.06.13 00:08:59 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012.06.13 00:08:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012.06.12 23:32:57 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2012.06.12 17:21:15 | 000,000,000 | ---D | C] -- C:\.fseventsd
[2012.06.12 10:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\af0.net
[2012.06.12 00:31:36 | 000,000,000 | ---D | C] -- C:\SMCLpav
[2012.06.12 00:28:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012.06.11 21:13:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Safari
[2012.06.11 20:59:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Mozilla
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PCPro
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PC Cleaners
[2012.06.11 19:30:38 | 005,276,432 | ---- | C] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.11 19:30:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PC1Data
[2012.06.10 23:38:01 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Mozilla
[2012.06.10 23:37:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012.06.10 23:37:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.06.10 23:10:54 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2012.06.10 23:10:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2012.06.10 23:10:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2012.06.10 18:16:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012.06.10 18:16:02 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012.06.10 16:43:18 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012.06.10 00:52:08 | 006,151,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.06.10 00:52:08 | 003,149,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.06.10 00:52:08 | 002,561,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.06.10 00:52:08 | 000,118,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.06.10 00:52:08 | 000,063,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.06.10 00:51:50 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.06.10 00:51:50 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.06.10 00:41:23 | 025,743,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.06.10 00:41:23 | 025,248,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.06.10 00:41:23 | 019,607,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.06.10 00:41:23 | 018,044,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.06.10 00:41:23 | 017,551,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.06.10 00:41:23 | 015,322,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.06.10 00:41:23 | 010,194,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.06.10 00:41:23 | 008,139,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.06.10 00:41:23 | 008,105,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.06.10 00:41:23 | 005,982,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.06.10 00:41:23 | 002,881,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,741,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.06.10 00:41:23 | 002,681,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.06.10 00:41:23 | 002,524,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.06.10 00:41:23 | 002,445,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,368,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.06.10 00:41:23 | 000,949,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.06.10 00:41:23 | 000,818,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.06.10 00:41:23 | 000,364,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.06.10 00:41:23 | 000,246,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.06.10 00:41:23 | 000,202,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.06.09 15:35:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Max Payne Savegames
[2012.06.09 15:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne
[2012.06.07 14:02:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2012.06.07 14:02:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2012.06.06 19:12:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rockstar Games
[2012.06.06 17:54:41 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\regbak
[2012.06.06 17:06:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2012.06.06 14:44:16 | 000,046,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda32.sys
[2012.06.06 14:17:07 | 000,501,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvuhda6.exe
[2012.06.06 14:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.06.06 13:50:33 | 000,268,744 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:28 | 000,189,384 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:28 | 000,188,872 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:26 | 000,637,848 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:37:47 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012.06.06 10:17:26 | 000,023,816 | ---- | C] (CPUID) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys
[2012.06.06 10:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2012.06.03 23:19:50 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.06.02 12:59:01 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2012.06.01 23:48:17 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Samsung
[2012.06.01 23:48:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Samsung
[2012.06.01 23:48:08 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\samsung
[2012.06.01 23:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012.06.01 23:24:45 | 000,054,272 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\libusb0.dll
[2012.06.01 23:24:45 | 000,042,496 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\libusb0.dll
[2012.06.01 23:24:45 | 000,031,744 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\drivers\libusb0.sys
[2012.06.01 23:21:04 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.06.01 23:20:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MarkAny
[2012.06.01 23:20:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2012.06.01 22:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Greyfirst
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Greyfirst
[2012.05.30 10:01:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celtx
[2012.05.30 10:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Celtx
[2012.05.29 19:16:08 | 000,000,000 | ---D | C] -- C:\WMSDK
[2012.05.29 18:47:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\HDAudio
[2012.05.29 12:39:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012.05.29 12:39:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA Precision X
[2012.05.29 12:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EVGA Precision X
[2012.05.29 00:36:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\WB Games
[2012.05.27 17:00:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft KitSetup
[2012.05.27 16:33:23 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Visual Studio 2008
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Sony Corporation
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\PS Vita
[2012.05.27 12:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WunderWorks
[2012.05.27 12:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WunderWorks
[2012.05.27 11:14:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xpadder
[2012.05.26 11:42:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\VocALignVST3
[2012.05.25 17:21:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Blackmagic Design
[2012.05.25 17:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA GPU Computing Toolkit
[2012.05.23 22:00:38 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XNote Stopwatch
[2012.05.23 18:49:32 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | C] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.23 16:54:28 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Roaming\Common
[2012.05.23 16:35:09 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.23 14:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2012.05.22 23:06:09 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D565E85A-7602-4965-8B03-55D249C138D6}
[2012.05.22 23:05:20 | 000,000,000 | ---D | C] -- C:\ProgramData\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2012.05.22 23:04:55 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2012.05.22 17:18:21 | 000,000,000 | ---D | C] -- C:\Users\Alex\.MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MakeMKV
[2012.05.19 21:42:19 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Celemony
[2012.05.19 01:02:44 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\SPL Plug-Ins
[2012.05.19 01:02:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Plugin Alliance
[2012.05.19 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sound Performance Lab
[2012.05.19 00:32:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound Performance Lab
[2012.05.18 23:46:54 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iZotope
[2012.05.18 23:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Program Files\Celemony
[2012.05.18 03:52:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\{C2686527-0D57-4F0B-ADAB-EE203CA30FC6}
[2012.05.18 02:56:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
[2012.05.18 01:45:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Untitled
[2012.05.18 01:32:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Fragmente
[2012.05.17 20:12:03 | 000,000,000 | ---D | C] -- C:\Users\Alex\Adobe Flash Builder 4.6
[2012.05.17 20:01:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
[2012.05.17 19:12:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.05.17 18:55:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
[2012.05.17 18:55:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Support Advisor
[2012.05.17 17:33:28 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.05.17 17:33:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Download Assistant
[2011.05.20 07:26:24 | 170,063,832 | ---- | C] (Frictional Games                                            ) -- C:\Users\Alex\AppData\Roaming\amnesia_tdd_1.2_update.exe
[28 C:\Windows\Fonts\*.tmp files -> C:\Windows\Fonts\*.tmp -> ]
[12 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[11 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.06.13 09:33:29 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 09:33:29 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 09:33:09 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.06.13 09:32:03 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.06.13 09:26:37 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000Core.job
[2012.06.13 09:26:27 | 000,003,003 | ---- | M] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.13 09:22:01 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.13 09:19:11 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000UA.job
[2012.06.13 09:18:52 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.06.13 09:18:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.06.13 00:21:16 | 000,000,304 | -HS- | M] () -- C:\Windows\tasks\DXNWAO.job
[2012.06.13 00:20:54 | 2146,734,079 | -HS- | M] () -- C:\hiberfil.sys
[2012.06.13 00:19:43 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2012.06.12 23:37:47 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012.06.11 21:23:04 | 012,039,454 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.06.11 21:23:04 | 004,035,054 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.06.11 21:23:04 | 003,706,692 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.06.11 21:23:04 | 003,320,392 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.06.11 21:23:04 | 000,007,118 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.06.11 19:30:15 | 005,276,432 | ---- | M] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.10 18:16:59 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:06 | 000,007,020 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.06.10 17:37:25 | 000,103,211 | ---- | M] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | M] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 14:07:38 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\gmiq.sys
[2012.06.10 13:50:37 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\puzh.sys
[2012.06.10 12:35:01 | 000,000,550 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2012.06.10 12:09:19 | 000,000,000 | ---- | M] () -- C:\netsh
[2012.06.10 12:08:45 | 000,000,000 | ---- | M] () -- C:\Users\Alex\netsh
[2012.06.10 10:43:38 | 001,666,641 | ---- | M] () -- C:\ProgramData\bdinstall.bin
[2012.06.10 01:57:09 | 000,381,062 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 01:49:21 | 000,076,522 | ---- | M] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.10 01:43:27 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.06.10 01:43:27 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.06.06 13:50:24 | 000,955,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
[2012.06.06 13:50:24 | 000,839,112 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012.06.06 13:50:24 | 000,268,744 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:24 | 000,189,384 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:24 | 000,188,872 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:20 | 000,637,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:38:20 | 000,567,184 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012.06.03 23:06:09 | 000,215,139 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.05.30 23:01:05 | 000,000,747 | ---- | M] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:19 | 000,000,846 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:59:00 | 000,001,108 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.28 18:54:09 | 000,000,138 | ---- | M] () -- C:\Windows\VocALign.ini
[2012.05.27 12:11:01 | 000,000,132 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.05.26 00:07:37 | 000,005,632 | ---- | M] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.25 19:24:28 | 000,151,552 | ---- | M] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:28 | 000,040,960 | ---- | M] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 18:35:50 | 000,012,292 | ---- | M] () -- C:\Users\Alex\.DS_Store
[2012.05.25 18:35:43 | 000,015,364 | ---- | M] () -- C:\.DS_Store
[2012.05.25 18:15:52 | 000,012,292 | ---- | M] () -- C:\Users\Alex\Documents\.DS_Store
[2012.05.25 06:54:04 | 000,006,148 | ---- | M] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | M] () -- C:\Program Files\.DS_Store
[2012.05.23 18:50:06 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.05.23 18:49:32 | 000,974,848 | ---- | M] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | M] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | M] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | M] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | M] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\w3data.vss
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\msvcsv60.dll
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\msocreg32.dat
[2012.05.18 22:56:53 | 005,120,264 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012.05.18 01:45:20 | 000,005,077 | ---- | M] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.18 01:37:47 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\bak\hosts
[2012.05.15 12:48:00 | 025,743,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.05.15 12:48:00 | 025,248,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.05.15 12:48:00 | 019,607,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.05.15 12:48:00 | 018,044,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.05.15 12:48:00 | 017,551,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.05.15 12:48:00 | 015,322,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.05.15 12:48:00 | 010,194,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.05.15 12:48:00 | 008,139,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.05.15 12:48:00 | 008,105,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.05.15 12:48:00 | 005,982,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.05.15 12:48:00 | 002,881,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,741,568 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.05.15 12:48:00 | 002,681,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.05.15 12:48:00 | 002,524,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.05.15 12:48:00 | 002,445,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,368,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.05.15 12:48:00 | 001,738,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012.05.15 12:48:00 | 001,468,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco64.dll
[2012.05.15 12:48:00 | 000,949,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.05.15 12:48:00 | 000,818,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.05.15 12:48:00 | 000,364,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,301,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,246,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.05.15 12:48:00 | 000,202,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.05.15 12:48:00 | 000,068,928 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.05.15 12:48:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.05.15 12:48:00 | 000,014,324 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012.05.15 11:29:46 | 002,561,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.05.15 11:29:46 | 000,118,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.05.15 11:29:46 | 000,063,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.05.15 11:29:45 | 002,621,723 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.05.15 11:29:25 | 003,149,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.05.15 11:28:42 | 006,151,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.05.15 02:21:50 | 000,423,744 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012.05.14 16:44:17 | 000,000,132 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2012.05.14 16:09:16 | 000,007,661 | ---- | M] () -- C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
[12 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[11 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2012.06.13 09:26:27 | 000,003,003 | ---- | C] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.12 23:37:47 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012.06.12 00:28:01 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.06.11 21:13:56 | 000,002,533 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2012.06.10 18:16:59 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:09 | 000,001,891 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012.06.10 17:37:25 | 000,103,211 | ---- | C] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | C] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 14:07:38 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\gmiq.sys
[2012.06.10 13:50:37 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\puzh.sys
[2012.06.10 12:09:19 | 000,000,000 | ---- | C] () -- C:\netsh
[2012.06.10 12:08:35 | 000,000,000 | ---- | C] () -- C:\Users\Alex\netsh
[2012.06.10 09:09:21 | 000,001,116 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000UA.job
[2012.06.10 09:09:21 | 000,001,064 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000Core.job
[2012.06.10 01:49:21 | 000,076,522 | ---- | C] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.10 01:42:04 | 000,381,062 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 00:52:08 | 002,621,723 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.06.06 11:29:43 | 000,002,053 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4.1 64-Bit.lnk
[2012.06.03 23:06:09 | 000,215,139 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.06.02 12:45:46 | 000,000,740 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\00000004.@
[2012.06.02 12:45:45 | 000,001,584 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\000000cb.@
[2012.06.02 12:45:45 | 000,001,536 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\00000004.@
[2012.05.30 23:01:03 | 000,000,747 | ---- | C] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:18 | 000,000,846 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:58:58 | 000,001,108 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.25 19:24:45 | 000,151,552 | ---- | C] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:29 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\.DS_Store
[2012.05.23 18:49:32 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.22 19:34:30 | 000,000,986 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live 8.lnk
[2012.05.22 17:58:22 | 000,000,809 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 8.lnk
[2012.05.18 18:16:40 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.05.18 01:45:19 | 000,005,077 | ---- | C] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.17 17:33:26 | 000,001,035 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
[2012.05.15 02:21:50 | 000,423,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012.03.15 16:29:54 | 000,000,073 | ---- | C] () -- C:\Windows\EurekaLog.ini
[2012.02.24 17:50:50 | 000,000,112 | ---- | C] () -- C:\ProgramData\mjIt036C.dat
[2012.01.24 21:29:07 | 000,000,038 | ---- | C] () -- C:\Windows\osAviSplitter.INI
[2012.01.11 14:54:16 | 000,002,048 | -HS- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\@
[2012.01.06 17:49:53 | 000,173,492 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2012.01.03 09:28:06 | 002,570,286 | ---- | C] () -- C:\Windows\SysWow64\abgx360.exe
[2011.12.28 16:39:36 | 000,000,125 | ---- | C] () -- C:\Windows\FlashDecompiler.INI
[2011.11.23 03:24:27 | 001,989,419 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Creative.rar
[2011.10.15 00:20:01 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.09.20 12:21:20 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011.09.19 15:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll
[2011.09.15 21:47:20 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.09.15 21:46:54 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.08.09 21:51:52 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919510.bdinstall.bin
[2011.08.09 21:51:08 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919436.bdinstall.bin
[2011.08.09 21:50:26 | 000,163,748 | ---- | C] () -- C:\ProgramData\1312919284.bdinstall.bin
[2011.08.09 21:47:32 | 000,021,683 | ---- | C] () -- C:\ProgramData\1312919239.bdinstall.bin
[2011.07.27 15:03:57 | 000,005,632 | ---- | C] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.06.15 17:51:43 | 000,495,577 | ---- | C] () -- C:\ProgramData\1308151971.bdinstall.bin
[2011.06.15 16:32:25 | 001,666,641 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011.05.13 17:10:43 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.04.03 11:40:57 | 000,000,166 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.30 23:52:04 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011.01.27 01:32:15 | 000,000,064 | RHS- | C] () -- C:\Windows\A531272465C931BE.bin
[2011.01.05 22:11:31 | 000,098,344 | ---- | C] () -- C:\Windows\unTMV.exe
[2011.01.04 18:00:26 | 000,695,642 | ---- | C] () -- C:\Windows\unins001.exe
[2011.01.04 18:00:26 | 000,121,344 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll
[2011.01.04 18:00:26 | 000,003,428 | ---- | C] () -- C:\Windows\unins001.dat
[2010.10.21 17:28:34 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\minimp3.exe
[2010.09.21 14:00:34 | 000,002,892 | ---- | C] () -- C:\Windows\SysWow64\audcon.sys
[2010.09.21 13:59:53 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe.cfg
[2010.09.21 13:59:52 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe
[2010.09.20 00:53:46 | 000,001,363 | ---- | C] () -- C:\Windows\emasio.dat
[2010.08.29 00:53:30 | 000,000,838 | ---- | C] () -- C:\Windows\Spiderman.INI
[2010.06.25 19:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2010.06.17 11:41:39 | 000,000,550 | RHS- | C] () -- C:\ProgramData\ntuser.pol
 
========== Files - Unicode (All) ==========
[2012.06.10 10:43:38 | 000,000,000 | ---- | M] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2011.06.15 17:08:54 | 000,000,000 | ---- | C] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2010.04.02 10:53:10 | 000,000,000 | ---D | M](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
[2009.12.01 19:12:29 | 000,000,000 | ---D | C](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
 
========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\system64] -> \systemroot\system32 -> Mount Point
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 64 bytes -> C:\TheVolumeSettingsFolder:AFP_AfpInfo
@Alternate Data Stream - 64 bytes -> C:\.Trashes:AFP_AfpInfo
@Alternate Data Stream - 64 bytes -> C:\.TemporaryItems:AFP_AfpInfo
@Alternate Data Stream - 576 bytes -> C:\Users\Alex\AppData\Local\desktop.ini:722b2b1c349a06abf0e866180e5a7e63
@Alternate Data Stream - 188 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 187 bytes -> C:\ProgramData\TEMP:4F0FFA06
@Alternate Data Stream - 166 bytes -> C:\ProgramData\TEMP:319E7F0B
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:21654C57
@Alternate Data Stream - 1339 bytes -> C:\ProgramData\Microsoft:Q6ChXZgOIKgxaQfH9rNsXlcocgCPWq
@Alternate Data Stream - 1338 bytes -> C:\ProgramData\Microsoft:NkTudUGSnMV8ddqRn7YPsvE
@Alternate Data Stream - 1332 bytes -> C:\ProgramData\Microsoft:f9YhSemZCDP8dZMybi79nDc
@Alternate Data Stream - 1296 bytes -> C:\ProgramData\Microsoft:r7fk7hD7vBAPqYH2roWJ6lp
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1233 bytes -> C:\ProgramData\Microsoft:Rm2181A6hPRLWkEVt
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:C8B8CEBD

< End of report >

--- --- ---

die restlichen logs sind im anhang

kira · 13.06.2012, 12:12

1.
Was war der Grund, dass Du Malwarebytes installiert hast? gibt es Funde? wenn ja bitte posten!

2.
Hast Du absichtlich die IP so als Proxy eingestellt?

Code:

ATTFilter

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.2.2:8080

Wenn ja, warum?

3.
Die folgende Aufgabe im Task sagt mir nichts:

Code:

ATTFilter

C:\Windows\tasks\DXNWAO.job

Falls Du (auch) nicht kennst, kannst herauslöschen

4.

Zitat:

Achtung wichtig!:
Falls Du selber im Logfile Änderungen vorgenommen hast, musst Du durch die Originalbezeichnung ersetzen und so in Script einfügen! sonst funktioniert nicht!
(Benutzerordner, dein Name oder sonstige Änderungen durch X, Stern oder andere Namen ersetzt)

Fixen mit OTL

Starte die OTL.exe.
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Kopiere folgendes Skript (also - nach dem "Code", alles was in der Codebox steht! - (also beginnend mit :OTL und am Ende [emptytemp] ohne "code"!) :

Code:

ATTFilter

:OTL
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.searchcompletion.com/?si=10197&home=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.searchcompletion.com/?si=10197&home=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {97AAC9CF-CB0B-4E03-B886-E9D9D7D96A11}
IE - HKCU\..\SearchScopes\{97AAC9CF-CB0B-4E03-B886-E9D9D7D96A11}: "URL" = http://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
[2012.06.06 00:36:57 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.06.06 00:36:57 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012.06.06 00:36:57 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2012.06.06 00:36:57 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.06.06 00:36:57 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
O2:64bit: - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found.
O2 - BHO: (no name) - {074C1DC5-9320-4A9A-947D-C042949C6216} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbar present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{f8666bc3-2036-11e0-8800-0022150a062a}\Shell - "" = AutoRun
O33 - MountPoints2\{f8666bc3-2036-11e0-8800-0022150a062a}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O33 - MountPoints2\{fed29af8-c95a-11de-83af-0022150a062a}\Shell - "" = AutoRun
O33 - MountPoints2\{fed29af8-c95a-11de-83af-0022150a062a}\Shell\AutoRun\command - "" = F:\InternalMixing_1.exe
[2012.06.13 09:33:09 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.06.13 09:26:37 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000Core.job
[2012.06.13 09:19:11 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000UA.job
[2012.06.13 09:18:52 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.06.10 09:09:21 | 000,001,116 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000UA.job
[2012.06.10 09:09:21 | 000,001,064 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2380579043-224327424-4130863296-1000Core.job
@Alternate Data Stream - 64 bytes -> C:\TheVolumeSettingsFolder:AFP_AfpInfo
@Alternate Data Stream - 64 bytes -> C:\.Trashes:AFP_AfpInfo
@Alternate Data Stream - 64 bytes -> C:\.TemporaryItems:AFP_AfpInfo
@Alternate Data Stream - 576 bytes -> C:\Users\Alex\AppData\Local\desktop.ini:722b2b1c349a06abf0e866180e5a7e63
@Alternate Data Stream - 188 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 187 bytes -> C:\ProgramData\TEMP:4F0FFA06
@Alternate Data Stream - 166 bytes -> C:\ProgramData\TEMP:319E7F0B
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:21654C57
@Alternate Data Stream - 1339 bytes -> C:\ProgramData\Microsoft:Q6ChXZgOIKgxaQfH9rNsXlcocgCPWq
@Alternate Data Stream - 1338 bytes -> C:\ProgramData\Microsoft:NkTudUGSnMV8ddqRn7YPsvE
@Alternate Data Stream - 1332 bytes -> C:\ProgramData\Microsoft:f9YhSemZCDP8dZMybi79nDc
@Alternate Data Stream - 1296 bytes -> C:\ProgramData\Microsoft:r7fk7hD7vBAPqYH2roWJ6lp
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1233 bytes -> C:\ProgramData\Microsoft:Rm2181A6hPRLWkEVt
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:C8B8CEBD

:Files
ipconfig /flushdns /c

:Commands
[purity]
[emptytemp]

und füge es hier ein:
Schließe alle Programme.
Klicke auf den Fix Button.
Klick auf .
OTL verlangt einen Neustart. Bitte zulassen.
Nach dem Neustart findest Du ein Textdokument.
Kopiere den Inhalt hier in Code-Tags in Deinen Thread.

5.
erneut einen Scan mit OTL:

Doppelklick auf die OTL.exe
Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
Unter Extra Registry, wähle bitte Use SafeList
Klicke nun auf Run Scan links oben
Wenn der Scan beendet wurde werden 2 Logfiles erstellt - OTL.txt und extra.txt
Poste die Logfiles in Code-Tags hier in den Thread.

6.
die Schritte 2. und 3. aus Postimg #2 nochmal posten, da nicht lesbar sind!

jgswcrnk · 13.06.2012, 14:00

zu 1. : der grund für Malwarebytes war ein trojaner im java, welcher es war weiß ich ledier nicht mehr.

zu 2. : den proxyserevr hab cih nur zu versuchszwecken eingestellt, hab den aber nicht aktiviert.

zu 3. : kenn ich auch nicht , habs gelöscht

zu 4. : habe es angewendet, neu gestartet, immernoch keine Internetverbinding mit anderen Browsern

jgswcrnk · 13.06.2012, 14:10

zu 5. :
OTL.txt:
OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 13.06.2012 14:57:37 - Run 5
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Users\Alex\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 5,69 Gb Available Physical Memory | 71,10% Memory free
16,00 Gb Paging File | 13,45 Gb Available in Paging File | 84,08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 53,90 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Drive G: | 372,61 Gb Total Space | 32,51 Gb Free Space | 8,73% Space Free | Partition Type: NTFS
Drive H: | 349,32 Gb Total Space | 27,36 Gb Free Space | 7,83% Space Free | Partition Type: NTFS
Drive I: | 349,32 Gb Total Space | 225,74 Gb Free Space | 64,62% Space Free | Partition Type: NTFS
Drive L: | 931,46 Gb Total Space | 260,41 Gb Free Space | 27,96% Space Free | Partition Type: NTFS
 
Computer Name: SHOGUN | User Name: Alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Alex\Desktop\OTL (1).exe (OldTimer Tools)
PRC - C:\Program Files (x86)\DisplayFusion\DisplayFusionAppHook.exe (Binary Fortress Software)
PRC - C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Windows\SysWOW64\nlssrv32.exe (Nalpeiron Ltd.)
PRC - C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
PRC - C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe (Synchro Arts Ltd)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\0767c3bc7cd93daf38517843d29ce808\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\9eed0fcdc582550a65536d1150b49574\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Flexera Software, Inc.)
SRV:64bit: - (NisSrv) -- C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV:64bit: - (emaudsv) -- C:\Windows\SysNative\emaudsv.exe (E-MU Systems)
SRV:64bit: - (nHancer) -- C:\Program Files\nHancer\nHancerService.exe (KSE - Korndörfer Software Engineering)
SRV:64bit: - (NIHardwareService) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (IAStorDataMgrSvc) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (nTuneService) -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
SRV - (Futuremark SystemInfo Service) -- C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe (Futuremark Corporation)
SRV - (Macromedia Licensing Service) -- C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe ()
SRV - (nlsX86cc) -- C:\Windows\SysWOW64\nlssrv32.exe (Nalpeiron Ltd.)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files (x86)\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (TunngleService) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Synchro Arts License Manager) -- C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe (Synchro Arts Ltd)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Maxtor\Schedule2\schedul2.exe (Acronis)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (CrystalSysInfo) -- C:\Program Files\MediaCoder iPod Edition x64\SysInfoX64.sys File not found
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (cpuz135) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys (CPUID)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (acsock) -- C:\Windows\SysNative\drivers\acsock64.sys (Cisco Systems, Inc.)
DRV:64bit: - (xhcdrv) -- C:\Windows\SysNative\drivers\xhcdrv.sys (VIA Technologies, Inc.)
DRV:64bit: - (VUSB3HUB) -- C:\Windows\SysNative\drivers\ViaHub3.sys (VIA Technologies, Inc.)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Rovi Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (L8042Kbd) -- C:\Windows\SysNative\drivers\L8042Kbd.sys (Logitech, Inc.)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (emusba10) -- C:\Windows\SysNative\drivers\emusba10.sys (E-MU Systems)
DRV:64bit: - (ArcSec) -- C:\Windows\SysNative\drivers\ArcSec.sys ()
DRV:64bit: - (ivusb) -- C:\Windows\SysNative\drivers\ivusb.sys (Initio Corporation)
DRV:64bit: - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.)
DRV:64bit: - (taphss) -- C:\Windows\SysNative\drivers\taphss.sys (AnchorFree Inc)
DRV:64bit: - (SMIGrabber3C) -- C:\Windows\SysNative\drivers\SmiUsbGrabber3C.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (RTL8187B) -- C:\Windows\SysNative\drivers\RTL8187B.sys (Realtek Semiconductor Corporation                           )
DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (tap0901t) TAP-Win32 Adapter V9 (Tunngle) -- C:\Windows\SysNative\drivers\tap0901t.sys (Tunngle.net)
DRV:64bit: - (nvoclk64) -- C:\Windows\SysNative\drivers\nvoclk64.sys (NVIDIA Corp.)
DRV:64bit: - (WmXlCore) -- C:\Windows\SysNative\drivers\WmXlCore.sys (Logitech Inc.)
DRV:64bit: - (WmVirHid) -- C:\Windows\SysNative\drivers\WmVirHid.sys (Logitech Inc.)
DRV:64bit: - (WmFilter) -- C:\Windows\SysNative\drivers\WmFilter.sys (Logitech Inc.)
DRV:64bit: - (WmBEnum) -- C:\Windows\SysNative\drivers\WmBEnum.sys (Logitech Inc.)
DRV:64bit: - (ithsgt) -- C:\Windows\SysNative\drivers\ithsgt.sys ()
DRV:64bit: - (lilsgt) -- C:\Windows\SysNative\drivers\lilsgt.sys ()
DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation)
DRV:64bit: - (libusb0) -- C:\Windows\SysNative\drivers\libusb0.sys (hxxp://libusb-win32.sourceforge.net)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (61883) -- C:\Windows\SysNative\drivers\61883.sys (Microsoft Corporation)
DRV:64bit: - (Avc) -- C:\Windows\SysNative\drivers\avc.sys (Microsoft Corporation)
DRV:64bit: - (MSDV) -- C:\Windows\SysNative\drivers\msdv.sys (Microsoft Corporation)
DRV:64bit: - (netr28ux) -- C:\Windows\SysNative\drivers\netr28ux.sys (Ralink Technology Corp.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (PowerISO Computing, Inc.)
DRV:64bit: - (mv61xx) -- C:\Windows\SysNative\drivers\mv61xx.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (mrdd) -- C:\Windows\SysNative\drivers\mrdd.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (vcd10bus) -- C:\Windows\SysNative\drivers\vcd10bus.sys (H+H Software GmbH)
DRV:64bit: - (LoopBeMidi1) nerds.de LoopBe1 - Internal Midi Port SvcDesc(WDM) -- C:\Windows\SysNative\drivers\loopbe1.sys (nerds.de)
DRV:64bit: - (ENTECH64) -- C:\Windows\SysNative\drivers\Entech64.sys (EnTech Taiwan)
DRV:64bit: - (vcd9bus) -- C:\Windows\SysNative\drivers\vcd9bus.sys (H+H Software GmbH)
DRV:64bit: - (SynasUSB) -- C:\Windows\SysNative\drivers\synUSB64.sys (SIA Syncrosoft)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (ZD1211BU(ZyDAS)) ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS) -- C:\Windows\SysNative\drivers\ZD1211BU.sys (ZyDAS Technology Corporation)
DRV:64bit: - (ZD1211U(ZyDAS)) ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS) -- C:\Windows\SysNative\drivers\ZD1211U.sys (ZyDAS Technology Corporation)
DRV - (zogvkg) -- C:\Windows\SysWOW64\drivers\gmiq.sys ()
DRV - (ncfjxloa) -- C:\Windows\SysWOW64\drivers\puzh.sys ()
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (cpudrv64) -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys ()
DRV - (ithsgt) -- C:\Windows\SysWOW64\drivers\ithsgt.sys ()
DRV - (lilsgt) -- C:\Windows\SysWOW64\drivers\lilsgt.sys ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (libusb0) -- C:\Windows\SysWOW64\drivers\libusb0.sys (hxxp://libusb-win32.sourceforge.net)
DRV - (NPF) -- C:\Windows\SysWOW64\drivers\npf.sys (CACE Technologies)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = 
IE - HKCU\..\SearchScopes,DefaultScope = {BAE90E52-807D-4B94-97CB-BF7C5A54B04B}
IE - HKCU\..\SearchScopes\{BAE90E52-807D-4B94-97CB-BF7C5A54B04B}: "URL" = hxxp://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_257.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0:  File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@research.microsoft.com/HDView: C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll (Microsoft Research)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll (OnLive)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012.06.06 14:09:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.03.17 01:08:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.06.12 00:27:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions\celtx@celtx.com
[2012.06.12 00:28:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Firefox\Profiles\qeoh0y3x.default\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\distribution\extensions
[2012.06.06 00:06:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.06.06 00:36:57 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: O3D Plugin (Enabled) = C:\Users\Alex\AppData\Roaming\Mozilla\plugins\npo3dautoplugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: HD View (Enabled) = C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: OnLive Game Client Detector (Enabled) = C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
 
O1 HOSTS File: ([2012.05.17 18:00:18 | 000,002,368 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 26 more lines...
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [DisplayFusion] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay =  [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre6\bin\npjpi160_29.dll (Sun Microsystems, Inc.)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} hxxp://lads.myspace.com/upload/MySpaceUploader2.cab (MySpace Uploader Control)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072912BE-B184-4610-BAA0-56300DB32A4A}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A6F9897-B41D-4F4B-85C2-73A680536228}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A89F0EFD-D773-491C-8FAA-CE1403EF6523}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AFB761EB-8939-4F71-97A2-8DC824BFB587}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3431957-2AC6-4042-8CA0-D90B6DCAD96B}: DhcpNameServer = 192.168.2.2
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O24 - Desktop WallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.09.22 04:35:20 | 000,000,061 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.06.13 13:55:15 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.06.13 11:40:41 | 000,000,000 | ---D | C] -- C:\5db4ad4aba3fa4bf016d5688340e
[2012.06.13 11:09:46 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012.06.13 11:09:45 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.06.13 11:09:44 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012.06.13 11:09:44 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.06.13 11:09:41 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012.06.13 11:09:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.06.13 11:09:41 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012.06.13 11:09:41 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.06.13 11:09:37 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012.06.13 11:09:37 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.06.13 11:09:36 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012.06.13 11:09:35 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012.06.13 11:09:35 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.06.13 09:34:18 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012.06.13 09:34:18 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012.06.13 09:34:18 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012.06.13 09:34:13 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012.06.13 09:34:09 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012.06.13 09:34:09 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012.06.13 09:34:07 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012.06.13 09:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012.06.13 09:33:57 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012.06.13 09:33:55 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012.06.13 09:26:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012.06.13 09:22:19 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.13 00:09:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Malwarebytes
[2012.06.13 00:09:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.06.12 23:32:57 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2012.06.12 17:21:15 | 000,000,000 | ---D | C] -- C:\.fseventsd
[2012.06.12 10:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\af0.net
[2012.06.12 00:31:36 | 000,000,000 | ---D | C] -- C:\SMCLpav
[2012.06.12 00:28:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012.06.11 21:13:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Safari
[2012.06.11 20:59:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Mozilla
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PCPro
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PC Cleaners
[2012.06.11 19:30:38 | 005,276,432 | ---- | C] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.11 19:30:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PC1Data
[2012.06.10 23:38:01 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Mozilla
[2012.06.10 23:37:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012.06.10 23:37:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.06.10 23:10:54 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2012.06.10 23:10:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2012.06.10 23:10:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2012.06.10 18:16:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012.06.10 18:16:02 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012.06.10 16:43:18 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012.06.10 00:52:08 | 006,151,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.06.10 00:52:08 | 003,149,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.06.10 00:52:08 | 002,561,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.06.10 00:52:08 | 000,118,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.06.10 00:52:08 | 000,063,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.06.10 00:51:50 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.06.10 00:51:50 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.06.10 00:41:23 | 025,743,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.06.10 00:41:23 | 025,248,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.06.10 00:41:23 | 019,607,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.06.10 00:41:23 | 018,044,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.06.10 00:41:23 | 017,551,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.06.10 00:41:23 | 015,322,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.06.10 00:41:23 | 010,194,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.06.10 00:41:23 | 008,139,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.06.10 00:41:23 | 008,105,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.06.10 00:41:23 | 005,982,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.06.10 00:41:23 | 002,881,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,741,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.06.10 00:41:23 | 002,681,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.06.10 00:41:23 | 002,524,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.06.10 00:41:23 | 002,445,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,368,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.06.10 00:41:23 | 000,949,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.06.10 00:41:23 | 000,818,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.06.10 00:41:23 | 000,364,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.06.10 00:41:23 | 000,246,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.06.10 00:41:23 | 000,202,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.06.09 15:35:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Max Payne Savegames
[2012.06.09 15:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne
[2012.06.07 14:02:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2012.06.07 14:02:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2012.06.06 19:12:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rockstar Games
[2012.06.06 17:54:41 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\regbak
[2012.06.06 17:06:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2012.06.06 14:44:16 | 000,046,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda32.sys
[2012.06.06 14:17:07 | 000,501,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvuhda6.exe
[2012.06.06 14:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.06.06 13:50:33 | 000,268,744 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:28 | 000,189,384 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:28 | 000,188,872 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:26 | 000,637,848 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:37:47 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012.06.06 10:17:26 | 000,023,816 | ---- | C] (CPUID) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys
[2012.06.06 10:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2012.06.03 23:19:50 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.06.02 12:59:01 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2012.06.01 23:48:17 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Samsung
[2012.06.01 23:48:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Samsung
[2012.06.01 23:48:08 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\samsung
[2012.06.01 23:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012.06.01 23:24:45 | 000,054,272 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\libusb0.dll
[2012.06.01 23:24:45 | 000,042,496 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\libusb0.dll
[2012.06.01 23:24:45 | 000,031,744 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\drivers\libusb0.sys
[2012.06.01 23:21:04 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.06.01 23:20:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MarkAny
[2012.06.01 23:20:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2012.06.01 22:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Greyfirst
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Greyfirst
[2012.05.30 10:01:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celtx
[2012.05.30 10:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Celtx
[2012.05.29 19:16:08 | 000,000,000 | ---D | C] -- C:\WMSDK
[2012.05.29 18:47:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\HDAudio
[2012.05.29 12:39:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012.05.29 12:39:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA Precision X
[2012.05.29 12:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EVGA Precision X
[2012.05.29 00:36:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\WB Games
[2012.05.27 17:00:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft KitSetup
[2012.05.27 16:33:23 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Visual Studio 2008
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Sony Corporation
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\PS Vita
[2012.05.27 12:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WunderWorks
[2012.05.27 12:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WunderWorks
[2012.05.27 11:14:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xpadder
[2012.05.26 11:42:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\VocALignVST3
[2012.05.25 17:21:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Blackmagic Design
[2012.05.25 17:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA GPU Computing Toolkit
[2012.05.23 22:00:38 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XNote Stopwatch
[2012.05.23 18:49:32 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | C] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.23 16:54:28 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Roaming\Common
[2012.05.23 16:35:09 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.23 14:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2012.05.22 23:06:09 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D565E85A-7602-4965-8B03-55D249C138D6}
[2012.05.22 23:05:20 | 000,000,000 | ---D | C] -- C:\ProgramData\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2012.05.22 23:04:55 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2012.05.22 17:18:21 | 000,000,000 | ---D | C] -- C:\Users\Alex\.MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MakeMKV
[2012.05.19 21:42:19 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Celemony
[2012.05.19 01:02:44 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\SPL Plug-Ins
[2012.05.19 01:02:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Plugin Alliance
[2012.05.19 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sound Performance Lab
[2012.05.19 00:32:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound Performance Lab
[2012.05.18 23:46:54 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iZotope
[2012.05.18 23:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Program Files\Celemony
[2012.05.18 03:52:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\{C2686527-0D57-4F0B-ADAB-EE203CA30FC6}
[2012.05.18 02:56:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
[2012.05.18 01:45:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Untitled
[2012.05.18 01:32:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Fragmente
[2012.05.17 20:12:03 | 000,000,000 | ---D | C] -- C:\Users\Alex\Adobe Flash Builder 4.6
[2012.05.17 20:01:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
[2012.05.17 19:12:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.05.17 18:55:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
[2012.05.17 18:55:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Support Advisor
[2012.05.17 17:33:28 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.05.17 17:33:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Download Assistant
[2011.05.20 07:26:24 | 170,063,832 | ---- | C] (Frictional Games                                            ) -- C:\Users\Alex\AppData\Roaming\amnesia_tdd_1.2_update.exe
[28 C:\Windows\Fonts\*.tmp files -> C:\Windows\Fonts\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.06.13 14:32:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.06.13 14:08:10 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 14:08:10 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 13:59:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.06.13 13:59:45 | 2146,734,079 | -HS- | M] () -- C:\hiberfil.sys
[2012.06.13 13:58:34 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2012.06.13 12:38:38 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.06.13 12:38:37 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.06.13 12:37:37 | 000,000,484 | RHS- | M] () -- C:\Users\Alex\ntuser.pol
[2012.06.13 12:36:56 | 005,120,264 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012.06.13 12:32:49 | 000,000,132 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.06.13 10:13:14 | 000,027,690 | ---- | M] () -- C:\Users\Alex\Desktop\logs.7z
[2012.06.13 09:26:27 | 000,003,003 | ---- | M] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.13 09:22:01 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.12 23:37:47 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012.06.11 21:23:04 | 012,039,454 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.06.11 21:23:04 | 004,035,054 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.06.11 21:23:04 | 003,706,692 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.06.11 21:23:04 | 003,320,392 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.06.11 21:23:04 | 000,007,118 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.06.11 19:30:15 | 005,276,432 | ---- | M] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.10 18:16:59 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:06 | 000,007,020 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.06.10 17:37:25 | 000,103,211 | ---- | M] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | M] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 14:07:38 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\gmiq.sys
[2012.06.10 13:50:37 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\puzh.sys
[2012.06.10 12:35:01 | 000,000,550 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2012.06.10 12:09:19 | 000,000,000 | ---- | M] () -- C:\netsh
[2012.06.10 12:08:45 | 000,000,000 | ---- | M] () -- C:\Users\Alex\netsh
[2012.06.10 10:43:38 | 001,666,641 | ---- | M] () -- C:\ProgramData\bdinstall.bin
[2012.06.10 01:57:09 | 000,381,062 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 01:49:21 | 000,076,522 | ---- | M] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.06 13:50:24 | 000,955,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
[2012.06.06 13:50:24 | 000,839,112 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012.06.06 13:50:24 | 000,268,744 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:24 | 000,189,384 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:24 | 000,188,872 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:20 | 000,637,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:38:20 | 000,567,184 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012.06.03 23:06:09 | 000,215,139 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.05.30 23:01:05 | 000,000,747 | ---- | M] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:19 | 000,000,846 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:59:00 | 000,001,108 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.28 18:54:09 | 000,000,138 | ---- | M] () -- C:\Windows\VocALign.ini
[2012.05.26 00:07:37 | 000,005,632 | ---- | M] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.25 19:24:28 | 000,151,552 | ---- | M] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:28 | 000,040,960 | ---- | M] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 18:35:50 | 000,012,292 | ---- | M] () -- C:\Users\Alex\.DS_Store
[2012.05.25 18:35:43 | 000,015,364 | ---- | M] () -- C:\.DS_Store
[2012.05.25 18:15:52 | 000,012,292 | ---- | M] () -- C:\Users\Alex\Documents\.DS_Store
[2012.05.25 06:54:04 | 000,006,148 | ---- | M] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | M] () -- C:\Program Files\.DS_Store
[2012.05.23 18:50:06 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.05.23 18:49:32 | 000,974,848 | ---- | M] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | M] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | M] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | M] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | M] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\w3data.vss
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\msvcsv60.dll
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\msocreg32.dat
[2012.05.18 04:06:48 | 002,311,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012.05.18 03:58:39 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012.05.18 03:58:15 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012.05.18 03:55:22 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012.05.18 03:55:06 | 000,818,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012.05.18 03:51:49 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012.05.18 03:47:42 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012.05.18 01:45:20 | 000,005,077 | ---- | M] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.18 01:37:47 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2012.05.18 00:35:39 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.05.18 00:33:08 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.05.18 00:29:45 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.05.18 00:29:30 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.05.18 00:25:17 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.05.18 00:20:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\bak\hosts
[2012.05.15 12:48:00 | 025,743,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.05.15 12:48:00 | 025,248,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.05.15 12:48:00 | 019,607,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.05.15 12:48:00 | 018,044,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.05.15 12:48:00 | 017,551,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.05.15 12:48:00 | 015,322,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.05.15 12:48:00 | 010,194,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.05.15 12:48:00 | 008,139,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.05.15 12:48:00 | 008,105,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.05.15 12:48:00 | 005,982,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.05.15 12:48:00 | 002,881,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,741,568 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.05.15 12:48:00 | 002,681,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.05.15 12:48:00 | 002,524,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.05.15 12:48:00 | 002,445,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,368,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.05.15 12:48:00 | 001,738,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012.05.15 12:48:00 | 001,468,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco64.dll
[2012.05.15 12:48:00 | 000,949,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.05.15 12:48:00 | 000,818,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.05.15 12:48:00 | 000,364,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,301,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,246,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.05.15 12:48:00 | 000,202,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.05.15 12:48:00 | 000,068,928 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.05.15 12:48:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.05.15 12:48:00 | 000,014,324 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012.05.15 11:29:46 | 002,561,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.05.15 11:29:46 | 000,118,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.05.15 11:29:46 | 000,063,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.05.15 11:29:45 | 002,621,723 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.05.15 11:29:25 | 003,149,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.05.15 11:28:42 | 006,151,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.05.15 02:21:50 | 000,423,744 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012.05.14 16:44:17 | 000,000,132 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2012.05.14 16:09:16 | 000,007,661 | ---- | M] () -- C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
 
========== Files Created - No Company Name ==========
 
[2012.06.13 10:13:14 | 000,027,690 | ---- | C] () -- C:\Users\Alex\Desktop\logs.7z
[2012.06.13 09:26:27 | 000,003,003 | ---- | C] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.12 23:37:47 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012.06.12 00:28:01 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.06.11 21:13:56 | 000,002,533 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2012.06.10 18:16:59 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:09 | 000,001,891 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012.06.10 17:37:25 | 000,103,211 | ---- | C] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | C] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 14:07:38 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\gmiq.sys
[2012.06.10 13:50:37 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\puzh.sys
[2012.06.10 12:09:19 | 000,000,000 | ---- | C] () -- C:\netsh
[2012.06.10 12:08:35 | 000,000,000 | ---- | C] () -- C:\Users\Alex\netsh
[2012.06.10 01:49:21 | 000,076,522 | ---- | C] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.10 01:42:04 | 000,381,062 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 00:52:08 | 002,621,723 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.06.06 11:29:43 | 000,002,053 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4.1 64-Bit.lnk
[2012.06.03 23:06:09 | 000,215,139 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.06.02 12:45:46 | 000,000,740 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\00000004.@
[2012.06.02 12:45:45 | 000,001,584 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\000000cb.@
[2012.06.02 12:45:45 | 000,001,536 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\00000004.@
[2012.05.30 23:01:03 | 000,000,747 | ---- | C] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:18 | 000,000,846 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:58:58 | 000,001,108 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.25 19:24:45 | 000,151,552 | ---- | C] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:29 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\.DS_Store
[2012.05.23 18:49:32 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.22 19:34:30 | 000,000,986 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live 8.lnk
[2012.05.22 17:58:22 | 000,000,809 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 8.lnk
[2012.05.18 18:16:40 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.05.18 01:45:19 | 000,005,077 | ---- | C] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.17 17:33:26 | 000,001,035 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
[2012.05.15 02:21:50 | 000,423,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012.03.15 16:29:54 | 000,000,073 | ---- | C] () -- C:\Windows\EurekaLog.ini
[2012.02.24 17:50:50 | 000,000,112 | ---- | C] () -- C:\ProgramData\mjIt036C.dat
[2012.01.24 21:29:07 | 000,000,038 | ---- | C] () -- C:\Windows\osAviSplitter.INI
[2012.01.11 14:54:16 | 000,002,048 | -HS- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\@
[2012.01.06 17:49:53 | 000,173,492 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2012.01.03 09:28:06 | 002,570,286 | ---- | C] () -- C:\Windows\SysWow64\abgx360.exe
[2011.12.28 16:39:36 | 000,000,125 | ---- | C] () -- C:\Windows\FlashDecompiler.INI
[2011.11.23 03:24:27 | 001,989,419 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Creative.rar
[2011.10.15 00:20:01 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.09.20 12:21:20 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011.09.19 15:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll
[2011.09.15 21:47:20 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.09.15 21:46:54 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.08.09 21:51:52 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919510.bdinstall.bin
[2011.08.09 21:51:08 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919436.bdinstall.bin
[2011.08.09 21:50:26 | 000,163,748 | ---- | C] () -- C:\ProgramData\1312919284.bdinstall.bin
[2011.08.09 21:47:32 | 000,021,683 | ---- | C] () -- C:\ProgramData\1312919239.bdinstall.bin
[2011.07.27 15:03:57 | 000,005,632 | ---- | C] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.06.15 17:51:43 | 000,495,577 | ---- | C] () -- C:\ProgramData\1308151971.bdinstall.bin
[2011.06.15 16:32:25 | 001,666,641 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011.05.13 17:10:43 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.04.03 11:40:57 | 000,000,166 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.30 23:52:04 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011.01.27 01:32:15 | 000,000,064 | RHS- | C] () -- C:\Windows\A531272465C931BE.bin
[2011.01.05 22:11:31 | 000,098,344 | ---- | C] () -- C:\Windows\unTMV.exe
[2011.01.04 18:00:26 | 000,695,642 | ---- | C] () -- C:\Windows\unins001.exe
[2011.01.04 18:00:26 | 000,121,344 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll
[2011.01.04 18:00:26 | 000,003,428 | ---- | C] () -- C:\Windows\unins001.dat
[2010.10.21 17:28:34 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\minimp3.exe
[2010.09.21 14:00:34 | 000,002,892 | ---- | C] () -- C:\Windows\SysWow64\audcon.sys
[2010.09.21 13:59:53 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe.cfg
[2010.09.21 13:59:52 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe
[2010.09.20 00:53:46 | 000,001,363 | ---- | C] () -- C:\Windows\emasio.dat
[2010.08.29 00:53:30 | 000,000,838 | ---- | C] () -- C:\Windows\Spiderman.INI
[2010.06.25 19:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2010.06.17 11:41:39 | 000,000,550 | RHS- | C] () -- C:\ProgramData\ntuser.pol
 
========== Files - Unicode (All) ==========
[2012.06.10 10:43:38 | 000,000,000 | ---- | M] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2011.06.15 17:08:54 | 000,000,000 | ---- | C] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2010.04.02 10:53:10 | 000,000,000 | ---D | M](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
[2009.12.01 19:12:29 | 000,000,000 | ---D | C](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
 
========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\system64] -> \systemroot\system32 -> Mount Point
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9

< End of report >

--- --- ---

Extras.txt:
OTL Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 13.06.2012 14:57:37 - Run 5
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Users\Alex\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 5,69 Gb Available Physical Memory | 71,10% Memory free
16,00 Gb Paging File | 13,45 Gb Available in Paging File | 84,08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 53,90 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Drive G: | 372,61 Gb Total Space | 32,51 Gb Free Space | 8,73% Space Free | Partition Type: NTFS
Drive H: | 349,32 Gb Total Space | 27,36 Gb Free Space | 7,83% Space Free | Partition Type: NTFS
Drive I: | 349,32 Gb Total Space | 225,74 Gb Free Space | 64,62% Space Free | Partition Type: NTFS
Drive L: | 931,46 Gb Total Space | 260,41 Gb Free Space | 27,96% Space Free | Partition Type: NTFS
 
Computer Name: SHOGUN | User Name: Alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl[@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Value error.
jsfile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS6\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Value error.
jsfile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS6\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== System Restore Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1BF0905E-F36D-4C26-B6DE-EA3A52101980}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{51AF5548-3F66-4DAA-BB55-03ECA4AD6DB5}" = protocol=17 | dir=in | app=c:\program files (x86)\celtx\celtx.exe | 
"{6AFDD5D7-8949-4AAB-8145-11A342657ADC}" = dir=in | app=%userprofile%\appdata\local\google\chrome\application\chrome.exe | 
"{6FA1F505-DB91-40DF-A772-8534B6C0506F}" = dir=in | app=%programfiles% (x86)\opera\opera.exe | 
"{79E5FDE3-6EAC-4DA8-A6D0-E02AE91D9C5E}" = dir=out | app=%programfiles% (x86)\opera\opera.exe | 
"{A5B763A0-AAA1-4FB4-A44E-DD49CAED9517}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{C8D70677-5C61-48D1-BD20-209DBA293E18}" = dir=out | app=%userprofile%\appdata\local\google\chrome\application\chrome.exe | 
"{F6972CFB-044B-4533-AE8D-1EF047B26EBA}" = protocol=6 | dir=in | app=c:\program files (x86)\celtx\celtx.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{06B60360-9DBD-4593-90A0-FD237F0845A2}" = Topaz DeNoise 5 (64-bit)
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1111706F-666A-4037-7777-202648764D10}" = JavaFX 2.0.2 (64-bit)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2412" = CanoScan LiDE 90
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{2222706F-666A-4037-7777-202648764D10}" = JavaFX 2.0.2 SDK (64-bit)
"{22950922-8438-4c84-80d5-a17e6c2a5717}.sdb" = Adobe Audition 3 Vista Compatibility
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417004FF}" = Java(TM) 7 Update 4 (64-bit)
"{336f7b31-7105-45e6-b94b-fc39b52ba9ad}.sdb" = Adobe Audition 3 Vista64 SP1 Fix
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{371B17C3-9624-4583-A497-DF980313D851}" = Native Instruments Absynth 5
"{38B4E24E-4F6E-4A6C-A414-F956FC35F376}" = NVIDIA CUDA Toolkit v4.0 (64 bit)
"{38D0E001-2620-40A9-8C44-3B52A50D090A}" = nHancer
"{43E7798A-248E-4A3D-9969-FEA63543A462}" = Native Instruments Kontakt 4
"{4529F749-C362-4119-AFA0-0A3F1CA924AB}" = Autodesk MatchMover 2012 64-bit
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{491DF203-7B61-4F0E-BDCB-A1218C4DAFE9}" = Native Instruments Massive
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{53EE2829-E9DB-4913-B3EA-96F10F84E98B}" = Melodyne Runtime 4.1 (x64)
"{5552453B-BB76-45E3-973D-F95E458ED780}" = Native Instruments Kontakt 5
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A9C5B3-D166-4C6D-A11E-A54473151000}" = Java 3D 1.5.1 (x64)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{7F801000-A1D5-11E0-9092-0013D3D69929}" = MSVCRT Redists
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8844595D-7554-49D2-90C4-3771532B7B1A}" = Trapcode Suite 64-bit
"{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}" = Topaz Simplify 3 (64-bit)
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUSR_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUSR_{3013A793-10A7-4D1F-B8B4-2FAA82F4D259}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{98782D5D-A9EE-43C6-88AD-B50AD8530E78}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{8DFD91C7-66AE-4E54-9901-5D5F401AD329}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{8299B64F-1537-4081-974C-033EAB8F098E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{92DBCA36-9B41-4DD1-941A-AED149DD37F0}" = Windows Mobile-Gerätecenter: Treiberupdate
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{9E6BB4E4-0B20-4922-AA37-260FA5ACFBA5}" = Autodesk Maya 2012 64-bit
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}" = Topaz Detail 2 (64-bit)
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{AC3E3746-8F18-4F8A-9521-1493022C6E0A}" = Autodesk DirectConnect 2012 64-bit
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.8.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}" = Microsoft Xbox 360 Accessories 1.2
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BA3D5FF2-A405-4654-826E-A09FABB01853}" = Topaz Fusion Express 2 (64-bit)
"{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D068E91E-D573-480B-AA24-4D8E5B00CE13}" = Native Instruments Kore 2
"{D285FC5F-3021-32E9-9C59-24CA325BDC5C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes
"{D9EA591C-2ED0-4E91-BF5F-A6B4B1CCEFC7}" = Topaz ReMask 2 (64-bit)
"{DC8F0C18-E6B0-4722-A4AB-D134473091C2}" = Topaz DeJpeg 4 (64-bit)
"{EA234BC3-39FE-4734-B72F-076086889F6D}" = Composite 2012 64-bit
"{EC015649-3B3C-4611-9C66-453F8011E944}" = Native Instruments Kontakt 4
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5631C47-0DED-438d-8D93-33E9552DCA8E}" = Native Instruments Kore 2 Controller Driver
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F7ADB493-B913-4D61-9A63-DA736C20C3F2}" = Adobe Photoshop Lightroom 4.1 64-bit
"{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}" = Topaz Clean 3 (64-bit)
"{FB237A35-F491-4AC1-95E0-85118D6751D9}" = Topaz Adjust 4 (64-bit)
"{FC4AD39F-9DCE-4BD0-B7D0-7C81CEB9F04B}" = NVIDIA PhysX Plug-in for Autodesk Maya 2012 64 bit
"33D939DC3BC1BBC9C0EA8EBE1FF03A841BC86589" = Windows-Treiberpaket - Sony PS Vita (libusb0) LibUsbDevices  (08/27/2006 0.1.12.0)
"Autodesk DirectConnect 2012 64-bit" = Autodesk DirectConnect 2012 64-bit
"Autodesk Maya 2012 64-bit" = Autodesk Maya 2012 64-bit
"Cakewalk Studio Instruments_is1" = Studio Instruments 1.0
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.60.1
"MediaInfo" = MediaInfo 0.7.56
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"NMMS11" = Nero 11 Full Repack v3 + Toolkit
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Recuva" = Recuva
"sp6" = Logitech SetPoint 6.32
"UltraISO_is1" = UltraISO Premium V9.52
"VLC media player" = VLC media player 2.0.1
"WinRAR archiver" = WinRAR archiver
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"@icon sushi_is1" = @icon sushi 1.21
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05A6F765-D749-45E6-A157-2E5ADE8F8FF0}" = sensorsamples
"{085AC6CC-3716-4C62-8965-FF94296BCC26}" = vistalibs_x64fre
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{091DDD71-FA98-4FF6-8E6F-07C9D09E29B8}" = wdftools_ia64fre
"{09298F26-A95C-31E2-9D95-2C60F586F075}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{0A026ED9-D774-4008-B62C-7565E5626371}" = networklibraries_ia64fre
"{0A049327-DE93-4098-B573-AAC71E0E6FA4}" = toastermetadatapackagesample
"{0A68FF18-07E3-4D28-BFDC-8F51ECE8A011}" = infsample_x64fre
"{0AD94592-05F9-4E96-9418-D50FEE317342}" = networklibraries_x86fre
"{0CA21011-069B-B16A-A5CA-9ABE49DAC05C}" = Windows Installer 4.5 SDK
"{0E2B767B-EA6A-489B-BF83-8083FE1DB661}" = Pcsx2 0.9.6
"{0E75753B-6FFF-4202-8638-D945BBEEB961}" = Melodyne plugin
"{1231849C-2D95-46C5-BC1B-A7A4481A279F}" = dsfsamples
"{1321CC95-FB73-4437-8F77-B179432F8857}" = setupsamples
"{153C7D89-9CF4-4719-A551-C5BF45236DB5}" = redist
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{17349339-D8E7-4394-805E-E2346C19BA82}" = setuptools_x64fre
"{185F9795-9663-4F13-9EF9-307A282ADB5A}" = ph
"{1864B4F0-7777-4A57-9930-C2B307597966}" = MusicLab RealGuitar 2.0
"{197AB90B-2CE8-4098-B8DC-A8C7ACBBEAD9}" = imagingtools_x86fre
"{198C0A8A-5E8D-4CF5-BE66-9D0E1FFBC217}" = pnptools_x64fre
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1C99893D-BC98-4456-AA3E-B67AB42301A6}" = E-MU USB Audio
"{1E8FC55E-F212-4B80-A0F7-A0D178C2FE4A}" = powermanagement_ia64fre
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F20DE69-167B-4F69-8D99-10DA59D92D10}" = headers
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{215741EE-19FD-40FE-AA83-2FF0813D54C6}" = Audio Zone Trigger
"{21E77392-C30A-4AA2-8CA7-5728316939D6}" = AmpliTube X-GEAR
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{28E0E806-0461-4E12-B272-465766FF94FB}" = bluetoothsamples
"{2A075BB4-E976-4278-BF3F-E5C6945D84C0}" = bl
"{2ADD318F-B560-4D64-9A2B-0196FCF103BD}" = audiosamples
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{315A928B-2B99-4E22-A066-14CD901F9C0B}" = generaltools_ia64fre
"{329335E6-0A4B-42B9-9230-5CAC83B04649}" = vistalibs_ia64fre
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{34600C75-5EF7-476C-A897-531078A304C3}" = buildtools_x86fre
"{34FBCCDC-2492-47E5-988C-571704270F31}" = NVIDIA GPU Computing SDK 4.2
"{353B1E6D-7073-4450-8C80-699BD8FCFB49}" = MTP Porting Kit
"{35546EB8-2D2F-4AAD-9FE5-9574520F4AD8}" = offreg_ia64fre
"{3717C4F2-7412-4793-9BB8-D73D2817B3D6}" = USB TV Device Driver
"{37E0996B-CD8D-46C9-A801-9EE67276DF9A}" = tracingtool_x64fre
"{384DB786-E488-45CC-AB4A-E6ABE11B0905}" = tools_ia64fre
"{38AD20B9-0433-45D5-86D6-C76BAE151892}" = printtools_ia64fre
"{39930321-4C58-4B8B-BCBF-342698C9801D}" = Max Payne
"{3A1B1652-D70A-4D19-981E-BB15D0DBF253}" = Ghostbusters (TM): The Video Game
"{3A2F0C18-0F0B-44BF-80F0-CB4204565573}" = printtools_x64fre
"{3B31D97A-7CF4-4ED2-8593-535AE7C0FB92}" = toolindex
"{3BEF9769-BA52-18F7-1D02-2362F6A27E38}" = Adobe Media Player
"{3C9E736F-8436-41D2-87F3-1468A59CA866}" = tracingtool_ia64fre
"{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Autodesk Backburner 2012.0.0
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3ECC5DE9-FF75-4EDD-8D46-6E4A59603E16}" = debugfiles_win7
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40719211-D09A-11DF-BA30-0013D3D69929}" = MSVCRT Redists
"{4077C73A-C623-40B9-8D0A-B9D501AF3046}" = tracingtool_x86fre
"{41E0A8DD-4343-4B33-95C3-272A99F18984}" = Steinberg Nuendo 4
"{452167AD-8C66-4726-9F6D-F27CFE13B8A3}" = NextUp.com-NeoSpeech Kate16 Voice
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4649A430-BC01-4C9E-9846-50FC56A9D00E}" = generalsamples
"{48402841-6F46-464D-8FA1-3A4460C8399D}" = toastersample
"{48D7FBA8-624C-4160-8A1D-D62619C2A693}" = NextUp.com-NeoSpeech Paul16 Voice
"{4908FC86-4753-40EB-99CD-1F1EB30E6F84}" = fireflysample
"{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
"{493028C3-0EC5-4FBF-B3D3-F4A934AB8801}" = eventsample
"{49B35B72-04FF-478D-842E-DBC7A5E68285}" = biometricsamples
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5
"{4C3B13F6-7CA2-47FD-9A47-C542BA730EF7}" = libs_x64fre
"{4C9C47E8-C79E-4A3B-BD87-5088916F67BC}" = imagingtools_ia64fre
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
"{4DD3FE4D-1D81-44F4-9FCC-BB8F861C6E21}" = pfd_x64fre
"{4DD6CC58-ED0B-46F1-8A23-4661D7DA60DD}" = wnetlibs_x64fre
"{4DF9AF39-93A8-45BD-AB41-6577969C4AE0}" = cancelsample
"{4E33D05D-76CF-5D3C-4D5D-7727530FA161}" = Adobe Content Viewer
"{4FBF748A-AF57-487E-8A74-A32710938A7C}" = bluetoothtools_x64fre
"{5008655B-381C-4C45-BF2F-E1998DDED2C5}" = chkinftool_x86fre
"{502A382B-6A1F-41C3-A370-A085182EEA91}" = wdftools_x86fre
"{5058FE9A-CF62-48B5-9AA2-48C536827880}" = sideshowsamples
"{5193B1FC-FC33-4CBA-9B9F-85F3D8F7CD87}" = readme
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{53C53D37-CA3C-4C32-B1B5-3BCC594144C2}" = networksamples
"{5454083B-1308-4485-BF17-111000028701}" = Grand Theft Auto: Episodes from Liberty City
"{5508128A-2C7B-46B5-81F9-58E8E8115F0B}" = AdblockIE
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5B66B4F6-D913-4D8D-B997-2E208ABECA73}" = portiosample
"{5B86F724-E2A0-47B6-805A-88D873175EFB}" = biometrictools_x86fre
"{5BE72DAD-15B7-4B1D-808D-9C66DF8E691D}" = storagesamples
"{5BF31BC3-EA1C-4905-9FF1-0FFBE5C4099B}" = bussamples
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5DB55A0E-43EA-4DC3-900E-71ED977D2CD0}" = Multi Export Audio
"{5E38A4B3-E50B-4E05-AC66-CDA806B12D10}" = smartcardsamples
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{628C2C7D-8AD1-E614-E8E2-6EEAD8D5F2D0}" = Acrobat.com
"{62BEC6D1-0287-4272-BFC4-C7C1A422B718}" = avstreamtools_x86fre
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63B405FD-A763-4F88-8844-1673AA5F00AB}" = wnetlibs_ia64fre
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{640EAE56-81A2-49D4-9B8C-00DA3C0031AF}_is1" = Juicer 3.62c
"{66D6D87F-D616-408F-9AD1-70D4D744DC29}" = irsamples
"{670CAF31-78EA-4A8B-9F8D-32EC018B1345}" = pnptools_x86fre
"{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}" = Microsoft Document Explorer 2008
"{6899C238-3E4A-4A04-B251-A0C9EDC7EDBC}_is1" = Pazera Free Audio Extractor 1.4
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Mass Effect™ 3
"{6F1B3EC0-1182-4AA6-9E08-C4D7A05E1B7C}" = streammediasamples
"{6F9AD5EF-EF6A-4548-B797-2543F0D1F28F}" = offreg_x86fre
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71E96A45-FE54-4AF6-B208-A3F860EF1063}" = usbsamples
"{725943A7-97C3-4E7D-841E-7E6FBAABF64B}" = drvtools_ia64fre
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7596C248-4816-4C6F-8AAC-D8C81F2B4B49}" = HD View
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}" = Topaz Fusion Express 2
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{7CA89ADF-C212-4D5A-85EC-79BAA250A656}" = infsample_x86fre
"{7D66971C-652B-4065-A6B1-B3EE313C254B}" = BlueJ
"{7DD52F48-C19E-4FD8-8B25-429F96321003}" = Microsoft Windows Driver Kit Documentation 7600.091201
"{7E7F3882-48B3-424B-9BE2-D257D1319C59}" = VocALign Project
"{7E95DAD6-B230-49D7-AEB3-8BED0E98C9E6}" = Melodyne plugin
"{7ED7AA72-49BE-40FB-89C4-F1DBAAC16F01}" = dfx_ia64fre
"{7F0B94C6-828C-4EDE-A86B-ECF4D792B68D}" = Activision(R)
"{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1" = Hex-Editor MX
"{80CFB54B-2C2C-4513-9B90-923F7F850074}" = evntdrvsample
"{82B341CB-D57D-4286-BE54-FB86BAAD23EB}" = pfd_x86fre
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85701256-4CFE-4144-A831-4D03DB2C830A}" = wpdtools_x86fre
"{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}" = Topaz Clean 3
"{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}" = Steinberg HALionOne Studio Drum Set
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86DE5D5D-7F44-4D9E-803C-4298732C16A3}" = dfx_x86fre
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}" = Topaz Simplify 3
"{8AFD8D85-FF4D-4DA7-B1A0-14C6A1BA1F59}" = setuptools_x86fre
"{8B62890F-E903-42BA-B1F7-7868432BCC4A}" = tools_x64fre
"{8BF161B5-1065-4457-8C7C-76366914033A}" = drvtools_x86fre
"{8C49987B-689E-469D-86AE-8E325A038701}" = Melodyne plugin
"{90000001-C561-4E32-99EB-3C5AD3683A70}" = Waves Complete V9r1
"{9096B2CA-170B-4696-AB43-AF5DD8D539E6}" = hid_inputsamples
"{9269E4BE-0607-488B-9BFD-9E54FEADB17B}" = ioctlsample
"{92F027CB-BDF9-4047-A654-13A050908158}" = ElastikVst
"{939740B5-0064-4779-854A-8C1086181C05}" = Macromedia FreeHand MXa
"{955AB765-E48B-4D82-9F06-F2E142433B71}" = Ableton Live 8
"{984AD1E9-A775-40F8-9A43-70908593B247}" = hidsampleinput
"{984E6987-6A7E-4F2D-AF7F-68BBB3BD68AD}" = dfx_x64fre
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9866E5F0-121F-E018-E2D1-2E1770847ABF}" = Adobe Download Assistant
"{9936A6C2-0C21-49D8-8AB1-92384259D214}" = powermanagement_x86fre
"{99870CAE-4D57-42F2-9427-AC88F33FC8C3}" = buildsamples
"{9A17B0B6-AD89-4321-99E6-09D9ABFA254D}" = MelodyneEssential 1.8
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9B684D7F-C314-43C2-A767-0372B02D6150}" = Backup4all Professional 4
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D623E1A-30E1-4E55-BD80-5C1359DB120B}" = Melodyne 3.1
"{9D668C99-AEED-472A-98C0-65D8865150F6}" = wxplibs_x86fre
"{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}" = Topaz DeJpeg 4
"{9E6C6A09-A71E-45A4-8DBE-68C64DFC451B}" = generaltools_x64fre
"{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}" = Topaz DeNoise 5
"{9FDC7042-CB9F-4336-A14C-DF10F53762E2}" = Topaz Adjust 4
"{A072218B-9353-4FAA-A969-64E64568B431}" = umdfsamples
"{A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}" = Adobe Community Help
"{A1DBF7E4-0FA0-4E55-9AB3-226E16B97CB2}" = Crysis 2(R) Mod SDK 1.0
"{A1E50F2C-F6CA-4C27-AEA7-819B2A486223}" = Steinberg Nuendo Expansion Kit
"{A541122D-7159-40B6-991D-A8A89006DB91}" = displaysamples
"{A74123D0-28F2-431A-8C9A-864CD6F2F900}" = infsample_ia64fre
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB6E6302-43F6-46A1-A3A2-8FCE5897ABE1}" = Ableton Live 8
"{AB99CA8E-0BA0-4AE7-A9AF-26D97D70A570}" = bluetoothtools_x86fre
"{AC76BA86-1033-F400-7760-000000000005}" = Adobe Acrobat X Pro - English, Français, Deutsch
"{AC997F93-0757-4ED4-A701-F40C2D654D09}" = Steinberg HALionOne GM Drum Set
"{ACAF97EB-7C5B-4C13-84E2-656FD8F2AE08}" = imagingtools_x64fre
"{ACDD9F03-F849-48F5-AB50-CEDDD31689FD}" = Stereoscopic Player
"{AEDC22CF-1590-4095-8053-4B724A5BA7A8}" = wsdtool_x86fre
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B086FEC7-E6B5-4E03-B7DC-60D5D0787174}" = drvtools_x64fre
"{B121B2B4-867E-4389-AC58-0AEC72C37F47}" = wpdsamples
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B17E235C-7A3B-4482-B650-21FFDE1D452E}" = Empire Earth III
"{B2B60AF9-E82A-453D-AB79-B4103614FF7E}" = setuptools_ia64fre
"{B3A0347D-6F37-40E3-AC66-85529088649F}_is1" = Mz Vista Force v2.2
"{B4665EAE-6733-4978-8757-629C7D8DD6A5}" = powermanagement_x64fre
"{B533A27C-3B5D-42AB-B397-A817F154CC22}" = printtools_x86fre
"{B66819C1-8FA4-4456-A12C-E8C6555DC2E2}" = libs_x86fre
"{B66D9EAC-DDAE-4477-93B2-A946438D97B6}" = wmisamples
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7DAD844-34CD-456B-83CC-88065323DD69}" = WordBuilder
"{B875D436-48A7-42CE-A105-23A7F65B9A60}" = avstreamtools_ia64fre
"{B9F9C536-ECF3-399F-A57B-84378144B91E}" = O3D Plugin
"{BA12FD6C-169A-11D7-A6A9-00C026281E5A}" = USB Vibration Joystick
"{BAF2FA20-6886-483C-8CC6-3310A1A636E5}" = ElastikVst
"{BCB4C18A-ACA6-4383-8688-E19933A705DD}" = Microsoft SOAP Toolkit 3.0
"{BCFFAF65-50B7-4419-AFCA-A7BA797E2C3D}" = Topaz ReMask 2
"{BD33DB46-D5EE-4529-8854-7161F4A87720}" = avstreamtools_x64fre
"{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
"{BDE646E8-86E0-50E1-37BC-0AEBB2185D76}" = Adobe Widget Browser
"{BEC25D5C-2CD4-4518-8061-4D97D61C710F}" = pnpportssample
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFBDD199-81A2-4BFA-9581-D2EA1716B546}" = DSF-KitSetup
"{C0742F98-1E35-4755-A32D-9F9DAE97CBF3}" = ifssamples
"{C1620364-5718-43DD-B6B7-104A0A41EACC}" = swtuner
"{C28DD992-5B7B-D195-6841-4EC57DF512BD}" = Adobe Story
"{C51059C0-E4D6-C24C-6C72-0FF78122D56E}" = Prezi Desktop
"{C521D5BA-BAE4-43E7-9250-6436E0502948}" = hidsamples
"{C5DA59CF-2BB8-48D5-8E5B-17F2E0F0FEE4}" = System Requirements Lab for Intel
"{C779648B-410E-4BBA-B75B-5815BCEFE71D}" = Safari
"{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}" = Topaz Detail 2
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}" = CanoScan Toolbox Ver4.9
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBE08674-3776-4578-9992-46FAEF528F15}" = oacr_x86fre
"{CC2FB3DD-C2DD-4D35-911C-042F3532EE79}" = tools_x86fre
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240CC}" = WinZip 16.0
"{CDEBE7FF-C832-4B91-9214-A4CA610D78C9}" = Adobe Audition 3.0.1 Patch
"{D058CD28-634C-4EF1-A47D-669FD6BE0C55}" = generaltools_x86fre
"{D0B2AA8F-CC52-4298-A48E-A9BA169546B6}" = Cabela's Outdoor Adventures
"{D1ABCCBA-5525-48B2-9D13-F6D4B6CE4749}" = buildtools_ia64fre
"{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}" = Steinberg HALionOne Studio Set
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D4E7A54A-4124-49A7-835B-F3BB3B501475}" = libs_ia64fre
"{D721152B-35EB-44F3-AB58-D0AE8882813F}" = sdv
"{D80B8A95-3DC7-428C-B216-70251A4296DD}" = wnetlibs_x86fre
"{D82CDA0D-C182-42C8-8FF2-5649C98D6003}" = Steinberg HALionOne Pro Set
"{D982C565-EE25-4E1D-8581-95ABDF637032}" = pfd_ia64fre
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{DC0B9B4B-3198-4F0F-8A2D-1235ED539D53}" = biometrictools_x64fre
"{DC6B7F7C-20F7-4D40-9735-957752CE5F53}" = pnptools_ia64fre
"{DEC41CA8-C30F-4F70-9AEE-1B3EEB4A3B62}_is1" = ICQ Language
"{E1423BD0-AAAE-4291-B220-863AEDF873D7}" = printsamples
"{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}" = Steinberg HALionOne Expression Set
"{E35466C4-2C85-4718-801E-761E18ACDD91}" = avstreamsamples
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5052212-DAF0-4BD2-A28E-EF9B9A1D3D81}" = buildtools_x64fre
"{E6343838-6EFE-4528-90ED-8D9258CA4584}" = installhelp
"{E6847FF6-C825-4739-814D-8758A9B30A9A}" = modemtools
"{E6E836AB-EC50-48EA-9208-374A982F28F2}" = bluetoothtools_ia64fre
"{E70E7159-93B1-470D-9FBD-D8E9EF34B538}" = Steinberg HALionOne
"{E754BD2E-5F64-4D38-A1C6-8B8143A09985}" = offreg_x64fre
"{E761E173-81A4-4C12-A28D-322952C4F31B}" = wpdtools_x64fre
"{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"{EB11B6F6-4B7A-9141-F371-2DEEE06D4513}" = Adobe Support Advisor
"{EB77C666-B349-4046-8BD3-E4941119E1EF}" = VocALign Pro 4 VST
"{EBD729CC-602A-4D12-896B-4FBEBE1B6C4F}" = wcoinstallers
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EDE33D47-848D-4BAE-8399-01D4457D8F64}" = wsdtool_ia64fre
"{EE1E82F8-E538-4B5A-952B-6252DEFA5D06}" = wsdtool_x64fre
"{F057965A-D974-4C64-ADB1-4381CD4B8956}" = Steinberg HALionOne GM Set
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F241EC95-C81A-466E-8006-6B0B364B07A0}" = PCMark Vantage
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}" = Steinberg HALionOne Additional Content Set 01
"{F5730A89-7A25-43FC-9A88-12BAF24121F8}" = calibre
"{F573FC3C-4149-4FE7-B189-7E5DD3281927}" = networklibraries_x64fre
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.20)
"{F5F16DEF-5F74-46C8-95E3-AC2FEB04A9DD}" = wdftools_x64fre
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FB2EEF6E-00A7-4863-A44A-227EB927A589}" = vistalibs_x86fre
"{FCFE5318-77F7-4661-A526-418C431A48B5}" = wpdtools_ia64fre
"{FDAA0CD7-930D-4E16-B3A2-66FAA2EEF3AD}" = pcidrvsample
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"«Serious Sam 3 Full Update»_is1" = «Serious Sam 3 Full Update» (Updated on December 1 2011)
"7-Zip" = 7-Zip 4.65
"abgx360" = abgx360 v1.0.6
"AC3Filter_is1" = AC3Filter 1.63b
"Addictive Drums Inno Setup_is1" = Addictive Drums 1.5.2
"Adobe AIR" = Adobe AIR
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced RAR Repair v1.2" = Advanced RAR Repair v1.2
"Afterburner" = MSI Afterburner 2.2.1
"Alan Wake American Nightmare_is1" = Alan Wake American Nightmare
"Alan Wake_is1" = Alan Wake
"Antares Autotune VST_is1" = Antares Autotune VST v5.09
"AviSynth" = AviSynth 2.5
"AWicons Pro" = AWicons Pro
"B076073A-5527-4f4f-B46B-B10692277DA2_is1" = DisplayFusion 4.1.0 (Beta 4)
"Badaboom2" = Badaboom versionTRIAL_2.0.0.128
"Bass Audio Decoder" = Bass Audio Decoder (remove only)
"CD Audio Reader Filter" = CD Audio Reader Filter (remove only)
"Celtx (2.9)" = Celtx (2.9)
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 5.6_is1" = Cheat Engine 5.6
"com.adobe.amp.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Media Player
"com.adobe.dmp.contentviewer" = Adobe Content Viewer
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Widget Browser
"com.prezi.PreziDesktop" = Prezi Desktop
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"Complitly_is1" = Complitly
"Crysis 2(R) Mod SDK 1.0" = Crysis 2(R) Mod SDK 1.0
"DCoder Image Source" = DCoder Image Source (remove only)
"Direct MKV Converter_is1" = Direct MKV Converter version 2.0.0.0
"DiskAid_is1" = DiskAid 5.06
"DivX Setup" = DivX-Setup
"DScaler 5 Mpeg Decoders_is1" = DScaler 5 Mpeg Decoders
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVDInfoPro" = DVDInfoPro
"East West Colossus" = East West Colossus
"East West EWQLSO Gold Edition" = East West EWQLSO Gold Edition
"East West HardcoreBass" = East West HardcoreBass
"East West Ra" = East West Ra
"East West Stormdrum Kompakt" = East West Stormdrum Kompakt
"East West Symphonic Choirs" = East West Symphonic Choirs
"EasyEclipse Desktop Java 1.2.2" = EasyEclipse Desktop Java 1.2.2
"EasyEclipse Eclipse Visual Editor 1.2.3.jem" = EasyEclipse Plugin: EasyEclipse Eclipse Visual Editor 1.2.3.jem
"eLicenser Control" = eLicenser Control
"Endless City" = NVIDIA Endless City demo
"Exact Audio Copy" = Exact Audio Copy 0.99pb5
"FFMPEG Core Files" = FFMPEG Core Files (remove only)
"File Shredder_is1" = File Shredder 2.0
"foobar2000" = foobar2000 v1.1
"Fraps" = Fraps
"Gabest MPEG Splitter" = Gabest MPEG Splitter (remove only)
"Girder5Stuff_is1" = Promixis Girder 5.0.13.550
"HaaliMkx" = Haali Media Splitter
"Har-Bal Equalization System v2.3" = Har-Bal Equalization System v2.3
"Hard Disk Low Level Format Tool_is1" = Hard Disk Low Level Format Tool 2.36 build 1181
"HijackThis" = HijackThis 2.0.2
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"ImgBurn" = ImgBurn
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"InstallShield_{8844595D-7554-49D2-90C4-3771532B7B1A}" = Trapcode Suite 64-bit
"InstallShield_{9208F706-6528-4591-A997-F41395FBD8A7}" = Spider-Man(TM) - Web of Shadows 1.1 Patch
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"IsoBuster_is1" = IsoBuster 2.8.5
"iZotope Ozone 4_is1" = iZotope Ozone 4
"JDownloader" = JDownloader
"KitSetup Registration {B4285279-1846-49B4-B8FD-B9EAF0FF17DA}:{68656B6B-555E-5459-5E5D-6363635E5F61}" = Microsoft Windows Driver Kit 7.1.0.7600
"LHTTSGED" = L&H TTS3000 Deutsch
"Live 8.2" = Live 8.2
"LoopBe1" = LoopBe1 - Internal MIDI Port
"MakeMKV" = MakeMKV v1.7.4
"Marvell Miniport Driver" = Marvell Miniport Driver
"Mass Effect 3 v1.1.5427.4_is1" = Mass Effect 3 v1.1.5427.4
"MeGUI" = MeGUI (remove only)
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft Document Explorer 2008" = Microsoft Document Explorer 2008
"MKVtoolnix" = MKVtoolnix 2.9.0
"MONOGRAM AMR Splitter/Decoder" = MONOGRAM AMR Splitter/Decoder (remove only)
"Mozilla Firefox 14.0 (x86 de)" = Mozilla Firefox 14.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSI Kombustor_is1" = MSI Kombustor v1.0.0
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"mv61xxDriver" = marvell 61xx
"Native Instruments Akoustik Piano" = Native Instruments Akoustik Piano
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OnLive" = OnLive
"OpenAL" = OpenAL
"OpenSource AVI Splitter" = OpenSource AVI Splitter (remove only)
"OpenSource DTS/AC3/DD+ Source Filter" = OpenSource DTS/AC3/DD+ Source Filter (remove only)
"OpenSource Flash Video Splitter" = OpenSource Flash Video Splitter (remove only)
"Opera 11.64.1403" = Opera 11.64
"oZone3D.Net FluidMark_is1" = oZone3D.Net FluidMark v1.1.1
"oZone3D.Net FurMark_is1" = oZone3D.Net FurMark v1.7.0
"Perfectly Clear Plugin" = Perfectly Clear Plugin 1.5.5
"PhaseOut_is1" = PhaseOut 5.4.1
"PhotoKit Color 2 Plug-In Module" = PhotoKit Color 2 Plug-In Module
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"PrecisionX" = EVGA Precision X 3.0.2
"Predator_is1" = Rob Papen Predator V1.1.0
"Prosoniq OrangeVocoder v1.4" = Prosoniq OrangeVocoder v1.4
"PTGui" = PTGui Pro Trial 9.0.4
"PunkBusterSvc" = PunkBuster Services
"Quick Batch File Compiler_is1" = Quick Batch File Compiler 3.15
"RealMedia" = RealMedia (remove only)
"Reason4_is1" = Reason 4.0.1
"ReCycle v2.1" = ReCycle v2.1
"reFX Nexus 1.0.9_is1" = reFX Nexus 1.0.9
"reFX Nexus 1.3.9_is1" = reFX Nexus 1.3.9
"reFX Nexus_is1" = reFX Nexus VSTi RTAS v2.2.0
"reFX quadraSID 1.6.0_is1" = reFX quadraSID 1.6.0
"Resource Tuner_is1" = Resource Tuner 1.99 R6
"RG_is1" = Rob Papen RG 1.5 Multi-core
"Rockstar Games Social Club" = Rockstar Games Social Club
"RoomEQWizardV5" = Room EQ Wizard V5
"RouterControl" = RouterControl 2.0
"SHOUTcast Source" = SHOUTcast Source (remove only)
"Sonalksis Plug-Ins for Windows_is1" = Sonalksis Plug-Ins for Windows 2.00
"Sonnox Oxford Inflator Native VST_is1" = Sonnox Oxford Inflator Native VST v1.5.1
"Sonnox Oxford Limiter Native VST_is1" = Sonnox Oxford Limiter Native VST v1.1.1
"Sonnox Oxford R3 Dynamics Native VST_is1" = Sonnox Oxford R3 Dynamics Native VST v1.3.1
"Sonnox Oxford R3 EQ Native VST_is1" = Sonnox Oxford R3 EQ Native VST v1.6.1
"Sonnox Oxford Reverb Native VST_is1" = Sonnox Oxford Reverb Native VST v1.0
"Sonnox Oxford TransMod Native VST_is1" = Sonnox Oxford TransMod Native VST v1.3.1
"Steam App 24980" = Mass Effect 2
"Steinberg HALion v3.5_is1" = Steinberg HALion VSTi DXi v3.5
"Steinberg Hypersonic v1.0" = Steinberg Hypersonic v1.0
"Steinberg WaveLab_is1" = Steinberg WaveLab version 6.11
"SubBoomBass_is1" = Rob Papen SubBoomBass 1.0.3c
"SYLTEditor" = SYLTEditor
"Synthesia" = Synthesia (remove only)
"SystemRequirementsLab" = System Requirements Lab
"TeamPlayer_is1" = TeamPlayer 2.2.0
"Tone2 Gladiator Retail_is1" = Gladiator v1.2.2.0
"Topaz Adjust 4" = Topaz Adjust 4
"Topaz Adjust 4 (64-bit)" = Topaz Adjust 4 (64-bit)
"Topaz Clean 3" = Topaz Clean 3
"Topaz Clean 3 (64-bit)" = Topaz Clean 3 (64-bit)
"Topaz DeJpeg 4" = Topaz DeJpeg 4
"Topaz DeJpeg 4 (64-bit)" = Topaz DeJpeg 4 (64-bit)
"Topaz DeNoise 5" = Topaz DeNoise 5
"Topaz DeNoise 5 (64-bit)" = Topaz DeNoise 5 (64-bit)
"Topaz Detail 2" = Topaz Detail 2
"Topaz Detail 2 (64-bit)" = Topaz Detail 2 (64-bit)
"Topaz Fusion Express 2" = Topaz Fusion Express 2
"Topaz Fusion Express 2 (64-bit)" = Topaz Fusion Express 2 (64-bit)
"Topaz ReMask 2" = Topaz ReMask 2
"Topaz ReMask 2 (64-bit)" = Topaz ReMask 2 (64-bit)
"Topaz Simplify 3" = Topaz Simplify 3
"Topaz Simplify 3 (64-bit)" = Topaz Simplify 3 (64-bit)
"Totalcmd" = Total Commander (Remove or Repair)
"Trapcode 3DStroke" = Trapcode 3DStroke
"Trapcode Particular" = Trapcode Particular
"Trapcode Starglow" = Trapcode Starglow
"Trojan Remover_is1" = Trojan Remover 6.8.3
"TuneUp Utilities" = TuneUp Utilities
"Tunngle beta_is1" = Tunngle beta
"Tweaking.com - Windows Repair (All in One)" = Tweaking.com - Windows Repair (All in One)
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"Vid-Saver" = Vid-Saver
"Virtual MIDI Keyboard" = Virtual MIDI Keyboard
"Waves API Collection" = Waves API Collection
"Waves Complete v7_is1" = Waves Complete VST RTAS TDM v7.1.16
"Waves Complete V8_is1" = Waves Complete v8.0.11
"Waves L3 16" = Waves L3 16
"Waves L3 LL" = Waves L3 LL
"Waves Mercury Bundle" = Waves Mercury Bundle
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
"WinRAR archiver" = WinRAR
"winscp3_is1" = WinSCP 4.2.7
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Xbox360 Dump Extractor Tool GUI" = Xbox360 Dump Extractor Tool GUI 1.1
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate
"XisoManager_is1" = XisoManager v 1.3.1
"XMind" = XMind
"XNote Stopwatch" = XNote Stopwatch
"Zoom Player Home Max" = Zoom Player Home Max 7.00
"ZoomPlayer" = Zoom Player (remove only)
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BlackFire's Mod 2" = BlackFire's Mod 2
"CodeBlocks" = CodeBlocks
"Combo Box" = Combo Box
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"I-Doser v4" = I-Doser v4
"MaLDo HD Texture Pack" = MaLDo HD Texture Pack
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "MSDTC Bridge 4.0.0.0" (MSDTC Bridge 4.0.0.0). Der Fehlercode ist das
 erste DWORD im Datenbereich.
 
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "MSDTC Bridge 4.0.0.0" (MSDTC Bridge 4.0.0.0). Der Fehlercode ist das
 erste DWORD im Datenbereich.
 
Error - 13.06.2012 06:36:59 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 07:08:20 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 08:01:08 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 08:42:15 | Computer Name = Shogun | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Autodesk\Composite
 2012\python\lib\distutils\command\wininst-8_d.exe".  Die abhängige Assemblierung 
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
[ Media Center Events ]
Error - 17.06.2010 14:34:44 | Computer Name = Shogun | Source = Microsoft-Windows-Media Center Extender | ID = 538
Description = 
 
Error - 17.06.2010 14:51:05 | Computer Name = Shogun | Source = Microsoft-Windows-Media Center Extender | ID = 301
Description = 
 
Error - 04.07.2010 09:12:50 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:12:50 - Fehler beim Herstellen der Internetverbindung.  15:12:50 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 07.07.2010 09:20:48 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:48 - Fehler beim Herstellen der Internetverbindung.  15:20:48 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 07.07.2010 09:21:18 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:21:17 - Fehler beim Herstellen der Internetverbindung.  15:21:17 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 23.07.2010 09:20:23 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:23 - Fehler beim Herstellen der Internetverbindung.  15:20:23 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 23.07.2010 09:20:31 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:28 - Fehler beim Herstellen der Internetverbindung.  15:20:28 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 31.07.2010 09:48:28 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:48:28 - Fehler beim Herstellen der Internetverbindung.  15:48:28 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 31.07.2010 09:49:01 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:48:57 - Fehler beim Herstellen der Internetverbindung.  15:48:57 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 01.04.2011 06:24:55 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 12:24:55 - Directory konnte nicht abgerufen werden (Fehler: Die zugrunde
 liegende Verbindung wurde geschlossen: Für den geschützten SSL/TLS-Kanal konnte
 keine Vertrauensstellung hergestellt werden..)  
 
[ System Events ]
Error - 13.06.2012 06:36:20 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 06:36:21 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 06:37:02 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   ncfjxloa  viamrx64  vsmraid  zogvkg
 
Error - 13.06.2012 07:07:59 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 07:07:59 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 07:08:12 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   ncfjxloa  viamrx64  vsmraid  zogvkg
 
Error - 13.06.2012 07:55:15 | Computer Name = Shogun | Source = Service Control Manager | ID = 7034
Description = Dienst "NVIDIA Stereoscopic 3D Driver Service" wurde unerwartet beendet.
 Dies ist bereits 1 Mal passiert.
 
Error - 13.06.2012 08:00:48 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 08:00:48 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 08:01:02 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   ncfjxloa  viamrx64  vsmraid  zogvkg
 
[ TuneUp Events ]
Error - 12.11.2010 11:14:49 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:16:29 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:19:55 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:19:55 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:20:50 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:20:50 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:21:00 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
 
< End of report >

--- --- ---
[CODE]

jgswcrnk · 13.06.2012, 14:10

zu 6. :
install.txt:

Code:

ATTFilter

7-Zip 4.65				
7-Zip 9.20 (x64 edition)	Igor Pavlov	10.12.2011	4,53MB	9.20.00.0
@icon sushi 1.21	towofu's SOFT			
abgx360 v1.0.6				
Ableton Live 8	Ableton	22.05.2012	1.909MB	8.0.0.0
AC3Filter 1.63b	Alexander Vigovsky	17.06.2011		1.63b
Acrobat.com	Adobe Systems Incorporated	18.12.2009		2.0.0.0
AdblockIE	af0.net	12.06.2012	9,46MB	1.2
Addictive Drums 1.5.2		31.03.2011		
Adobe Acrobat X Pro - English, Français, Deutsch	Adobe Systems	06.06.2012	2.778MB	10.1.3
Adobe AIR	Adobe Systems Incorporated	16.11.2011		3.1.0.4880
Adobe Audition 3 Vista Compatibility				
Adobe Audition 3 Vista64 SP1 Fix				
Adobe Audition 3.0	Adobe Systems Incorporated	01.06.2009		3.0
Adobe Audition 3.0.1 Patch	Adobe Systems Incorporated	01.06.2009	16,2MB	3.00.1000
Adobe Community Help	Adobe Systems Incorporated.	30.04.2011		3.5.23
Adobe Content Viewer	Adobe Systems Incorporated	30.04.2011		1.4.0
Adobe Download Assistant	Adobe Systems Incorporated	17.05.2012		1.2
Adobe Flash Player 11 ActiveX 64-bit	Adobe Systems Incorporated			11.2.202.235
Adobe Flash Player 11 Plugin	Adobe Systems Incorporated			11.3.300.257
Adobe Media Player	Adobe Systems Incorporated	10.06.2011		1.8
Adobe Photoshop Lightroom 4.1 64-bit	Adobe	06.06.2012	806MB	4.1.2
Adobe Widget Browser	Adobe Systems Incorporated.	30.04.2011		2.0 Build 230
Advanced RAR Repair v1.2				
Alan Wake		16.02.2012		
Alan Wake American Nightmare	GOG.com	23.05.2012		
AmpliTube X-GEAR	IK Multimedia	17.11.2009		1.1.0
Antares Autotune VST v5.09		17.02.2010		
Apple Application Support	Apple Inc.	23.12.2011	61,2MB	2.1.6
Apple Mobile Device Support	Apple Inc.	23.12.2011	24,4MB	4.0.0.97
Apple Software Update	Apple Inc.	22.12.2011	2,38MB	2.1.3.127
ArcSoft TotalMedia Theatre 5	ArcSoft	05.02.2012		5.0.1.114
Audio Zone Trigger	Omega-Unfold	19.11.2009		
Autodesk Backburner 2012.0.0	Autodesk, Inc.	09.04.2012	13,0MB	2012.0.0
Autodesk DirectConnect 2012 64-bit	Autodesk	01.01.1970		6.0.443.0
Autodesk MatchMover 2012 64-bit	Autodesk	09.04.2012	125,9MB	14.00.0000
Autodesk Maya 2012 64-bit	Autodesk	01.01.1970		14.0.0.0
AviSynth 2.5				
AWicons Pro	Lokas Software			10.2
Backup4all Professional 4	Softland	15.04.2012	47,4MB	4.7.268
Badaboom versionTRIAL_2.0.0.128	Elemental Technologies			versionTRIAL_2.0.0.128
Bass Audio Decoder (remove only)				
BlackFire's Mod 2				
BlueJ	BlueJ Team	14.11.2011	9,25MB	3.0.6
Bonjour	Apple Inc.	23.12.2011	2,00MB	3.0.0.10
calibre	Kovid Goyal	16.10.2010	95,6MB	0.7.23
CanoScan LiDE 90				
CanoScan Toolbox Ver4.9				
CCleaner	Piriform	23.05.2012		3.19
CD Audio Reader Filter (remove only)				
Celtx (2.9)	Greyfirst			2.9 (de)
Cheat Engine 5.6	Dark Byte	06.03.2010		
CodeBlocks	The Code::Blocks Team			10.05
Combined Community Codec Pack 2010-10-10	CCCP Project	31.01.2011		2010.10.10.0
Combo Box	The Java(tm) Tutorial			
Complitly		11.01.2012		
Composite 2012 64-bit	Autodesk	09.04.2012	387MB	7.0.0
CPUID CPU-Z 1.60.1		06.06.2012		
Crysis 2(R) Mod SDK 1.0	Crytek GmbH	09.07.2011		
Crysis® 2	Electronic Arts	09.07.2011	7.708MB	1.0.0.0
DCoder Image Source (remove only)				
Direct MKV Converter version 2.0.0.0		09.02.2012		
DiskAid 5.06	DigiDNA	24.12.2011		5.06
DisplayFusion 4.1.0 (Beta 4)	Binary Fortress Software	12.06.2012		4.0.99.104
DivX-Setup	DivX, LLC			2.6.1.8
Dropbox	Dropbox, Inc.			1.2.52
DScaler 5 Mpeg Decoders				
DVD Decrypter (Remove Only)				
DVDInfoPro				
E-MU USB Audio				1.0				
EasyEclipse Desktop Java 1.2.2				1.2.2
EasyEclipse Plugin: EasyEclipse Eclipse Visual Editor 1.2.3.jem				1.2.3.jem
EAX4 Unified Redist	Creative Labs	08.05.2010	0,16MB	4.001
ElastikVst	ueberschall sample service GmbH	08.01.2010		1.05.0203
eLicenser Control	Steinberg Media Technologies GmbH			
Empire Earth III	Sierra Entertainment	25.06.2011		1.00.0000
EVGA Precision X 3.0.2	EVGA Corporation			3.0.2
Exact Audio Copy 0.99pb5	Andre Wiethoff			0.99pb5
FFMPEG Core Files (remove only)				
File Shredder 2.0	WipeSoft	05.02.2010		
foobar2000 v1.1	Peter Pawlowski			1.1
Fraps				
Futuremark SystemInfo	Futuremark Corporation	12.07.2011		4.0.0.0
Gabest MPEG Splitter (remove only)				
Gladiator v1.2.2.0		25.08.2009		
Google Chrome	Google Inc.	03.06.2012		19.0.1084.56
Google Earth	Google	17.11.2011	92,7MB	6.1.0.5001
Haali Media Splitter				
Har-Bal Equalization System v2.3				
Hard Disk Low Level Format Tool 2.36 build 1181	HDDGURU			
HD View	Microsoft Research	05.12.2009	2,59MB	3.3.0
Hex-Editor MX	NEXT-Soft			6.0
HijackThis 2.0.2	TrendMicro			2.0.2
Host OpenAL (ADI)				
I-Doser v4				
ICQ Language	Adblockplus	15.06.2009		
ICQ7.7	ICQ	01.04.2012		7.7
ImgBurn	LIGHTNING UK!	10.05.2012		2.5.7.0
Intel(R) Rapid Storage Technology	Intel Corporation			10.8.0.1003
IsoBuster 2.8.5	Smart Projects	13.03.2012		2.8.5
iTunes	Apple Inc.	23.12.2011	170,5MB	10.5.2.11
iZotope Ozone 4	iZotope, Inc.	19.09.2010		4.00
Java 3D 1.5.1 (x64)	Sun Microsystems, Inc.	30.11.2011	5,08MB	1.5.1
Java(TM) 7 Update 4 (64-bit)	Oracle	06.06.2012	95,0MB	7.0.40
JavaFX 2.0.2 (64-bit)	Oracle Corporation	09.01.2012	20,7MB	2.0.2
JavaFX 2.0.2 SDK (64-bit)	Oracle Corporation	09.01.2012	66,5MB	2.0.2
JDownloader	AppWork UG (haftungsbeschränkt)			0.89
Juicer 3.62c	Digital Juice, Inc.	12.01.2010		
L&H TTS3000 Deutsch				
Lagarith Lossless Codec (1.3.20)		04.01.2011		
Live 8.2				
Logitech SetPoint 6.32	Logitech			6.32.20
LoopBe1 - Internal MIDI Port				
Macromedia FreeHand MXa	Macromedia			11.0.2
MakeMKV v1.7.4	GuinpinSoft inc			v1.7.4
MaLDo HD Texture Pack				
Malwarebytes Anti-Malware Version 1.61.0.1400	Malwarebytes Corporation	13.06.2012		1.61.0.1400
marvell 61xx	Marvell			1.2.0.68
Marvell Miniport Driver	Marvell			11.10.5.3
Mass Effect 2	BioWare			
Mass Effect 2	Electronic Arts, Inc.			1.02		
Mass Effect™ 3	Electronic Arts			1.01.0.0
Max Payne				
Max Payne 3	Rockstar Games	07.06.2012		1.0.0.0
MediaInfo 0.7.56	MediaArea.net			0.7.56
MeGUI (remove only)				0.3.1.1033
Melodyne plugin	Celemony Software GmbH	21.07.2009		1.00.0402
Melodyne Runtime 4.1 (x64)	Celemony Software GmbH	18.05.2012	49,1MB	1.0.1
MelodyneEssential 1.8	Celemony Software GmbH	17.11.2009		1.08.0005
Microsoft .NET Framework 1.1		04.11.2009		
Microsoft .NET Framework 4 Client Profile	Microsoft Corporation	10.06.2012		4.0.30319
Microsoft .NET Framework 4 Client Profile DEU Language Pack	Microsoft Corporation	15.06.2011		4.0.30319
Microsoft .NET Framework 4 Extended	Microsoft Corporation	10.06.2012		4.0.30319
Microsoft .NET Framework 4 Extended DEU Language Pack	Microsoft Corporation	30.01.2012		4.0.30319
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)	Microsoft Corporation	10.08.2011	10,4MB	3.5.30730.0
Microsoft Document Explorer 2008	Microsoft Corporation	27.05.2012		
Microsoft Games for Windows - LIVE Redistributable	Microsoft Corporation	06.05.2011	31,3MB	3.5.88.0
Microsoft Games for Windows Marketplace	Microsoft Corporation	06.05.2011	6,04MB	3.5.50.0
Microsoft Office Professional Plus 2010	Microsoft Corporation	15.02.2012		14.0.6029.1000
Microsoft Security Essentials	Microsoft Corporation	10.06.2012		4.0.1526.0
Microsoft Silverlight	Microsoft Corporation	10.06.2012	22,2MB	5.1.10411.0
Microsoft SOAP Toolkit 3.0	Microsoft Corporation	15.06.2011	1,04MB	3.0.1325.4
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	20.02.2010	1,72MB	3.1.0000
Microsoft Text-to-Speech Engine 4.0 (English)				
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053	Microsoft Corporation	28.07.2009	0,25MB	8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053	Microsoft Corporation	28.07.2009	0,25MB	8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable	Microsoft Corporation	17.01.2012	2,62MB	8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64)	Microsoft Corporation	15.06.2011	0,56MB	8.0.61000
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175	Microsoft Corporation	14.04.2011	0,57MB	8.0.51011
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148	Microsoft Corporation	02.12.2009	0,21MB	9.0.30729.4148
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148	Microsoft Corporation	28.07.2009	0,19MB	9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570	Microsoft Corporation	14.04.2011	0,77MB	9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570	Microsoft Corporation	14.04.2011	0,58MB	9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022	Microsoft Corporation	07.09.2011	1,42MB	9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729	Microsoft Corporation	27.03.2010	0,76MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17	Microsoft Corporation	01.12.2009	0,76MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148	Microsoft Corporation	09.04.2012	0,22MB	9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161	Microsoft Corporation	15.06.2011	0,77MB	9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022	Microsoft Corporation	29.05.2012	0,61MB	9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411	Microsoft Corporation	08.11.2009	1,46MB	9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729	Microsoft Corporation	14.04.2010	0,58MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	28.07.2009	0,58MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148	Microsoft Corporation	13.05.2011	0,22MB	9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161	Microsoft Corporation	15.06.2011	0,59MB	9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219	Microsoft Corporation	10.08.2011	13,8MB	10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219	Microsoft Corporation	10.08.2011	15,0MB	10.0.40219
Microsoft Windows Driver Kit 7.1.0.7600	Microsoft Corporation			7.1.0.7600
Microsoft Windows Driver Kit Documentation 7600.091201	Microsoft	27.05.2012	59,0MB	6.0.7600.0
Microsoft Windows Media Video 9 VCM				
Microsoft WSE 3.0 Runtime	Microsoft Corp.	04.06.2009	0,92MB	3.0.5305.0
Microsoft Xbox 360 Accessories 1.2	Microsoft	10.04.2011	7,82MB	1.20.146.0
Microsoft_VC80_ATL_x86				
Microsoft_VC80_CRT_x86				
Microsoft_VC80_MFC_x86				
Microsoft_VC80_MFCLOC_x86				
Microsoft_VC90_ATL_x86				
MKVtoolnix 2.9.0	Moritz Bunkus			2.9.0
MONOGRAM AMR Splitter/Decoder (remove only)				
Mozilla Firefox 14.0 (x86 de)	Mozilla			14.0
Mozilla Maintenance Service	Mozilla			14.0
MSI Afterburner 2.2.1	MSI Co., LTD			2.2.1
MSI Kombustor v1.0.0	MSI Co., LTD	15.05.2010		
MSXML 4.0 SP2 (KB927978)	Microsoft Corporation	04.08.2009	1,24MB	4.20.9841.0
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	04.08.2009	1,28MB	4.20.9870.0
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	25.11.2009	1,43MB	4.20.9876.0
MSXML 4.0 SP2 Parser and SDK	Microsoft Corporation	17.01.2010	37,00KB	4.20.9818.0
MTP Porting Kit	Microsoft Corp	29.05.2012	15,0MB	12.0.0
Multi Export Audio	Phil Pendlebury	14.01.2012	3,23MB	5.91.214
MusicLab RealGuitar 2.0	MusicLab, Inc.	01.01.1970		
Mz Vista Force v2.2	Mz Ultimate Tools	26.06.2009		2.2
Native Instruments Absynth 5				
Native Instruments Akoustik Piano				
Native Instruments Controller Editor				
Native Instruments Guitar Rig 4				
Native Instruments Kontakt 4				
Native Instruments Kontakt 5				
Native Instruments Kore 2				
Native Instruments Kore 2 Controller Driver				
Native Instruments Service Center				
Nero 11 Full Repack v3 + Toolkit				
NextUp.com-NeoSpeech Kate16 Voice	NextUp.com	29.11.2009	232MB	3.01.0000
NextUp.com-NeoSpeech Paul16 Voice	NextUp.com	29.11.2009	232MB	3.01.0000
nHancer	KSE	08.05.2010		2.5.0900
NVIDIA 3D Vision Controller-Treiber 301.42	NVIDIA Corporation	10.06.2012		301.42
NVIDIA 3D Vision Treiber 301.42	NVIDIA Corporation	10.06.2012		301.42
NVIDIA CUDA Toolkit v4.0 (64 bit)	NVIDIA Corporation	25.05.2012	777MB	4.00.1500.0000
NVIDIA Drivers	NVIDIA Corporation			1.3
NVIDIA Endless City demo	NVIDIA Corporation			1.0
NVIDIA GPU Computing SDK 4.2	NVIDIA Corporation			4.2
NVIDIA Grafiktreiber 301.42	NVIDIA Corporation	10.06.2012		301.42
NVIDIA Performance	NVIDIA Corporation	19.03.2012		6.5
NVIDIA PhysX	NVIDIA Corporation	18.03.2012	90,5MB	9.12.0213
NVIDIA PhysX Plug-in for Autodesk Maya 2012 64 bit	NVIDIA Corporation	09.04.2012	152,9MB	2.60.0216.1828
NVIDIA System Monitor	NVIDIA Corporation	19.03.2012		6.5
NVIDIA Update 1.8.15	NVIDIA Corporation	10.06.2012		1.8.15
O3D Plugin	Google	30.11.2011	7,65MB	0.1.42.3
OnLive	OnLive			
OpenAL				
OpenSource AVI Splitter (remove only)				
OpenSource DTS/AC3/DD+ Source Filter (remove only)				
OpenSource Flash Video Splitter (remove only)				
Opera 11.64	Opera Software ASA			11.64.1403
oZone3D.Net FluidMark v1.1.1	oZone3D.Net	03.02.2010		
oZone3D.Net FurMark v1.7.0	oZone3D.Net	07.03.2010		
Pazera Free Audio Extractor 1.4	Jacek Pazera	11.01.2012		1.4
PCMark Vantage	Futuremark Corporation	02.03.2010		1.0.2.1
Perfectly Clear Plugin 1.5.5	Athentech			1.5.5
PhaseOut 5.4.1	Newplanet.it s.r.l.			
PhotoKit Color 2 Plug-In Module				
Picasa 3	Google, Inc.			3.8
PL-2303 USB-to-Serial	Prolific Technology INC	04.01.2011		1.1.0
PowerISO				
Prezi Desktop	Prezi Inc	28.10.2010		3.083
Promixis Girder 5.0.13.550	Promixis, LLC	02.02.2011		
Prosoniq OrangeVocoder v1.4				
PTGui Pro Trial 9.0.4	New House Internet Services B.V.			
PunkBuster Services	Even Balance, Inc.			0.991
Quick Batch File Compiler 3.15	AbyssMedia.com	18.02.2010		3.15
QuickTime	Apple Inc.	22.12.2011	73,0MB	7.70.80.34
Rapture3D 2.3.22 Game	Blue Ripple Sound	08.12.2009		
RealMedia (remove only)				
Reason 4.0.1	Propellerhead Software AB	01.12.2009		4.0.1
Recuva	Piriform			1.42
ReCycle v2.1				
redist	redist	16.01.2010	3,00MB	1.0.0.0
reFX Nexus 1.0.9		08.07.2009		
reFX Nexus 1.3.9		08.07.2009		
reFX Nexus VSTi RTAS v2.2.0		03.01.2010		
reFX quadraSID 1.6.0		03.12.2011		
Resource Tuner 1.99 R6	Heaventools Software	18.02.2010		1.99.6
Rob Papen Predator V1.1.0	RPCX			
Rob Papen RG 1.5 Multi-core	RPCX	06.05.2012		
Rob Papen SubBoomBass 1.0.3c	RPCX	21.09.2010		
Rockstar Games Social Club	Rockstar Games			1.0.9.5
Room EQ Wizard V5	John Mulcahy			
RouterControl 2.0				
Safari	Apple Inc.	11.06.2012	104,3MB	5.34.57.2
SeaTools for Windows	Seagate Technology	29.06.2009	23,0MB	1.1.1.0
SHOUTcast Source (remove only)				
Sonalksis Plug-Ins for Windows 2.00	Sonalksis	18.12.2009				
Steam	Valve Corporation	05.03.2010	1,49MB	1.0.0.0
Steinberg Cubase 5	Steinberg Media Technologies GmbH	01.04.2012	292MB	5.1.2
Steinberg Drum Loop Expansion 01	Steinberg Media Technologies GmbH	01.04.2012	425MB	1.0.0.1
Steinberg Groove Agent ONE Content	Steinberg Media Technologies GmbH	01.04.2012	142,2MB	1.0.0.003
Steinberg HALion VSTi DXi v3.5		08.09.2011		
Steinberg HALionOne	Steinberg Media Technologies GmbH	14.06.2010	388MB	1.1.0.457
Steinberg HALionOne Additional Content Set 01	Steinberg Media Technologies GmbH	01.04.2012	941MB	1.0.0.001
Steinberg HALionOne Expression Set	Steinberg Media Technologies GmbH	01.04.2012	232MB	1.0.1.0
Steinberg HALionOne GM Drum Set	Steinberg Media Technologies GmbH	14.06.2010	23,9MB	1.0.1.457
Steinberg HALionOne GM Set	Steinberg Media Technologies GmbH	14.06.2010	63,6MB	1.0.1.457
Steinberg HALionOne Pro Set	Steinberg Media Technologies GmbH	14.06.2010	123,2MB	1.0.1.457
Steinberg HALionOne Studio Drum Set	Steinberg Media Technologies GmbH	14.06.2010	48,1MB	1.0.1.457
Steinberg HALionOne Studio Set	Steinberg Media Technologies GmbH	14.06.2010	112,9MB	1.0.1.457
Steinberg Hypersonic v1.0				
Steinberg LoopMash Content	Steinberg Media Technologies GmbH	01.04.2012	613MB	1.0.0.005
Steinberg Nuendo 4	Steinberg Media Technologies GmbH	14.06.2010	224MB	4.3.0.371
Steinberg Nuendo Expansion Kit	Steinberg Media Technologies GmbH	14.06.2010	175,8MB	4.2.2.274
Steinberg REVerence Content 01	Steinberg Media Technologies GmbH	01.04.2012	169,0MB	1.0.0.006
Steinberg WaveLab version 6.11	Copyright (C) 1995-2009 Steinberg Media Technologies GmbH			
Stereoscopic Player	3dtv.at	07.02.2012	15,5MB	1.7.7
Studio Instruments 1.0	Cakewalk Music Software	30.03.2011		1.0
SYLTEditor				
Synthesia (remove only)				
System Requirements Lab				
System Requirements Lab for Intel	Husdawg, LLC	04.06.2012	0,75MB	4.5.5.0
TeamPlayer 2.2.0	WunderWorks	27.05.2012		2.2.0
Topaz Adjust 4	Topaz Labs	26.06.2011		4.1.0
Topaz Adjust 4 (64-bit)				
Topaz Adjust 4 (64-bit)	Topaz Labs	26.06.2011		4.1.0
Topaz Clean 3	Topaz Labs	26.06.2011		3.0.2
Topaz Clean 3 (64-bit)				
Topaz Clean 3 (64-bit)	Topaz Labs	26.06.2011		3.0.2
Topaz DeJpeg 4	Topaz Labs	26.06.2011		4.0.2
Topaz DeJpeg 4 (64-bit)				
Topaz DeJpeg 4 (64-bit)	Topaz Labs	26.06.2011		4.0.2
Topaz DeNoise 5	Topaz Labs	26.06.2011		5.0.1
Topaz DeNoise 5 (64-bit)				
Topaz DeNoise 5 (64-bit)	Topaz Labs	26.06.2011		5.0.1
Topaz Detail 2	Topaz Labs	26.06.2011		2.0.5
Topaz Detail 2 (64-bit)				
Topaz Detail 2 (64-bit)	Topaz Labs	26.06.2011		2.0.5
Topaz Fusion Express 2	Topaz Labs	26.06.2011		2.0.1
Topaz Fusion Express 2 (64-bit)				
Topaz Fusion Express 2 (64-bit)	Topaz Labs	26.06.2011		2.0.1
Topaz ReMask 2	Topaz Labs	26.06.2011		2.0.5
Topaz ReMask 2 (64-bit)				
Topaz ReMask 2 (64-bit)	Topaz Labs	26.06.2011		2.0.5
Topaz Simplify 3	Topaz Labs	26.06.2011		3.0.2
Topaz Simplify 3 (64-bit)				
Topaz Simplify 3 (64-bit)	Topaz Labs	26.06.2011		3.0.2
Total Commander (Remove or Repair)	C. Ghisler & Co.			7.50 PB4 (Public Beta 4)
Trapcode 3DStroke				
Trapcode Particular				
Trapcode Starglow				
Trapcode Suite 64-bit	Red Giant Software	26.08.2011		11.0
Trojan Remover 6.8.3	Simply Super Software	24.02.2012		6.8.3
TuneUp Utilities				
Tunngle beta	Tunngle.net GmbH	01.05.2010		
Tweaking.com - Windows Repair (All in One)	Tweaking.com			1.7.3
Ubisoft Game Launcher	UBISOFT	13.03.2012		1.0.0.0
UltraISO Premium V9.52	EZB Systems, Inc.	24.02.2012		9.5.2.2836
Uninstall 1.0.0.1		10.02.2011		
Unity Web Player	Unity Technologies ApS			2.6.1f3_31223
USB TV Device Driver	Ihr Firmenname	26.01.2011		1.00.0000
USB Vibration Joystick				2002.10.8
VIA Plattform-Geräte-Manager	VIA Technologies, Inc.	17.04.2012		1.38
Vid-Saver	215 Apps			1.14.149.149
Virtual MIDI Keyboard				
Visual C++ 8.0 Runtime Setup Package (x64)	GRISOFT, s.r.o.	29.05.2009	2,25MB	8.0.0.35
VLC media player 2.0.1	VideoLAN			2.0.1
VocALign Pro 4 VST	Synchro Arts Ltd	15.05.2011	5,52MB	4.00.0000
VocALign Project	Synchro Arts Ltd	19.11.2009	2,44MB	2.9.1
Waves Complete v8.0.11		01.04.2012		
Waves Complete V9r1	Waves	01.04.2012		9.0.1
Waves Complete VST RTAS TDM v7.1.16		29.04.2011		
Waves Mercury Bundle	Team AiR			5.0
Windows Installer 4.5 SDK	Microsoft Corporation	09.12.2009	9,21MB	4.5.6001.0
Windows Live Essentials	Microsoft Corporation	20.02.2010		14.0.8089.0726
Windows Live ID Sign-in Assistant	Microsoft Corporation	16.11.2010	10,0MB	6.500.3165.0
Windows Live Sync	Microsoft Corporation	20.02.2010	2,79MB	14.0.8089.726
Windows Live-Uploadtool	Microsoft Corporation	20.02.2010	0,22MB	14.0.8014.1029
Windows Media Player Firefox Plugin	Microsoft Corp	12.03.2010	0,29MB	1.0.0.8
Windows Mobile-Gerätecenter: Treiberupdate	Microsoft Corporation	18.03.2012	44,4MB	6.1.6965.0
Windows-Treiberpaket - Sony PS Vita (libusb0) LibUsbDevices  (08/27/2006 0.1.12.0)	Sony PS Vita			08/27/2006 0.1.12.0
WinPcap 4.1.2	CACE Technologies	08.08.2010		4.1.0.2001
WinRAR				
WinRAR archiver				
WinSCP 4.2.7	Martin Prikryl	31.05.2010		4.2.7
WinZip 16.0	WinZip Computing, S.L. 	27.04.2012	88,2MB	16.0.9715
WordBuilder	East West	09.02.2010	19,5MB	1.1.21
Xbox360 Dump Extractor Tool GUI 1.1	GiRLz			1.1
Xilisoft Video Converter Ultimate	Xilisoft			7.0.1.1219
XisoManager v 1.3.1	Home made :)			
XMind	XMind Ltd.			3.2.1
XNote Stopwatch	dnSoft Research Group			1.66
Zoom Player (remove only)				
Zoom Player Home Max 7.00				7.00
«Serious Sam 3 Full Update» (Updated on December 1 2011)	CROTEAM	08.12.2011		
µTorrent				3.2.0

hijackthis.log:
[CODE]
HiJackthis Logfile:

Code:

ATTFilter

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:01:02, on 13.06.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\DisplayFusion\DisplayFusionAppHook.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Users\Alex\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://search.searchcompletion.com/?si=10197&home=1
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.2.2:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AdblockIE - {90EFF544-3981-4d46-85C9-C0361D0931D6} - mscoree.dll (file missing)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Complitly - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [DisplayFusion] "C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe"
O4 - HKUS\S-1-5-21-2380579043-224327424-4130863296-1018\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2380579043-224327424-4130863296-1018\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre6\bin\npjpi160_29.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre6\bin\npjpi160_29.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Maxtor\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: E-MU Audio Service (emaudsv) - Unknown owner - C:\Windows\system32\emaudsv.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nHancer Support (nHancer) - KSE - Korndörfer Software Engineering - C:\Program Files\nHancer\nHancerService.exe
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Synchro Arts License Manager - Synchro Arts Ltd - C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Volumeschattenkopie (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13054 bytes

--- --- ---

kira · 13.06.2012, 19:07

1.
Nur scannen/prüfen!
MBR mit aswMBR von Avast prüfen

Lade aswMBR.exe von Avast herunter und speichere das Tool auf deinem Desktop (nicht woanders hin).
XP Benutzer: Doppelklick auf die aswMBR.exe, um das Tool zu starten.
Vista und Windows 7 Benutzer: Rechtsklick auf die aswMBR.exe und Als Administrator starten wählen.
Es wird sich ein Eingabe-Fenster mit einigen Angaben öffnen.

Klicke Scan, um den Suchlauf zu starten.

Wenn der Scan beendet ist, was mit Scan finished sucessfull! gemeldet wird, klicke Save log, um das Logfile zu speichern.
Poste mir den Inhalt von aswASW.log vom Desktop hier in den Thread.

2.
Schliesse alle Programme einschliesslich Internet Explorer und fixe mit Hijackthis die Einträge aus der nachfolgenden Codebox (HijackThis starten→ "Do a system scan only"→ Einträge auswählen→ Häckhen setzen→ "Fix checked" klicken→ PC neu aufstarten):
HijackThis erstellt ein Backup, Falls bei "Fixen" etwas schief geht, kann man unter "View the list of backups"- die Objekte wiederherstellen

Code:

ATTFilter

O4 - HKUS\S-1-5-21-2380579043-224327424-4130863296-1018\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present

3.

Zitat:

Achtung wichtig!:
Falls Du selber im Logfile Änderungen vorgenommen hast, musst Du durch die Originalbezeichnung ersetzen und so in Script einfügen! sonst funktioniert nicht!
(Benutzerordner, dein Name oder sonstige Änderungen durch X, Stern oder andere Namen ersetzt)

Fixen mit OTL

Starte die OTL.exe.
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Kopiere folgendes Skript (also - nach dem "Code", alles was in der Codebox steht! - (also beginnend mit :OTL und am Ende [emptytemp] ohne "code"!) :

Code:

ATTFilter

:OTL
DRV - (zogvkg) -- C:\Windows\SysWOW64\drivers\gmiq.sys ()
DRV - (ncfjxloa) -- C:\Windows\SysWOW64\drivers\puzh.sys ()
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes,DefaultScope = {BAE90E52-807D-4B94-97CB-BF7C5A54B04B}
IE - HKCU\..\SearchScopes\{BAE90E52-807D-4B94-97CB-BF7C5A54B04B}: "URL" = hxxp://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1BF0905E-F36D-4C26-B6DE-EA3A52101980}" =-
"{A5B763A0-AAA1-4FB4-A44E-DD49CAED9517}" =-

:Files
ipconfig /flushdns /c

:Commands
[purity]
[emptytemp]

und füge es hier ein:
Schließe alle Programme.
Klicke auf den Fix Button.
Klick auf .
OTL verlangt einen Neustart. Bitte zulassen.
Nach dem Neustart findest Du ein Textdokument.
Kopiere den Inhalt hier in Code-Tags in Deinen Thread.

4.
erneut einen Scan mit OTL:

Doppelklick auf die OTL.exe
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Oben findest Du ein Kästchen mit Ausgabe.
Wähle bitte Standard-Ausgabe
Unter Extra-Registrierung wähle bitte Benutze SafeList.
Mache Häckchen bei LOP- und Purity-Prüfung.
Klicke nun auf Scan links oben.
Wenn der Scan beendet wurde werden zwei Logfiles erstellt.
Du findest die Logfiles auf Deinem Desktop => OTL.txt und Extras.txt
Poste die Logfiles in Code-Tags hier in den Thread.

jgswcrnk · 13.06.2012, 21:09

zu 1. :
aswMBR.txt:

Code:

ATTFilter

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-13 19:28:06
-----------------------------
19:28:06.745    OS Version: Windows x64 6.1.7601 Service Pack 1
19:28:06.745    Number of processors: 4 586 0x170A
19:28:06.746    ComputerName: SHOGUN  UserName: Alex
19:28:07.718    Initialize success
19:28:19.939    AVAST engine download error: 0
19:28:27.868    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
19:28:27.871    Disk 0 Vendor: ST350032 SN06 Size: 476940MB BusType: 3
19:28:27.873    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-1
19:28:27.876    Disk 1 Vendor: ST375064 3.AE Size: 715404MB BusType: 3
19:28:27.878    Disk 2  \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-2
19:28:27.881    Disk 2 Vendor: SAMSUNG_ ZZ10 Size: 381554MB BusType: 3
19:28:27.884    Disk 3  \Device\Harddisk3\DR3 -> \Device\Ide\IAAStorageDevice-3
19:28:27.887    Disk 3 Vendor: WDC_WD20 05.0 Size: 1907729MB BusType: 3
19:28:27.903    Disk 0 MBR read successfully
19:28:27.907    Disk 0 MBR scan
19:28:27.910    Disk 0 Windows 7 default MBR code
19:28:27.913    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS       476937 MB offset 63
19:28:27.926    Disk 0 scanning C:\Windows\system32\drivers
19:28:36.079    Service scanning
19:28:46.522    Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
19:28:49.807    Modules scanning
19:28:49.812    Disk 0 trace - called modules:
19:28:49.833    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys splu.sys hal.dll 
19:28:49.837    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009ef2060]
19:28:49.842    3 CLASSPNP.SYS[fffff88001fc243f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa80078f6050]
19:28:49.846    Scan finished successfully
19:29:11.217    Disk 0 MBR has been saved successfully to "C:\Users\Alex\Desktop\MBR.dat"
19:29:11.272    The log file has been saved successfully to "C:\Users\Alex\Desktop\aswMBR.txt"

zu 2. :
habe den fix geamchte allerings waren diese zwei zeile nicht mehr da:

Code:

ATTFilter

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present

zu 3. :

06132012_194603.log

Code:

ATTFilter

All processes killed
========== OTL ==========
Service zogvkg stopped successfully!
Service zogvkg deleted successfully!
C:\Windows\SysWOW64\drivers\gmiq.sys moved successfully.
Service ncfjxloa stopped successfully!
Service ncfjxloa deleted successfully!
C:\Windows\SysWOW64\drivers\puzh.sys moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BAE90E52-807D-4B94-97CB-BF7C5A54B04B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BAE90E52-807D-4B94-97CB-BF7C5A54B04B}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\PromptOnSecureDesktop deleted successfully.
Unable to delete ADS C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy .
Unable to delete ADS C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy .
Unable to delete ADS C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9 .
Unable to delete ADS C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9 .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BF0905E-F36D-4C26-B6DE-EA3A52101980} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1BF0905E-F36D-4C26-B6DE-EA3A52101980}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A5B763A0-AAA1-4FB4-A44E-DD49CAED9517} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A5B763A0-AAA1-4FB4-A44E-DD49CAED9517}\ not found.
========== FILES ==========
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Alex\Desktop\cmd.bat deleted successfully.
C:\Users\Alex\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: Alex
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 72719505 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 856432 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 706 bytes
 
User: All Users
 
User: AppData
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: dimitri
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Mcx1-SHOGUN
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Public
 
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6542 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 99385 bytes
RecycleBin emptied: 273364 bytes
 
Total Files Cleaned = 71,00 mb
 
 
OTL by OldTimer - Version 3.2.48.0 log created on 06132012_194603

Files\Folders moved on Reboot...
C:\Users\Alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\Alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\522OXKGM\117210-kein-anderer-browser-hat-verbindung-internet-aussser-ie[1].htm moved successfully.

Registry entries deleted on Reboot...

zu 4. :

OTL.txt:
OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 13.06.2012 20:06:36 - Run 6
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Users\Alex\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 5,97 Gb Available Physical Memory | 74,63% Memory free
16,00 Gb Paging File | 13,91 Gb Available in Paging File | 86,93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 51,46 Gb Free Space | 11,05% Space Free | Partition Type: NTFS
Drive G: | 372,61 Gb Total Space | 32,51 Gb Free Space | 8,73% Space Free | Partition Type: NTFS
Drive H: | 349,32 Gb Total Space | 27,36 Gb Free Space | 7,83% Space Free | Partition Type: NTFS
Drive I: | 349,32 Gb Total Space | 225,74 Gb Free Space | 64,62% Space Free | Partition Type: NTFS
Drive L: | 931,46 Gb Total Space | 260,41 Gb Free Space | 27,96% Space Free | Partition Type: NTFS
 
Computer Name: SHOGUN | User Name: Alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2012.06.13 09:22:01 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
PRC - [2012.06.11 18:45:28 | 000,550,872 | ---- | M] (Binary Fortress Software) -- C:\Program Files (x86)\DisplayFusion\DisplayFusionAppHook.exe
PRC - [2012.05.15 12:48:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012.05.15 02:21:40 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012.04.04 07:53:56 | 000,815,512 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2012.03.13 09:47:52 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2011.10.17 15:12:52 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011.10.17 15:12:48 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2010.10.04 14:13:30 | 000,064,512 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe
PRC - [2010.03.23 16:15:58 | 000,704,760 | ---- | M] (Tunngle.net GmbH) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe
PRC - [2008.02.22 10:01:58 | 000,175,488 | ---- | M] (Synchro Arts Ltd) -- C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2012.06.13 13:11:22 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\a501b7960f6c6e2e39162b83f3303aaa\System.Web.ni.dll
MOD - [2012.06.13 13:11:12 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012.06.13 12:53:44 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\0767c3bc7cd93daf38517843d29ce808\IAStorUtil.ni.dll
MOD - [2012.06.13 12:41:39 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012.06.10 19:10:30 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012.06.10 19:10:29 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012.06.10 19:10:29 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\9eed0fcdc582550a65536d1150b49574\IAStorCommon.ni.dll
MOD - [2012.06.10 19:09:01 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012.06.10 19:08:57 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012.06.10 14:19:31 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012.06.10 14:19:26 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2010.11.13 01:26:08 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.07.14 19:58:10 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - [2012.04.09 17:31:50 | 001,431,888 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2012.03.26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012.03.26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011.09.27 21:04:08 | 000,359,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2010.10.06 23:40:30 | 000,026,624 | ---- | M] (E-MU Systems) [Auto | Running] -- C:\Windows\SysNative\emaudsv.exe -- (emaudsv)
SRV:64bit: - [2010.05.02 17:44:30 | 000,039,424 | ---- | M] (KSE - Korndörfer Software Engineering) [Auto | Running] -- C:\Program Files\nHancer\nHancerService.exe -- (nHancer)
SRV:64bit: - [2009.07.17 15:31:34 | 004,948,992 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012.06.13 12:38:38 | 000,257,224 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.06.06 00:05:03 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.05.15 12:48:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.05.15 02:21:40 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012.03.13 09:47:52 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012.02.09 13:13:24 | 002,143,552 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011.10.17 15:12:52 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2011.09.19 17:59:40 | 000,278,336 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2011.03.01 18:29:58 | 000,130,976 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2010.12.17 17:27:51 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2010.10.04 14:13:30 | 000,064,512 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc)
SRV - [2010.06.25 19:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2010.03.23 16:15:58 | 000,704,760 | ---- | M] (Tunngle.net GmbH) [Auto | Running] -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.16 15:10:16 | 000,332,720 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.02.22 10:01:58 | 000,175,488 | ---- | M] (Synchro Arts Ltd) [Auto | Running] -- C:\Program Files (x86)\Common Files\Synchro Arts Shared\License.exe -- (Synchro Arts License Manager)
SRV - [2007.08.23 14:53:42 | 000,571,160 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Maxtor\Schedule2\schedul2.exe -- (AcrSch2Svc)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder iPod Edition x64\SysInfoX64.sys -- (CrystalSysInfo)
DRV:64bit: - [2012.03.20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.03.09 10:57:36 | 000,023,816 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.01.13 10:07:32 | 000,106,408 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acsock64.sys -- (acsock)
DRV:64bit: - [2011.11.15 11:20:30 | 000,167,936 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xhcdrv.sys -- (xhcdrv)
DRV:64bit: - [2011.11.15 11:20:30 | 000,075,776 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ViaHub3.sys -- (VUSB3HUB)
DRV:64bit: - [2011.11.03 03:01:00 | 000,056,208 | ---- | M] (Rovi Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2011.10.17 14:55:32 | 000,559,384 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.09.02 08:30:46 | 000,042,776 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV:64bit: - [2011.09.02 08:30:36 | 000,060,696 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2011.09.02 08:30:24 | 000,066,840 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2011.09.02 08:30:02 | 000,032,536 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV:64bit: - [2011.08.01 16:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011.05.10 08:06:08 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 15:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 15:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.20 13:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.10.06 23:42:06 | 000,215,000 | ---- | M] (E-MU Systems) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\emusba10.sys -- (emusba10)
DRV:64bit: - [2010.09.21 10:07:08 | 000,312,184 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ArcSec.sys -- (ArcSec)
DRV:64bit: - [2010.07.29 00:25:10 | 000,029,720 | ---- | M] (Initio Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ivusb.sys -- (ivusb)
DRV:64bit: - [2010.06.25 19:07:26 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2010.06.16 22:33:40 | 000,037,888 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2010.05.05 07:33:00 | 000,811,520 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SmiUsbGrabber3C.sys -- (SMIGrabber3C)
DRV:64bit: - [2010.03.31 03:10:18 | 000,450,048 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTL8187B.sys -- (RTL8187B)
DRV:64bit: - [2010.02.05 15:30:40 | 000,086,584 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV:64bit: - [2009.11.04 17:58:03 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009.09.28 09:22:00 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009.09.23 10:42:58 | 000,033,856 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2009.09.16 07:02:42 | 000,031,232 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle)
DRV:64bit: - [2009.09.15 14:59:30 | 000,042,088 | ---- | M] (NVIDIA Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvoclk64.sys -- (nvoclk64)
DRV:64bit: - [2009.09.11 12:49:18 | 000,076,552 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:64bit: - [2009.09.11 12:49:08 | 000,015,880 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:64bit: - [2009.09.11 12:48:46 | 000,041,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:64bit: - [2009.09.11 12:48:36 | 000,026,248 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:64bit: - [2009.09.01 17:58:37 | 000,207,872 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\ithsgt.sys -- (ithsgt)
DRV:64bit: - [2009.09.01 17:58:37 | 000,021,504 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\lilsgt.sys -- (lilsgt)
DRV:64bit: - [2009.08.13 22:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009.07.29 21:02:42 | 000,031,744 | ---- | M] (hxxp://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:43 | 000,060,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\61883.sys -- (61883)
DRV:64bit: - [2009.07.14 02:06:43 | 000,048,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avc.sys -- (Avc)
DRV:64bit: - [2009.07.14 02:06:42 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msdv.sys -- (MSDV)
DRV:64bit: - [2009.06.10 22:35:36 | 000,867,328 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009.04.06 09:13:46 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2009.04.06 09:13:46 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2009.03.15 12:32:56 | 000,085,424 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2009.02.09 04:29:00 | 000,176,680 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv61xx.sys -- (mv61xx)
DRV:64bit: - [2008.11.12 08:51:34 | 000,022,568 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mrdd.sys -- (mrdd)
DRV:64bit: - [2008.06.17 10:22:24 | 000,040,464 | ---- | M] (H+H Software GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vcd10bus.sys -- (vcd10bus)
DRV:64bit: - [2008.01.27 19:31:00 | 000,013,824 | ---- | M] (nerds.de) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\loopbe1.sys -- (LoopBeMidi1) nerds.de LoopBe1 - Internal Midi Port SvcDesc(WDM)
DRV:64bit: - [2007.08.20 12:05:02 | 000,012,744 | ---- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Entech64.sys -- (ENTECH64)
DRV:64bit: - [2007.01.23 10:20:34 | 000,040,216 | ---- | M] (H+H Software GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vcd9bus.sys -- (vcd9bus)
DRV:64bit: - [2006.11.16 16:58:46 | 000,031,248 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\synUSB64.sys -- (SynasUSB)
DRV:64bit: - [2006.10.31 17:23:42 | 000,015,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2005.10.28 11:38:12 | 000,493,440 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ZD1211BU.sys -- (ZD1211BU(ZyDAS)) ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS)
DRV:64bit: - [2005.10.04 15:38:50 | 000,354,048 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ZD1211U.sys -- (ZD1211U(ZyDAS)) ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS)
DRV - [2011.12.12 18:31:38 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2011.06.02 11:08:34 | 000,017,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2009.09.01 17:58:41 | 000,162,432 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysWOW64\drivers\ithsgt.sys -- (ithsgt)
DRV - [2009.09.01 17:58:41 | 000,012,032 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysWOW64\drivers\lilsgt.sys -- (lilsgt)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007.03.20 11:33:26 | 000,028,672 | ---- | M] (hxxp://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\libusb0.sys -- (libusb0)
DRV - [2005.08.02 14:10:14 | 000,032,512 | ---- | M] (CACE Technologies) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\drivers\npf.sys -- (NPF)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = 
IE - HKCU\..\SearchScopes,DefaultScope = {033009A2-82B6-4D4D-80AB-6CEB39A4C66B}
IE - HKCU\..\SearchScopes\{033009A2-82B6-4D4D-80AB-6CEB39A4C66B}: "URL" = hxxp://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
IE - HKCU\..\SearchScopes\{0A301480-201B-4B48-B937-00595733ABF3}: "URL" = hxxp://handy-preis.net/search/{searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_257.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0:  File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@research.microsoft.com/HDView: C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll (Microsoft Research)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll (OnLive)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012.06.06 14:09:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.03.17 01:08:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.06.12 00:27:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions
[2012.06.12 00:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions\celtx@celtx.com
[2012.06.12 00:28:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Firefox\Profiles\qeoh0y3x.default\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012.06.12 00:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\distribution\extensions
[2012.06.06 00:06:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.06.06 00:36:57 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: O3D Plugin (Enabled) = C:\Users\Alex\AppData\Roaming\Mozilla\plugins\npo3dautoplugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: HD View (Enabled) = C:\Program Files (x86)\Microsoft Research\HD View\nphdview.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: OnLive Game Client Detector (Enabled) = C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
 
O1 HOSTS File: ([2012.05.17 18:00:18 | 000,002,368 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 26 more lines...
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Alex\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [DisplayFusion] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay =  [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre6\bin\npjpi160_29.dll (Sun Microsystems, Inc.)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} hxxp://lads.myspace.com/upload/MySpaceUploader2.cab (MySpace Uploader Control)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072912BE-B184-4610-BAA0-56300DB32A4A}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A6F9897-B41D-4F4B-85C2-73A680536228}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A89F0EFD-D773-491C-8FAA-CE1403EF6523}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AFB761EB-8939-4F71-97A2-8DC824BFB587}: DhcpNameServer = 192.168.2.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3431957-2AC6-4042-8CA0-D90B6DCAD96B}: DhcpNameServer = 192.168.2.2
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O24 - Desktop WallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Alex\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.09.22 04:35:20 | 000,000,061 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2012.06.13 19:27:54 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\Alex\Desktop\aswMBR.exe
[2012.06.13 13:55:15 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.06.13 11:40:41 | 000,000,000 | ---D | C] -- C:\5db4ad4aba3fa4bf016d5688340e
[2012.06.13 11:09:46 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012.06.13 11:09:45 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.06.13 11:09:44 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012.06.13 11:09:44 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.06.13 11:09:41 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012.06.13 11:09:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.06.13 11:09:41 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012.06.13 11:09:41 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.06.13 11:09:37 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012.06.13 11:09:37 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.06.13 11:09:36 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012.06.13 11:09:35 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012.06.13 11:09:35 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.06.13 09:34:18 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012.06.13 09:34:18 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012.06.13 09:34:18 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012.06.13 09:34:13 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012.06.13 09:34:09 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012.06.13 09:34:09 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012.06.13 09:34:07 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012.06.13 09:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012.06.13 09:33:57 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012.06.13 09:33:55 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012.06.13 09:26:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012.06.13 09:22:19 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.13 00:09:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Malwarebytes
[2012.06.13 00:09:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.06.12 23:32:57 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2012.06.12 17:21:15 | 000,000,000 | ---D | C] -- C:\.fseventsd
[2012.06.12 10:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\af0.net
[2012.06.12 00:31:36 | 000,000,000 | ---D | C] -- C:\SMCLpav
[2012.06.12 00:28:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012.06.11 21:13:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Safari
[2012.06.11 20:59:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Mozilla
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PCPro
[2012.06.11 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\PC Cleaners
[2012.06.11 19:30:38 | 005,276,432 | ---- | C] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.11 19:30:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PC1Data
[2012.06.10 23:38:01 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Mozilla
[2012.06.10 23:37:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012.06.10 23:37:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.06.10 23:10:54 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2012.06.10 23:10:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2012.06.10 23:10:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2012.06.10 18:16:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012.06.10 18:16:02 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012.06.10 16:43:18 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012.06.10 00:52:08 | 006,151,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.06.10 00:52:08 | 003,149,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.06.10 00:52:08 | 002,561,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.06.10 00:52:08 | 000,118,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.06.10 00:52:08 | 000,063,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.06.10 00:51:50 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.06.10 00:51:50 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.06.10 00:41:23 | 025,743,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.06.10 00:41:23 | 025,248,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.06.10 00:41:23 | 019,607,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.06.10 00:41:23 | 018,044,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.06.10 00:41:23 | 017,551,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.06.10 00:41:23 | 015,322,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.06.10 00:41:23 | 010,194,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.06.10 00:41:23 | 008,139,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.06.10 00:41:23 | 008,105,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.06.10 00:41:23 | 005,982,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.06.10 00:41:23 | 002,881,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,741,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.06.10 00:41:23 | 002,681,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.06.10 00:41:23 | 002,524,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.06.10 00:41:23 | 002,445,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.06.10 00:41:23 | 002,368,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.06.10 00:41:23 | 000,949,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.06.10 00:41:23 | 000,818,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.06.10 00:41:23 | 000,364,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.06.10 00:41:23 | 000,246,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.06.10 00:41:23 | 000,202,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.06.09 15:35:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Max Payne Savegames
[2012.06.09 15:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne
[2012.06.07 14:02:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2012.06.07 14:02:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2012.06.06 19:12:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rockstar Games
[2012.06.06 17:54:41 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\regbak
[2012.06.06 17:06:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2012.06.06 14:44:16 | 000,046,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda32.sys
[2012.06.06 14:17:07 | 000,501,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvuhda6.exe
[2012.06.06 14:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.06.06 13:50:33 | 000,268,744 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:28 | 000,189,384 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:28 | 000,188,872 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:26 | 000,637,848 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:37:47 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012.06.06 13:37:47 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012.06.06 10:17:26 | 000,023,816 | ---- | C] (CPUID) -- C:\Windows\SysNative\drivers\cpuz135_x64.sys
[2012.06.06 10:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2012.06.03 23:19:50 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.06.02 12:59:01 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2012.06.01 23:48:17 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Samsung
[2012.06.01 23:48:10 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Samsung
[2012.06.01 23:48:08 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\samsung
[2012.06.01 23:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012.06.01 23:24:45 | 000,054,272 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\libusb0.dll
[2012.06.01 23:24:45 | 000,042,496 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\libusb0.dll
[2012.06.01 23:24:45 | 000,031,744 | ---- | C] (hxxp://libusb-win32.sourceforge.net) -- C:\Windows\SysNative\drivers\libusb0.sys
[2012.06.01 23:21:04 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.06.01 23:20:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MarkAny
[2012.06.01 23:20:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2012.06.01 22:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Greyfirst
[2012.05.30 10:01:27 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Greyfirst
[2012.05.30 10:01:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celtx
[2012.05.30 10:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Celtx
[2012.05.29 19:16:08 | 000,000,000 | ---D | C] -- C:\WMSDK
[2012.05.29 18:47:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\HDAudio
[2012.05.29 12:39:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012.05.29 12:39:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA Precision X
[2012.05.29 12:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EVGA Precision X
[2012.05.29 00:36:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\WB Games
[2012.05.27 17:00:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft KitSetup
[2012.05.27 16:33:23 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Visual Studio 2008
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Sony Corporation
[2012.05.27 15:00:29 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\PS Vita
[2012.05.27 12:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WunderWorks
[2012.05.27 12:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WunderWorks
[2012.05.27 11:14:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xpadder
[2012.05.26 11:42:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\VocALignVST3
[2012.05.25 17:21:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Blackmagic Design
[2012.05.25 17:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA GPU Computing Toolkit
[2012.05.23 22:00:38 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XNote Stopwatch
[2012.05.23 22:00:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XNote Stopwatch
[2012.05.23 18:49:32 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | C] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.23 16:54:28 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Roaming\Common
[2012.05.23 16:35:09 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.23 14:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2012.05.22 23:06:09 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D565E85A-7602-4965-8B03-55D249C138D6}
[2012.05.22 23:05:20 | 000,000,000 | ---D | C] -- C:\ProgramData\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2012.05.22 23:04:55 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2012.05.22 17:18:21 | 000,000,000 | ---D | C] -- C:\Users\Alex\.MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
[2012.05.22 17:17:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MakeMKV
[2012.05.19 21:42:19 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Celemony
[2012.05.19 01:02:44 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\SPL Plug-Ins
[2012.05.19 01:02:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Plugin Alliance
[2012.05.19 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sound Performance Lab
[2012.05.19 00:32:52 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound Performance Lab
[2012.05.18 23:46:54 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iZotope
[2012.05.18 23:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Celemony
[2012.05.18 23:35:33 | 000,000,000 | ---D | C] -- C:\Program Files\Celemony
[2012.05.18 03:52:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\{C2686527-0D57-4F0B-ADAB-EE203CA30FC6}
[2012.05.18 02:56:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
[2012.05.18 01:45:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Untitled
[2012.05.18 01:32:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Fragmente
[2012.05.17 20:12:03 | 000,000,000 | ---D | C] -- C:\Users\Alex\Adobe Flash Builder 4.6
[2012.05.17 20:01:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
[2012.05.17 19:12:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.05.17 18:55:26 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
[2012.05.17 18:55:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Support Advisor
[2012.05.17 17:33:28 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.05.17 17:33:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Download Assistant
[2011.05.20 07:26:24 | 170,063,832 | ---- | C] (Frictional Games                                            ) -- C:\Users\Alex\AppData\Roaming\amnesia_tdd_1.2_update.exe
[28 C:\Windows\Fonts\*.tmp files -> C:\Windows\Fonts\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2012.06.13 20:04:51 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 20:04:51 | 000,013,232 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.06.13 19:56:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.06.13 19:56:31 | 2146,734,079 | -HS- | M] () -- C:\hiberfil.sys
[2012.06.13 19:55:22 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2012.06.13 19:32:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.06.13 19:29:11 | 000,000,512 | ---- | M] () -- C:\Users\Alex\Desktop\MBR.dat
[2012.06.13 19:27:54 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\Alex\Desktop\aswMBR.exe
[2012.06.13 12:38:38 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.06.13 12:38:37 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.06.13 12:37:37 | 000,000,484 | RHS- | M] () -- C:\Users\Alex\ntuser.pol
[2012.06.13 12:36:56 | 005,120,264 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012.06.13 12:32:49 | 000,000,132 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.06.13 10:13:14 | 000,027,690 | ---- | M] () -- C:\Users\Alex\Desktop\logs.7z
[2012.06.13 09:26:27 | 000,003,003 | ---- | M] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.13 09:22:01 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Desktop\OTL (1).exe
[2012.06.12 23:37:47 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012.06.11 21:23:04 | 012,039,454 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2012.06.11 21:23:04 | 004,035,054 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.06.11 21:23:04 | 003,706,692 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2012.06.11 21:23:04 | 003,320,392 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.06.11 21:23:04 | 000,007,118 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.06.11 19:30:15 | 005,276,432 | ---- | M] (PC Cleaners) -- C:\Windows\uninst.exe
[2012.06.10 18:16:59 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:06 | 000,007,020 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.06.10 17:37:25 | 000,103,211 | ---- | M] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | M] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 12:35:01 | 000,000,550 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2012.06.10 12:09:19 | 000,000,000 | ---- | M] () -- C:\netsh
[2012.06.10 12:08:45 | 000,000,000 | ---- | M] () -- C:\Users\Alex\netsh
[2012.06.10 10:43:38 | 001,666,641 | ---- | M] () -- C:\ProgramData\bdinstall.bin
[2012.06.10 01:57:09 | 000,381,062 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 01:49:21 | 000,076,522 | ---- | M] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.06 13:50:24 | 000,955,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npdeployJava1.dll
[2012.06.06 13:50:24 | 000,839,112 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012.06.06 13:50:24 | 000,268,744 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012.06.06 13:50:24 | 000,189,384 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012.06.06 13:50:24 | 000,188,872 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012.06.06 13:38:20 | 000,637,848 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012.06.06 13:38:20 | 000,567,184 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012.06.03 23:06:09 | 000,215,139 | ---- | M] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.05.30 23:01:05 | 000,000,747 | ---- | M] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:19 | 000,000,846 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:59:00 | 000,001,108 | ---- | M] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.28 18:54:09 | 000,000,138 | ---- | M] () -- C:\Windows\VocALign.ini
[2012.05.26 00:07:37 | 000,005,632 | ---- | M] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.25 19:24:28 | 000,151,552 | ---- | M] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:28 | 000,040,960 | ---- | M] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 18:35:50 | 000,012,292 | ---- | M] () -- C:\Users\Alex\.DS_Store
[2012.05.25 18:35:43 | 000,015,364 | ---- | M] () -- C:\.DS_Store
[2012.05.25 18:15:52 | 000,012,292 | ---- | M] () -- C:\Users\Alex\Documents\.DS_Store
[2012.05.25 06:54:04 | 000,006,148 | ---- | M] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | M] () -- C:\Program Files\.DS_Store
[2012.05.23 18:50:06 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2012.05.23 18:49:32 | 000,974,848 | ---- | M] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzdecode.ax
[2012.05.23 18:49:32 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.dll
[2012.05.23 18:49:32 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\Windows\SysWow64\MSLUR71.dll
[2012.05.23 18:49:32 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\Windows\SysWow64\muzoggsp.ax
[2012.05.23 18:49:32 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSCLib.dll
[2012.05.23 18:49:32 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\Windows\SysWow64\muzwmts.dll
[2012.05.23 18:49:32 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzapp.exe
[2012.05.23 18:49:32 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\Windows\SysWow64\MSFLib.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | M] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\SysWow64\muzaf1.dll
[2012.05.23 18:49:32 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmpgsp.ax
[2012.05.23 18:49:32 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\Windows\SysWow64\muzeffect.ax
[2012.05.23 18:49:32 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MaDRM.dll
[2012.05.23 18:49:32 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\Windows\SysWow64\muzmp4sp.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | M] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | M] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek) -- C:\Windows\SysWow64\MK_Lyric.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\Windows\SysWow64\MTXSYNCICON.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | M] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.23 18:49:32 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaJGUILib.dll
[2012.05.23 18:49:32 | 000,045,320 | ---- | M] (MARKANY) -- C:\Windows\SysWow64\MAMACExtract.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MaXMLProto.dll
[2012.05.23 18:49:32 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\SysWow64\MACXMLProto.dll
[2012.05.23 18:49:32 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\Windows\SysWow64\MTTELECHIP.dll
[2012.05.23 18:49:32 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\Windows\SysWow64\MASetupCleaner.exe
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\w3data.vss
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\SysWow64\msvcsv60.dll
[2012.05.18 23:50:05 | 000,000,016 | ---- | M] () -- C:\Windows\msocreg32.dat
[2012.05.18 04:06:48 | 002,311,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012.05.18 03:58:39 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012.05.18 03:58:15 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012.05.18 03:55:22 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012.05.18 03:55:06 | 000,818,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012.05.18 03:51:49 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012.05.18 03:47:42 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012.05.18 01:45:20 | 000,005,077 | ---- | M] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.18 01:37:47 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2012.05.18 00:35:39 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.05.18 00:33:08 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.05.18 00:29:45 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.05.18 00:29:30 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.05.18 00:25:17 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.05.18 00:20:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012.05.17 18:00:18 | 000,002,368 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\bak\hosts
[2012.05.15 12:48:00 | 025,743,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012.05.15 12:48:00 | 025,248,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012.05.15 12:48:00 | 019,607,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.05.15 12:48:00 | 018,044,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012.05.15 12:48:00 | 017,551,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.05.15 12:48:00 | 015,322,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.05.15 12:48:00 | 010,194,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012.05.15 12:48:00 | 008,139,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012.05.15 12:48:00 | 008,105,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.05.15 12:48:00 | 005,982,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.05.15 12:48:00 | 002,881,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,741,568 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012.05.15 12:48:00 | 002,681,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012.05.15 12:48:00 | 002,524,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.05.15 12:48:00 | 002,445,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.05.15 12:48:00 | 002,368,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.05.15 12:48:00 | 001,738,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012.05.15 12:48:00 | 001,468,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco64.dll
[2012.05.15 12:48:00 | 000,949,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012.05.15 12:48:00 | 000,818,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012.05.15 12:48:00 | 000,364,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,301,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2012.05.15 12:48:00 | 000,246,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012.05.15 12:48:00 | 000,202,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012.05.15 12:48:00 | 000,068,928 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012.05.15 12:48:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.05.15 12:48:00 | 000,014,324 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012.05.15 11:29:46 | 002,561,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2012.05.15 11:29:46 | 000,118,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012.05.15 11:29:46 | 000,063,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012.05.15 11:29:45 | 002,621,723 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.05.15 11:29:25 | 003,149,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012.05.15 11:28:42 | 006,151,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012.05.15 02:21:50 | 000,423,744 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
 
========== Files Created - No Company Name ==========
 
[2012.06.13 19:29:11 | 000,000,512 | ---- | C] () -- C:\Users\Alex\Desktop\MBR.dat
[2012.06.13 10:13:14 | 000,027,690 | ---- | C] () -- C:\Users\Alex\Desktop\logs.7z
[2012.06.13 09:26:27 | 000,003,003 | ---- | C] () -- C:\Users\Alex\Desktop\HiJackThis.lnk
[2012.06.12 23:37:47 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012.06.12 00:28:01 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.06.11 21:13:56 | 000,002,533 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2012.06.10 18:16:59 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012.06.10 18:16:09 | 000,001,891 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012.06.10 17:37:25 | 000,103,211 | ---- | C] () -- C:\ProgramData\1339342398.bdinstall.bin
[2012.06.10 16:45:03 | 000,222,581 | ---- | C] () -- C:\ProgramData\1339338796.bdinstall.bin
[2012.06.10 12:09:19 | 000,000,000 | ---- | C] () -- C:\netsh
[2012.06.10 12:08:35 | 000,000,000 | ---- | C] () -- C:\Users\Alex\netsh
[2012.06.10 01:49:21 | 000,076,522 | ---- | C] () -- C:\Users\Alex\Documents\bookmark_ie.htm
[2012.06.10 01:42:04 | 000,381,062 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_10.06.12.html
[2012.06.10 00:52:08 | 002,621,723 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2012.06.06 11:29:43 | 000,002,053 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4.1 64-Bit.lnk
[2012.06.03 23:06:09 | 000,215,139 | ---- | C] () -- C:\Users\Alex\Documents\bookmarks_03.06.12.html
[2012.06.02 12:45:46 | 000,000,740 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\00000004.@
[2012.06.02 12:45:45 | 000,001,584 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\000000cb.@
[2012.06.02 12:45:45 | 000,001,536 | ---- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\00000004.@
[2012.05.30 23:01:03 | 000,000,747 | ---- | C] () -- C:\Users\Alex\Documents\xiwnik_echo_haha.xps
[2012.05.28 22:59:18 | 000,000,846 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_trueverb.xps
[2012.05.28 22:58:58 | 000,001,108 | ---- | C] () -- C:\Users\Alex\Documents\doublesrap_q10.xps
[2012.05.25 19:24:45 | 000,151,552 | ---- | C] () -- C:\Windows\SysWow64\nvRegDev.dll
[2012.05.25 19:24:29 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\nvISWOW64.dll
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\Common Files\.DS_Store
[2012.05.25 06:53:54 | 000,006,148 | ---- | C] () -- C:\Program Files\.DS_Store
[2012.05.23 18:49:32 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.05.23 18:49:32 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\3DAudio.ax
[2012.05.23 18:49:32 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.05.23 18:49:32 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.05.23 18:49:32 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.05.22 19:34:30 | 000,000,986 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live 8.lnk
[2012.05.22 17:58:22 | 000,000,809 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 8.lnk
[2012.05.18 18:16:40 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012.05.18 01:45:19 | 000,005,077 | ---- | C] () -- C:\Users\Alex\Documents\Untitled.ncor
[2012.05.17 17:33:26 | 000,001,035 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
[2012.05.15 02:21:50 | 000,423,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012.03.15 16:29:54 | 000,000,073 | ---- | C] () -- C:\Windows\EurekaLog.ini
[2012.02.24 17:50:50 | 000,000,112 | ---- | C] () -- C:\ProgramData\mjIt036C.dat
[2012.01.24 21:29:07 | 000,000,038 | ---- | C] () -- C:\Windows\osAviSplitter.INI
[2012.01.11 14:54:16 | 000,002,048 | -HS- | C] () -- C:\Windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\@
[2012.01.06 17:49:53 | 000,173,492 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2012.01.03 09:28:06 | 002,570,286 | ---- | C] () -- C:\Windows\SysWow64\abgx360.exe
[2011.12.28 16:39:36 | 000,000,125 | ---- | C] () -- C:\Windows\FlashDecompiler.INI
[2011.11.23 03:24:27 | 001,989,419 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Creative.rar
[2011.10.15 00:20:01 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.09.20 12:21:20 | 000,000,132 | ---- | C] () -- C:\Users\Alex\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011.09.19 15:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll
[2011.09.15 21:47:20 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.09.15 21:46:54 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.08.09 21:51:52 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919510.bdinstall.bin
[2011.08.09 21:51:08 | 000,015,690 | ---- | C] () -- C:\ProgramData\1312919436.bdinstall.bin
[2011.08.09 21:50:26 | 000,163,748 | ---- | C] () -- C:\ProgramData\1312919284.bdinstall.bin
[2011.08.09 21:47:32 | 000,021,683 | ---- | C] () -- C:\ProgramData\1312919239.bdinstall.bin
[2011.07.27 15:03:57 | 000,005,632 | ---- | C] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.06.15 17:51:43 | 000,495,577 | ---- | C] () -- C:\ProgramData\1308151971.bdinstall.bin
[2011.06.15 16:32:25 | 001,666,641 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011.05.13 17:10:43 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.04.03 11:40:57 | 000,000,166 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.30 23:52:04 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011.01.27 01:32:15 | 000,000,064 | RHS- | C] () -- C:\Windows\A531272465C931BE.bin
[2011.01.05 22:11:31 | 000,098,344 | ---- | C] () -- C:\Windows\unTMV.exe
[2011.01.04 18:00:26 | 000,695,642 | ---- | C] () -- C:\Windows\unins001.exe
[2011.01.04 18:00:26 | 000,121,344 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll
[2011.01.04 18:00:26 | 000,003,428 | ---- | C] () -- C:\Windows\unins001.dat
[2010.10.21 17:28:34 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\minimp3.exe
[2010.09.21 14:00:34 | 000,002,892 | ---- | C] () -- C:\Windows\SysWow64\audcon.sys
[2010.09.21 13:59:53 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe.cfg
[2010.09.21 13:59:52 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe
[2010.09.20 00:53:46 | 000,001,363 | ---- | C] () -- C:\Windows\emasio.dat
[2010.08.29 00:53:30 | 000,000,838 | ---- | C] () -- C:\Windows\Spiderman.INI
[2010.06.25 19:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2010.06.17 11:41:39 | 000,000,550 | RHS- | C] () -- C:\ProgramData\ntuser.pol
 
========== LOP Check ==========
 
[2012.06.10 02:57:59 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\abgx360
[2012.05.22 19:30:19 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Ableton
[2009.11.04 15:01:17 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Activision
[2012.01.18 19:16:44 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\aicon
[2012.01.11 15:48:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\AimOne
[2010.07.05 22:18:35 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Aleo Software
[2010.02.17 22:49:06 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Antares
[2011.07.27 15:03:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Any Video Editor
[2012.04.08 02:55:25 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ASK Video
[2011.01.16 13:10:20 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Athentech
[2009.11.19 15:08:15 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\AudioZoneTrigger
[2012.04.09 17:42:37 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Autodesk
[2011.09.28 16:13:50 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Babylon
[2010.02.14 17:38:25 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Bioshock2
[2010.05.27 14:28:24 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\bizarre creations
[2010.03.14 18:23:13 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\BOM
[2012.02.09 13:47:59 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Broad Intelligence
[2009.11.04 15:01:33 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Cakewalk
[2010.10.16 18:46:05 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\calibre
[2010.05.26 11:58:20 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Canneverbe Limited
[2011.02.20 15:44:29 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Canon
[2012.06.12 15:48:34 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Celemony Software GmbH
[2011.01.08 13:14:40 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.02.20 03:06:13 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Codemasters
[2012.05.17 19:12:33 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.08.09 12:56:45 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\com.adobe.dmp.contentviewer
[2012.05.17 17:33:28 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2009.11.04 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.10.28 18:42:51 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\com.prezi.PreziDesktop
[2012.05.23 16:54:28 | 000,000,000 | -HSD | M] -- C:\Users\Alex\AppData\Roaming\Common
[2012.01.11 14:55:41 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Complitly
[2009.11.04 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DAEMON Tools Lite
[2010.07.23 00:24:14 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Datel
[2011.01.09 15:31:53 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DeepBurner
[2010.06.20 17:24:04 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Desktopicon
[2010.01.12 16:22:16 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DigitalJuice
[2012.04.27 15:39:30 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DiskAid
[2010.05.31 12:41:06 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Disney Interactive Studios
[2012.06.12 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DisplayFusion
[2012.06.07 20:36:05 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Dropbox
[2011.02.10 10:53:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\DVDVideoSoftIEHelpers
[2012.05.28 12:05:16 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\FileZilla
[2012.02.14 18:38:12 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\fltk.org
[2009.11.04 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Folding@home-gpu
[2012.06.12 15:08:04 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\foobar2000
[2010.06.10 14:30:52 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\GameTuts
[2011.04.24 15:29:04 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\GetRightToGo
[2009.11.04 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\GHISLER
[2012.05.30 10:01:27 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Greyfirst
[2012.06.13 20:10:09 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ICQ
[2012.04.01 23:59:28 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ICQ Search
[2011.11.03 23:00:45 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ImgBurn
[2012.05.19 00:46:30 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\iZotope
[2010.03.03 18:28:28 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Leadertech
[2010.05.27 20:53:21 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\MusicLab
[2010.08.24 16:01:04 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Need for Speed World
[2010.01.09 02:22:32 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\nHancer
[2012.02.03 01:39:41 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\OnLive App
[2012.06.10 22:16:52 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Opera
[2012.05.18 01:31:42 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PACE Anti-Piracy
[2012.01.22 23:46:21 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Party Buffalo Drive Explorer
[2012.06.11 19:30:40 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PC Cleaners
[2012.06.11 19:37:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PCPro
[2012.02.24 19:30:27 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PgcEdit
[2012.05.19 01:02:43 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Plugin Alliance
[2011.02.02 16:57:24 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Promixis
[2009.11.04 15:02:11 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Propellerhead Software
[2011.07.23 03:23:12 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PTGui
[2011.01.27 01:17:26 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Publish Providers
[2012.03.13 09:47:49 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\PunkBuster
[2010.05.13 12:40:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Quake3
[2011.06.15 16:41:40 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\QuickScan
[2009.11.04 15:02:11 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\REAPER64
[2012.04.22 16:39:09 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\redsn0w
[2010.02.18 09:10:57 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Resource Tuner
[2011.04.29 21:39:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1
[2012.06.01 23:48:10 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Samsung
[2011.06.25 20:15:55 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Sierra Entertainment
[2012.02.24 13:29:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Simply Super Software
[2012.04.15 17:36:32 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Softland
[2011.01.05 22:12:27 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\SoftMaker
[2011.08.25 16:32:15 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Sony
[2011.01.27 01:18:59 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Sony Creative Software Inc
[2012.05.19 01:02:44 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\SPL Plug-Ins
[2010.12.30 21:16:47 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.04.01 04:17:51 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Steinberg
[2009.11.21 14:48:54 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Stereoscopic Player
[2011.11.13 22:20:13 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Subversion
[2012.01.11 19:41:29 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\sylteditor
[2010.03.06 16:59:15 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Synthesia
[2011.01.01 03:32:49 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Teeworlds
[2012.03.13 00:26:11 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Thinstall
[2011.07.19 18:23:28 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\ToMMTi-Systems
[2010.03.19 22:57:14 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Transcend
[2012.06.11 21:28:38 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\TuneUp Software
[2010.05.14 21:11:24 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Tunngle
[2010.03.14 17:14:43 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Ubisoft
[2011.01.26 23:01:34 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Ulead Systems
[2010.03.11 00:55:18 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Unity
[2012.06.13 20:15:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\uTorrent
[2010.05.29 23:37:14 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Video DVD Maker FREE
[2012.01.14 14:07:45 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\VOS
[2011.06.26 02:32:27 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Voxengo
[2012.05.19 01:02:43 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\VST3 Presets
[2012.04.01 02:47:55 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Waves Audio
[2011.04.29 12:30:58 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Waves Preferences
[2011.12.13 19:52:08 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\www.adobe.com.Wallaby
[2012.02.07 20:56:56 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Xilisoft
[2010.08.11 13:16:33 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\XLink Kai
[2012.06.12 18:53:07 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\XNote Stopwatch
[2011.07.27 15:00:40 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Yamb
[2011.06.10 11:42:38 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\Youtube Downloader HD
[2012.06.10 14:01:57 | 000,032,624 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
 
========== Files - Unicode (All) ==========
[2012.06.10 10:43:38 | 000,000,000 | ---- | M] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2011.06.15 17:08:54 | 000,000,000 | ---- | C] ()(C:\Windows\SysNative\?????) -- C:\Windows\SysNative\獷楬汢捯污
[2010.04.02 10:53:10 | 000,000,000 | ---D | M](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
[2009.12.01 19:12:29 | 000,000,000 | ---D | C](C:\Users\Alex\Documents\??? ????) -- C:\Users\Alex\Documents\Мои игры
 
========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\system64] -> \systemroot\system32 -> Mount Point
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:21654C57
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9

< End of report >

--- --- ---

jgswcrnk · 13.06.2012, 21:23

extras.txt :
OTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 13.06.2012 20:06:36 - Run 6
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Users\Alex\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 5,97 Gb Available Physical Memory | 74,63% Memory free
16,00 Gb Paging File | 13,91 Gb Available in Paging File | 86,93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 51,46 Gb Free Space | 11,05% Space Free | Partition Type: NTFS
Drive G: | 372,61 Gb Total Space | 32,51 Gb Free Space | 8,73% Space Free | Partition Type: NTFS
Drive H: | 349,32 Gb Total Space | 27,36 Gb Free Space | 7,83% Space Free | Partition Type: NTFS
Drive I: | 349,32 Gb Total Space | 225,74 Gb Free Space | 64,62% Space Free | Partition Type: NTFS
Drive L: | 931,46 Gb Total Space | 260,41 Gb Free Space | 27,96% Space Free | Partition Type: NTFS
 
Computer Name: SHOGUN | User Name: Alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl[@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Value error.
jsfile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS6\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Value error.
jsfile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS6\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== System Restore Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E09ABF1-FAB5-46DF-87EE-B68D46EBD739}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{1FC6618B-8D24-44D3-89D6-D5B2E08907ED}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{3A8C303C-144A-4245-AB26-A8D243BDE5AA}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{51AF5548-3F66-4DAA-BB55-03ECA4AD6DB5}" = protocol=17 | dir=in | app=c:\program files (x86)\celtx\celtx.exe | 
"{6AFDD5D7-8949-4AAB-8145-11A342657ADC}" = dir=in | app=%userprofile%\appdata\local\google\chrome\application\chrome.exe | 
"{6FA1F505-DB91-40DF-A772-8534B6C0506F}" = dir=in | app=%programfiles% (x86)\opera\opera.exe | 
"{79E5FDE3-6EAC-4DA8-A6D0-E02AE91D9C5E}" = dir=out | app=%programfiles% (x86)\opera\opera.exe | 
"{C56106EA-B956-4B8E-9CD8-C2DB8C486F23}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{C8D70677-5C61-48D1-BD20-209DBA293E18}" = dir=out | app=%userprofile%\appdata\local\google\chrome\application\chrome.exe | 
"{F6972CFB-044B-4533-AE8D-1EF047B26EBA}" = protocol=6 | dir=in | app=c:\program files (x86)\celtx\celtx.exe | 
"TCP Query User{A231C381-1D0D-471F-9335-FD0FC9391772}C:\program files (x86)\icq7.7\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe | 
"UDP Query User{79563AEB-AD06-4B8A-A630-77030CD5DDF7}C:\program files (x86)\icq7.7\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{06B60360-9DBD-4593-90A0-FD237F0845A2}" = Topaz DeNoise 5 (64-bit)
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1111706F-666A-4037-7777-202648764D10}" = JavaFX 2.0.2 (64-bit)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2412" = CanoScan LiDE 90
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{2222706F-666A-4037-7777-202648764D10}" = JavaFX 2.0.2 SDK (64-bit)
"{22950922-8438-4c84-80d5-a17e6c2a5717}.sdb" = Adobe Audition 3 Vista Compatibility
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417004FF}" = Java(TM) 7 Update 4 (64-bit)
"{336f7b31-7105-45e6-b94b-fc39b52ba9ad}.sdb" = Adobe Audition 3 Vista64 SP1 Fix
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{371B17C3-9624-4583-A497-DF980313D851}" = Native Instruments Absynth 5
"{38B4E24E-4F6E-4A6C-A414-F956FC35F376}" = NVIDIA CUDA Toolkit v4.0 (64 bit)
"{38D0E001-2620-40A9-8C44-3B52A50D090A}" = nHancer
"{43E7798A-248E-4A3D-9969-FEA63543A462}" = Native Instruments Kontakt 4
"{4529F749-C362-4119-AFA0-0A3F1CA924AB}" = Autodesk MatchMover 2012 64-bit
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{491DF203-7B61-4F0E-BDCB-A1218C4DAFE9}" = Native Instruments Massive
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{53EE2829-E9DB-4913-B3EA-96F10F84E98B}" = Melodyne Runtime 4.1 (x64)
"{5552453B-BB76-45E3-973D-F95E458ED780}" = Native Instruments Kontakt 5
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A9C5B3-D166-4C6D-A11E-A54473151000}" = Java 3D 1.5.1 (x64)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{7F801000-A1D5-11E0-9092-0013D3D69929}" = MSVCRT Redists
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8844595D-7554-49D2-90C4-3771532B7B1A}" = Trapcode Suite 64-bit
"{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}" = Topaz Simplify 3 (64-bit)
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUSR_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUSR_{3013A793-10A7-4D1F-B8B4-2FAA82F4D259}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{98782D5D-A9EE-43C6-88AD-B50AD8530E78}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{8DFD91C7-66AE-4E54-9901-5D5F401AD329}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{8299B64F-1537-4081-974C-033EAB8F098E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{92DBCA36-9B41-4DD1-941A-AED149DD37F0}" = Windows Mobile-Gerätecenter: Treiberupdate
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{9E6BB4E4-0B20-4922-AA37-260FA5ACFBA5}" = Autodesk Maya 2012 64-bit
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}" = Topaz Detail 2 (64-bit)
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{AC3E3746-8F18-4F8A-9521-1493022C6E0A}" = Autodesk DirectConnect 2012 64-bit
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.8.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}" = Microsoft Xbox 360 Accessories 1.2
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BA3D5FF2-A405-4654-826E-A09FABB01853}" = Topaz Fusion Express 2 (64-bit)
"{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D068E91E-D573-480B-AA24-4D8E5B00CE13}" = Native Instruments Kore 2
"{D285FC5F-3021-32E9-9C59-24CA325BDC5C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes
"{D9EA591C-2ED0-4E91-BF5F-A6B4B1CCEFC7}" = Topaz ReMask 2 (64-bit)
"{DC8F0C18-E6B0-4722-A4AB-D134473091C2}" = Topaz DeJpeg 4 (64-bit)
"{EA234BC3-39FE-4734-B72F-076086889F6D}" = Composite 2012 64-bit
"{EC015649-3B3C-4611-9C66-453F8011E944}" = Native Instruments Kontakt 4
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5631C47-0DED-438d-8D93-33E9552DCA8E}" = Native Instruments Kore 2 Controller Driver
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F7ADB493-B913-4D61-9A63-DA736C20C3F2}" = Adobe Photoshop Lightroom 4.1 64-bit
"{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}" = Topaz Clean 3 (64-bit)
"{FB237A35-F491-4AC1-95E0-85118D6751D9}" = Topaz Adjust 4 (64-bit)
"{FC4AD39F-9DCE-4BD0-B7D0-7C81CEB9F04B}" = NVIDIA PhysX Plug-in for Autodesk Maya 2012 64 bit
"33D939DC3BC1BBC9C0EA8EBE1FF03A841BC86589" = Windows-Treiberpaket - Sony PS Vita (libusb0) LibUsbDevices  (08/27/2006 0.1.12.0)
"Autodesk DirectConnect 2012 64-bit" = Autodesk DirectConnect 2012 64-bit
"Autodesk Maya 2012 64-bit" = Autodesk Maya 2012 64-bit
"Cakewalk Studio Instruments_is1" = Studio Instruments 1.0
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.60.1
"MediaInfo" = MediaInfo 0.7.56
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"NMMS11" = Nero 11 Full Repack v3 + Toolkit
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Recuva" = Recuva
"sp6" = Logitech SetPoint 6.32
"UltraISO_is1" = UltraISO Premium V9.52
"VLC media player" = VLC media player 2.0.1
"WinRAR archiver" = WinRAR archiver
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"@icon sushi_is1" = @icon sushi 1.21
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05A6F765-D749-45E6-A157-2E5ADE8F8FF0}" = sensorsamples
"{085AC6CC-3716-4C62-8965-FF94296BCC26}" = vistalibs_x64fre
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{091DDD71-FA98-4FF6-8E6F-07C9D09E29B8}" = wdftools_ia64fre
"{09298F26-A95C-31E2-9D95-2C60F586F075}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{0A026ED9-D774-4008-B62C-7565E5626371}" = networklibraries_ia64fre
"{0A049327-DE93-4098-B573-AAC71E0E6FA4}" = toastermetadatapackagesample
"{0A68FF18-07E3-4D28-BFDC-8F51ECE8A011}" = infsample_x64fre
"{0AD94592-05F9-4E96-9418-D50FEE317342}" = networklibraries_x86fre
"{0CA21011-069B-B16A-A5CA-9ABE49DAC05C}" = Windows Installer 4.5 SDK
"{0E2B767B-EA6A-489B-BF83-8083FE1DB661}" = Pcsx2 0.9.6
"{0E75753B-6FFF-4202-8638-D945BBEEB961}" = Melodyne plugin
"{1231849C-2D95-46C5-BC1B-A7A4481A279F}" = dsfsamples
"{1321CC95-FB73-4437-8F77-B179432F8857}" = setupsamples
"{153C7D89-9CF4-4719-A551-C5BF45236DB5}" = redist
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{17349339-D8E7-4394-805E-E2346C19BA82}" = setuptools_x64fre
"{185F9795-9663-4F13-9EF9-307A282ADB5A}" = ph
"{1864B4F0-7777-4A57-9930-C2B307597966}" = MusicLab RealGuitar 2.0
"{197AB90B-2CE8-4098-B8DC-A8C7ACBBEAD9}" = imagingtools_x86fre
"{198C0A8A-5E8D-4CF5-BE66-9D0E1FFBC217}" = pnptools_x64fre
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1C99893D-BC98-4456-AA3E-B67AB42301A6}" = E-MU USB Audio
"{1E8FC55E-F212-4B80-A0F7-A0D178C2FE4A}" = powermanagement_ia64fre
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F20DE69-167B-4F69-8D99-10DA59D92D10}" = headers
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{215741EE-19FD-40FE-AA83-2FF0813D54C6}" = Audio Zone Trigger
"{21E77392-C30A-4AA2-8CA7-5728316939D6}" = AmpliTube X-GEAR
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{28E0E806-0461-4E12-B272-465766FF94FB}" = bluetoothsamples
"{2A075BB4-E976-4278-BF3F-E5C6945D84C0}" = bl
"{2ADD318F-B560-4D64-9A2B-0196FCF103BD}" = audiosamples
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{315A928B-2B99-4E22-A066-14CD901F9C0B}" = generaltools_ia64fre
"{329335E6-0A4B-42B9-9230-5CAC83B04649}" = vistalibs_ia64fre
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{34600C75-5EF7-476C-A897-531078A304C3}" = buildtools_x86fre
"{34FBCCDC-2492-47E5-988C-571704270F31}" = NVIDIA GPU Computing SDK 4.2
"{353B1E6D-7073-4450-8C80-699BD8FCFB49}" = MTP Porting Kit
"{35546EB8-2D2F-4AAD-9FE5-9574520F4AD8}" = offreg_ia64fre
"{3717C4F2-7412-4793-9BB8-D73D2817B3D6}" = USB TV Device Driver
"{37E0996B-CD8D-46C9-A801-9EE67276DF9A}" = tracingtool_x64fre
"{384DB786-E488-45CC-AB4A-E6ABE11B0905}" = tools_ia64fre
"{38AD20B9-0433-45D5-86D6-C76BAE151892}" = printtools_ia64fre
"{39930321-4C58-4B8B-BCBF-342698C9801D}" = Max Payne
"{3A1B1652-D70A-4D19-981E-BB15D0DBF253}" = Ghostbusters (TM): The Video Game
"{3A2F0C18-0F0B-44BF-80F0-CB4204565573}" = printtools_x64fre
"{3B31D97A-7CF4-4ED2-8593-535AE7C0FB92}" = toolindex
"{3BEF9769-BA52-18F7-1D02-2362F6A27E38}" = Adobe Media Player
"{3C9E736F-8436-41D2-87F3-1468A59CA866}" = tracingtool_ia64fre
"{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Autodesk Backburner 2012.0.0
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3ECC5DE9-FF75-4EDD-8D46-6E4A59603E16}" = debugfiles_win7
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40719211-D09A-11DF-BA30-0013D3D69929}" = MSVCRT Redists
"{4077C73A-C623-40B9-8D0A-B9D501AF3046}" = tracingtool_x86fre
"{41E0A8DD-4343-4B33-95C3-272A99F18984}" = Steinberg Nuendo 4
"{452167AD-8C66-4726-9F6D-F27CFE13B8A3}" = NextUp.com-NeoSpeech Kate16 Voice
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4649A430-BC01-4C9E-9846-50FC56A9D00E}" = generalsamples
"{48402841-6F46-464D-8FA1-3A4460C8399D}" = toastersample
"{48D7FBA8-624C-4160-8A1D-D62619C2A693}" = NextUp.com-NeoSpeech Paul16 Voice
"{4908FC86-4753-40EB-99CD-1F1EB30E6F84}" = fireflysample
"{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
"{493028C3-0EC5-4FBF-B3D3-F4A934AB8801}" = eventsample
"{49B35B72-04FF-478D-842E-DBC7A5E68285}" = biometricsamples
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5
"{4C3B13F6-7CA2-47FD-9A47-C542BA730EF7}" = libs_x64fre
"{4C9C47E8-C79E-4A3B-BD87-5088916F67BC}" = imagingtools_ia64fre
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
"{4DD3FE4D-1D81-44F4-9FCC-BB8F861C6E21}" = pfd_x64fre
"{4DD6CC58-ED0B-46F1-8A23-4661D7DA60DD}" = wnetlibs_x64fre
"{4DF9AF39-93A8-45BD-AB41-6577969C4AE0}" = cancelsample
"{4E33D05D-76CF-5D3C-4D5D-7727530FA161}" = Adobe Content Viewer
"{4FBF748A-AF57-487E-8A74-A32710938A7C}" = bluetoothtools_x64fre
"{5008655B-381C-4C45-BF2F-E1998DDED2C5}" = chkinftool_x86fre
"{502A382B-6A1F-41C3-A370-A085182EEA91}" = wdftools_x86fre
"{5058FE9A-CF62-48B5-9AA2-48C536827880}" = sideshowsamples
"{5193B1FC-FC33-4CBA-9B9F-85F3D8F7CD87}" = readme
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{53C53D37-CA3C-4C32-B1B5-3BCC594144C2}" = networksamples
"{5454083B-1308-4485-BF17-111000028701}" = Grand Theft Auto: Episodes from Liberty City
"{5508128A-2C7B-46B5-81F9-58E8E8115F0B}" = AdblockIE
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5B66B4F6-D913-4D8D-B997-2E208ABECA73}" = portiosample
"{5B86F724-E2A0-47B6-805A-88D873175EFB}" = biometrictools_x86fre
"{5BE72DAD-15B7-4B1D-808D-9C66DF8E691D}" = storagesamples
"{5BF31BC3-EA1C-4905-9FF1-0FFBE5C4099B}" = bussamples
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5DB55A0E-43EA-4DC3-900E-71ED977D2CD0}" = Multi Export Audio
"{5E38A4B3-E50B-4E05-AC66-CDA806B12D10}" = smartcardsamples
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{628C2C7D-8AD1-E614-E8E2-6EEAD8D5F2D0}" = Acrobat.com
"{62BEC6D1-0287-4272-BFC4-C7C1A422B718}" = avstreamtools_x86fre
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63B405FD-A763-4F88-8844-1673AA5F00AB}" = wnetlibs_ia64fre
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{640EAE56-81A2-49D4-9B8C-00DA3C0031AF}_is1" = Juicer 3.62c
"{66D6D87F-D616-408F-9AD1-70D4D744DC29}" = irsamples
"{670CAF31-78EA-4A8B-9F8D-32EC018B1345}" = pnptools_x86fre
"{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}" = Microsoft Document Explorer 2008
"{6899C238-3E4A-4A04-B251-A0C9EDC7EDBC}_is1" = Pazera Free Audio Extractor 1.4
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Mass Effect™ 3
"{6F1B3EC0-1182-4AA6-9E08-C4D7A05E1B7C}" = streammediasamples
"{6F9AD5EF-EF6A-4548-B797-2543F0D1F28F}" = offreg_x86fre
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71E96A45-FE54-4AF6-B208-A3F860EF1063}" = usbsamples
"{725943A7-97C3-4E7D-841E-7E6FBAABF64B}" = drvtools_ia64fre
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7596C248-4816-4C6F-8AAC-D8C81F2B4B49}" = HD View
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}" = Topaz Fusion Express 2
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{7CA89ADF-C212-4D5A-85EC-79BAA250A656}" = infsample_x86fre
"{7D66971C-652B-4065-A6B1-B3EE313C254B}" = BlueJ
"{7DD52F48-C19E-4FD8-8B25-429F96321003}" = Microsoft Windows Driver Kit Documentation 7600.091201
"{7E7F3882-48B3-424B-9BE2-D257D1319C59}" = VocALign Project
"{7E95DAD6-B230-49D7-AEB3-8BED0E98C9E6}" = Melodyne plugin
"{7ED7AA72-49BE-40FB-89C4-F1DBAAC16F01}" = dfx_ia64fre
"{7F0B94C6-828C-4EDE-A86B-ECF4D792B68D}" = Activision(R)
"{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1" = Hex-Editor MX
"{80CFB54B-2C2C-4513-9B90-923F7F850074}" = evntdrvsample
"{82B341CB-D57D-4286-BE54-FB86BAAD23EB}" = pfd_x86fre
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85701256-4CFE-4144-A831-4D03DB2C830A}" = wpdtools_x86fre
"{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}" = Topaz Clean 3
"{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}" = Steinberg HALionOne Studio Drum Set
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86DE5D5D-7F44-4D9E-803C-4298732C16A3}" = dfx_x86fre
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}" = Topaz Simplify 3
"{8AFD8D85-FF4D-4DA7-B1A0-14C6A1BA1F59}" = setuptools_x86fre
"{8B62890F-E903-42BA-B1F7-7868432BCC4A}" = tools_x64fre
"{8BF161B5-1065-4457-8C7C-76366914033A}" = drvtools_x86fre
"{8C49987B-689E-469D-86AE-8E325A038701}" = Melodyne plugin
"{90000001-C561-4E32-99EB-3C5AD3683A70}" = Waves Complete V9r1
"{9096B2CA-170B-4696-AB43-AF5DD8D539E6}" = hid_inputsamples
"{9269E4BE-0607-488B-9BFD-9E54FEADB17B}" = ioctlsample
"{92F027CB-BDF9-4047-A654-13A050908158}" = ElastikVst
"{939740B5-0064-4779-854A-8C1086181C05}" = Macromedia FreeHand MXa
"{955AB765-E48B-4D82-9F06-F2E142433B71}" = Ableton Live 8
"{984AD1E9-A775-40F8-9A43-70908593B247}" = hidsampleinput
"{984E6987-6A7E-4F2D-AF7F-68BBB3BD68AD}" = dfx_x64fre
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9866E5F0-121F-E018-E2D1-2E1770847ABF}" = Adobe Download Assistant
"{9936A6C2-0C21-49D8-8AB1-92384259D214}" = powermanagement_x86fre
"{99870CAE-4D57-42F2-9427-AC88F33FC8C3}" = buildsamples
"{9A17B0B6-AD89-4321-99E6-09D9ABFA254D}" = MelodyneEssential 1.8
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9B684D7F-C314-43C2-A767-0372B02D6150}" = Backup4all Professional 4
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D623E1A-30E1-4E55-BD80-5C1359DB120B}" = Melodyne 3.1
"{9D668C99-AEED-472A-98C0-65D8865150F6}" = wxplibs_x86fre
"{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}" = Topaz DeJpeg 4
"{9E6C6A09-A71E-45A4-8DBE-68C64DFC451B}" = generaltools_x64fre
"{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}" = Topaz DeNoise 5
"{9FDC7042-CB9F-4336-A14C-DF10F53762E2}" = Topaz Adjust 4
"{A072218B-9353-4FAA-A969-64E64568B431}" = umdfsamples
"{A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}" = Adobe Community Help
"{A1DBF7E4-0FA0-4E55-9AB3-226E16B97CB2}" = Crysis 2(R) Mod SDK 1.0
"{A1E50F2C-F6CA-4C27-AEA7-819B2A486223}" = Steinberg Nuendo Expansion Kit
"{A541122D-7159-40B6-991D-A8A89006DB91}" = displaysamples
"{A74123D0-28F2-431A-8C9A-864CD6F2F900}" = infsample_ia64fre
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB6E6302-43F6-46A1-A3A2-8FCE5897ABE1}" = Ableton Live 8
"{AB99CA8E-0BA0-4AE7-A9AF-26D97D70A570}" = bluetoothtools_x86fre
"{AC76BA86-1033-F400-7760-000000000005}" = Adobe Acrobat X Pro - English, Français, Deutsch
"{AC997F93-0757-4ED4-A701-F40C2D654D09}" = Steinberg HALionOne GM Drum Set
"{ACAF97EB-7C5B-4C13-84E2-656FD8F2AE08}" = imagingtools_x64fre
"{ACDD9F03-F849-48F5-AB50-CEDDD31689FD}" = Stereoscopic Player
"{AEDC22CF-1590-4095-8053-4B724A5BA7A8}" = wsdtool_x86fre
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B086FEC7-E6B5-4E03-B7DC-60D5D0787174}" = drvtools_x64fre
"{B121B2B4-867E-4389-AC58-0AEC72C37F47}" = wpdsamples
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B17E235C-7A3B-4482-B650-21FFDE1D452E}" = Empire Earth III
"{B2B60AF9-E82A-453D-AB79-B4103614FF7E}" = setuptools_ia64fre
"{B3A0347D-6F37-40E3-AC66-85529088649F}_is1" = Mz Vista Force v2.2
"{B4665EAE-6733-4978-8757-629C7D8DD6A5}" = powermanagement_x64fre
"{B533A27C-3B5D-42AB-B397-A817F154CC22}" = printtools_x86fre
"{B66819C1-8FA4-4456-A12C-E8C6555DC2E2}" = libs_x86fre
"{B66D9EAC-DDAE-4477-93B2-A946438D97B6}" = wmisamples
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7DAD844-34CD-456B-83CC-88065323DD69}" = WordBuilder
"{B875D436-48A7-42CE-A105-23A7F65B9A60}" = avstreamtools_ia64fre
"{B9F9C536-ECF3-399F-A57B-84378144B91E}" = O3D Plugin
"{BA12FD6C-169A-11D7-A6A9-00C026281E5A}" = USB Vibration Joystick
"{BAF2FA20-6886-483C-8CC6-3310A1A636E5}" = ElastikVst
"{BCB4C18A-ACA6-4383-8688-E19933A705DD}" = Microsoft SOAP Toolkit 3.0
"{BCFFAF65-50B7-4419-AFCA-A7BA797E2C3D}" = Topaz ReMask 2
"{BD33DB46-D5EE-4529-8854-7161F4A87720}" = avstreamtools_x64fre
"{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
"{BDE646E8-86E0-50E1-37BC-0AEBB2185D76}" = Adobe Widget Browser
"{BEC25D5C-2CD4-4518-8061-4D97D61C710F}" = pnpportssample
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFBDD199-81A2-4BFA-9581-D2EA1716B546}" = DSF-KitSetup
"{C0742F98-1E35-4755-A32D-9F9DAE97CBF3}" = ifssamples
"{C1620364-5718-43DD-B6B7-104A0A41EACC}" = swtuner
"{C28DD992-5B7B-D195-6841-4EC57DF512BD}" = Adobe Story
"{C51059C0-E4D6-C24C-6C72-0FF78122D56E}" = Prezi Desktop
"{C521D5BA-BAE4-43E7-9250-6436E0502948}" = hidsamples
"{C5DA59CF-2BB8-48D5-8E5B-17F2E0F0FEE4}" = System Requirements Lab for Intel
"{C779648B-410E-4BBA-B75B-5815BCEFE71D}" = Safari
"{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}" = Topaz Detail 2
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}" = CanoScan Toolbox Ver4.9
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBE08674-3776-4578-9992-46FAEF528F15}" = oacr_x86fre
"{CC2FB3DD-C2DD-4D35-911C-042F3532EE79}" = tools_x86fre
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240CC}" = WinZip 16.0
"{CDEBE7FF-C832-4B91-9214-A4CA610D78C9}" = Adobe Audition 3.0.1 Patch
"{D058CD28-634C-4EF1-A47D-669FD6BE0C55}" = generaltools_x86fre
"{D0B2AA8F-CC52-4298-A48E-A9BA169546B6}" = Cabela's Outdoor Adventures
"{D1ABCCBA-5525-48B2-9D13-F6D4B6CE4749}" = buildtools_ia64fre
"{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}" = Steinberg HALionOne Studio Set
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D4E7A54A-4124-49A7-835B-F3BB3B501475}" = libs_ia64fre
"{D721152B-35EB-44F3-AB58-D0AE8882813F}" = sdv
"{D80B8A95-3DC7-428C-B216-70251A4296DD}" = wnetlibs_x86fre
"{D82CDA0D-C182-42C8-8FF2-5649C98D6003}" = Steinberg HALionOne Pro Set
"{D982C565-EE25-4E1D-8581-95ABDF637032}" = pfd_ia64fre
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{DC0B9B4B-3198-4F0F-8A2D-1235ED539D53}" = biometrictools_x64fre
"{DC6B7F7C-20F7-4D40-9735-957752CE5F53}" = pnptools_ia64fre
"{DEC41CA8-C30F-4F70-9AEE-1B3EEB4A3B62}_is1" = ICQ Language
"{E1423BD0-AAAE-4291-B220-863AEDF873D7}" = printsamples
"{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}" = Steinberg HALionOne Expression Set
"{E35466C4-2C85-4718-801E-761E18ACDD91}" = avstreamsamples
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5052212-DAF0-4BD2-A28E-EF9B9A1D3D81}" = buildtools_x64fre
"{E6343838-6EFE-4528-90ED-8D9258CA4584}" = installhelp
"{E6847FF6-C825-4739-814D-8758A9B30A9A}" = modemtools
"{E6E836AB-EC50-48EA-9208-374A982F28F2}" = bluetoothtools_ia64fre
"{E70E7159-93B1-470D-9FBD-D8E9EF34B538}" = Steinberg HALionOne
"{E754BD2E-5F64-4D38-A1C6-8B8143A09985}" = offreg_x64fre
"{E761E173-81A4-4C12-A28D-322952C4F31B}" = wpdtools_x64fre
"{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"{EB11B6F6-4B7A-9141-F371-2DEEE06D4513}" = Adobe Support Advisor
"{EB77C666-B349-4046-8BD3-E4941119E1EF}" = VocALign Pro 4 VST
"{EBD729CC-602A-4D12-896B-4FBEBE1B6C4F}" = wcoinstallers
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EDE33D47-848D-4BAE-8399-01D4457D8F64}" = wsdtool_ia64fre
"{EE1E82F8-E538-4B5A-952B-6252DEFA5D06}" = wsdtool_x64fre
"{F057965A-D974-4C64-ADB1-4381CD4B8956}" = Steinberg HALionOne GM Set
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F241EC95-C81A-466E-8006-6B0B364B07A0}" = PCMark Vantage
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}" = Steinberg HALionOne Additional Content Set 01
"{F5730A89-7A25-43FC-9A88-12BAF24121F8}" = calibre
"{F573FC3C-4149-4FE7-B189-7E5DD3281927}" = networklibraries_x64fre
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.20)
"{F5F16DEF-5F74-46C8-95E3-AC2FEB04A9DD}" = wdftools_x64fre
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FB2EEF6E-00A7-4863-A44A-227EB927A589}" = vistalibs_x86fre
"{FCFE5318-77F7-4661-A526-418C431A48B5}" = wpdtools_ia64fre
"{FDAA0CD7-930D-4E16-B3A2-66FAA2EEF3AD}" = pcidrvsample
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"«Serious Sam 3 Full Update»_is1" = «Serious Sam 3 Full Update» (Updated on December 1 2011)
"7-Zip" = 7-Zip 4.65
"abgx360" = abgx360 v1.0.6
"AC3Filter_is1" = AC3Filter 1.63b
"Addictive Drums Inno Setup_is1" = Addictive Drums 1.5.2
"Adobe AIR" = Adobe AIR
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced RAR Repair v1.2" = Advanced RAR Repair v1.2
"Afterburner" = MSI Afterburner 2.2.1
"Alan Wake American Nightmare_is1" = Alan Wake American Nightmare
"Alan Wake_is1" = Alan Wake
"Antares Autotune VST_is1" = Antares Autotune VST v5.09
"AviSynth" = AviSynth 2.5
"AWicons Pro" = AWicons Pro
"B076073A-5527-4f4f-B46B-B10692277DA2_is1" = DisplayFusion 4.1.0 (Beta 4)
"Badaboom2" = Badaboom versionTRIAL_2.0.0.128
"Bass Audio Decoder" = Bass Audio Decoder (remove only)
"CD Audio Reader Filter" = CD Audio Reader Filter (remove only)
"Celtx (2.9)" = Celtx (2.9)
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 5.6_is1" = Cheat Engine 5.6
"com.adobe.amp.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Media Player
"com.adobe.dmp.contentviewer" = Adobe Content Viewer
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Widget Browser
"com.prezi.PreziDesktop" = Prezi Desktop
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"Complitly_is1" = Complitly
"Crysis 2(R) Mod SDK 1.0" = Crysis 2(R) Mod SDK 1.0
"DCoder Image Source" = DCoder Image Source (remove only)
"Direct MKV Converter_is1" = Direct MKV Converter version 2.0.0.0
"DiskAid_is1" = DiskAid 5.06
"DivX Setup" = DivX-Setup
"DScaler 5 Mpeg Decoders_is1" = DScaler 5 Mpeg Decoders
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVDInfoPro" = DVDInfoPro
"East West Colossus" = East West Colossus
"East West EWQLSO Gold Edition" = East West EWQLSO Gold Edition
"East West HardcoreBass" = East West HardcoreBass
"East West Ra" = East West Ra
"East West Stormdrum Kompakt" = East West Stormdrum Kompakt
"East West Symphonic Choirs" = East West Symphonic Choirs
"EasyEclipse Desktop Java 1.2.2" = EasyEclipse Desktop Java 1.2.2
"EasyEclipse Eclipse Visual Editor 1.2.3.jem" = EasyEclipse Plugin: EasyEclipse Eclipse Visual Editor 1.2.3.jem
"eLicenser Control" = eLicenser Control
"Endless City" = NVIDIA Endless City demo
"Exact Audio Copy" = Exact Audio Copy 0.99pb5
"FFMPEG Core Files" = FFMPEG Core Files (remove only)
"File Shredder_is1" = File Shredder 2.0
"foobar2000" = foobar2000 v1.1
"Fraps" = Fraps
"Gabest MPEG Splitter" = Gabest MPEG Splitter (remove only)
"Girder5Stuff_is1" = Promixis Girder 5.0.13.550
"HaaliMkx" = Haali Media Splitter
"Har-Bal Equalization System v2.3" = Har-Bal Equalization System v2.3
"Hard Disk Low Level Format Tool_is1" = Hard Disk Low Level Format Tool 2.36 build 1181
"HijackThis" = HijackThis 2.0.2
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"ImgBurn" = ImgBurn
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"InstallShield_{8844595D-7554-49D2-90C4-3771532B7B1A}" = Trapcode Suite 64-bit
"InstallShield_{9208F706-6528-4591-A997-F41395FBD8A7}" = Spider-Man(TM) - Web of Shadows 1.1 Patch
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"IsoBuster_is1" = IsoBuster 2.8.5
"iZotope Ozone 4_is1" = iZotope Ozone 4
"JDownloader" = JDownloader
"KitSetup Registration {B4285279-1846-49B4-B8FD-B9EAF0FF17DA}:{68656B6B-555E-5459-5E5D-6363635E5F61}" = Microsoft Windows Driver Kit 7.1.0.7600
"LHTTSGED" = L&H TTS3000 Deutsch
"Live 8.2" = Live 8.2
"LoopBe1" = LoopBe1 - Internal MIDI Port
"MakeMKV" = MakeMKV v1.7.4
"Marvell Miniport Driver" = Marvell Miniport Driver
"Mass Effect 3 v1.1.5427.4_is1" = Mass Effect 3 v1.1.5427.4
"MeGUI" = MeGUI (remove only)
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft Document Explorer 2008" = Microsoft Document Explorer 2008
"MKVtoolnix" = MKVtoolnix 2.9.0
"MONOGRAM AMR Splitter/Decoder" = MONOGRAM AMR Splitter/Decoder (remove only)
"Mozilla Firefox 14.0 (x86 de)" = Mozilla Firefox 14.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSI Kombustor_is1" = MSI Kombustor v1.0.0
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"mv61xxDriver" = marvell 61xx
"Native Instruments Akoustik Piano" = Native Instruments Akoustik Piano
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OnLive" = OnLive
"OpenAL" = OpenAL
"OpenSource AVI Splitter" = OpenSource AVI Splitter (remove only)
"OpenSource DTS/AC3/DD+ Source Filter" = OpenSource DTS/AC3/DD+ Source Filter (remove only)
"OpenSource Flash Video Splitter" = OpenSource Flash Video Splitter (remove only)
"Opera 11.64.1403" = Opera 11.64
"oZone3D.Net FluidMark_is1" = oZone3D.Net FluidMark v1.1.1
"oZone3D.Net FurMark_is1" = oZone3D.Net FurMark v1.7.0
"Perfectly Clear Plugin" = Perfectly Clear Plugin 1.5.5
"PhaseOut_is1" = PhaseOut 5.4.1
"PhotoKit Color 2 Plug-In Module" = PhotoKit Color 2 Plug-In Module
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"PrecisionX" = EVGA Precision X 3.0.2
"Predator_is1" = Rob Papen Predator V1.1.0
"Prosoniq OrangeVocoder v1.4" = Prosoniq OrangeVocoder v1.4
"PTGui" = PTGui Pro Trial 9.0.4
"PunkBusterSvc" = PunkBuster Services
"Quick Batch File Compiler_is1" = Quick Batch File Compiler 3.15
"RealMedia" = RealMedia (remove only)
"Reason4_is1" = Reason 4.0.1
"ReCycle v2.1" = ReCycle v2.1
"reFX Nexus 1.0.9_is1" = reFX Nexus 1.0.9
"reFX Nexus 1.3.9_is1" = reFX Nexus 1.3.9
"reFX Nexus_is1" = reFX Nexus VSTi RTAS v2.2.0
"reFX quadraSID 1.6.0_is1" = reFX quadraSID 1.6.0
"Resource Tuner_is1" = Resource Tuner 1.99 R6
"RG_is1" = Rob Papen RG 1.5 Multi-core
"Rockstar Games Social Club" = Rockstar Games Social Club
"RoomEQWizardV5" = Room EQ Wizard V5
"RouterControl" = RouterControl 2.0
"SHOUTcast Source" = SHOUTcast Source (remove only)
"Sonalksis Plug-Ins for Windows_is1" = Sonalksis Plug-Ins for Windows 2.00
"Sonnox Oxford Inflator Native VST_is1" = Sonnox Oxford Inflator Native VST v1.5.1
"Sonnox Oxford Limiter Native VST_is1" = Sonnox Oxford Limiter Native VST v1.1.1
"Sonnox Oxford R3 Dynamics Native VST_is1" = Sonnox Oxford R3 Dynamics Native VST v1.3.1
"Sonnox Oxford R3 EQ Native VST_is1" = Sonnox Oxford R3 EQ Native VST v1.6.1
"Sonnox Oxford Reverb Native VST_is1" = Sonnox Oxford Reverb Native VST v1.0
"Sonnox Oxford TransMod Native VST_is1" = Sonnox Oxford TransMod Native VST v1.3.1
"Steam App 24980" = Mass Effect 2
"Steinberg HALion v3.5_is1" = Steinberg HALion VSTi DXi v3.5
"Steinberg Hypersonic v1.0" = Steinberg Hypersonic v1.0
"Steinberg WaveLab_is1" = Steinberg WaveLab version 6.11
"SubBoomBass_is1" = Rob Papen SubBoomBass 1.0.3c
"SYLTEditor" = SYLTEditor
"Synthesia" = Synthesia (remove only)
"SystemRequirementsLab" = System Requirements Lab
"TeamPlayer_is1" = TeamPlayer 2.2.0
"Tone2 Gladiator Retail_is1" = Gladiator v1.2.2.0
"Topaz Adjust 4" = Topaz Adjust 4
"Topaz Adjust 4 (64-bit)" = Topaz Adjust 4 (64-bit)
"Topaz Clean 3" = Topaz Clean 3
"Topaz Clean 3 (64-bit)" = Topaz Clean 3 (64-bit)
"Topaz DeJpeg 4" = Topaz DeJpeg 4
"Topaz DeJpeg 4 (64-bit)" = Topaz DeJpeg 4 (64-bit)
"Topaz DeNoise 5" = Topaz DeNoise 5
"Topaz DeNoise 5 (64-bit)" = Topaz DeNoise 5 (64-bit)
"Topaz Detail 2" = Topaz Detail 2
"Topaz Detail 2 (64-bit)" = Topaz Detail 2 (64-bit)
"Topaz Fusion Express 2" = Topaz Fusion Express 2
"Topaz Fusion Express 2 (64-bit)" = Topaz Fusion Express 2 (64-bit)
"Topaz ReMask 2" = Topaz ReMask 2
"Topaz ReMask 2 (64-bit)" = Topaz ReMask 2 (64-bit)
"Topaz Simplify 3" = Topaz Simplify 3
"Topaz Simplify 3 (64-bit)" = Topaz Simplify 3 (64-bit)
"Totalcmd" = Total Commander (Remove or Repair)
"Trapcode 3DStroke" = Trapcode 3DStroke
"Trapcode Particular" = Trapcode Particular
"Trapcode Starglow" = Trapcode Starglow
"Trojan Remover_is1" = Trojan Remover 6.8.3
"TuneUp Utilities" = TuneUp Utilities
"Tunngle beta_is1" = Tunngle beta
"Tweaking.com - Windows Repair (All in One)" = Tweaking.com - Windows Repair (All in One)
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"Vid-Saver" = Vid-Saver
"Virtual MIDI Keyboard" = Virtual MIDI Keyboard
"Waves API Collection" = Waves API Collection
"Waves Complete v7_is1" = Waves Complete VST RTAS TDM v7.1.16
"Waves Complete V8_is1" = Waves Complete v8.0.11
"Waves L3 16" = Waves L3 16
"Waves L3 LL" = Waves L3 LL
"Waves Mercury Bundle" = Waves Mercury Bundle
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
"WinRAR archiver" = WinRAR
"winscp3_is1" = WinSCP 4.2.7
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Xbox360 Dump Extractor Tool GUI" = Xbox360 Dump Extractor Tool GUI 1.1
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate
"XisoManager_is1" = XisoManager v 1.3.1
"XMind" = XMind
"XNote Stopwatch" = XNote Stopwatch
"Zoom Player Home Max" = Zoom Player Home Max 7.00
"ZoomPlayer" = Zoom Player (remove only)
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BlackFire's Mod 2" = BlackFire's Mod 2
"CodeBlocks" = CodeBlocks
"Combo Box" = Combo Box
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"I-Doser v4" = I-Doser v4
"MaLDo HD Texture Pack" = MaLDo HD Texture Pack
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 22.07.2012 05:35:22 | Computer Name = Shogun | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "MSDTC Bridge 4.0.0.0" (MSDTC Bridge 4.0.0.0). Der Fehlercode ist das
 erste DWORD im Datenbereich.
 
Error - 13.06.2012 06:36:59 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 07:08:20 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 08:01:08 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 08:42:15 | Computer Name = Shogun | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Autodesk\Composite
 2012\python\lib\distutils\command\wininst-8_d.exe".  Die abhängige Assemblierung 
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 13.06.2012 09:57:54 | Computer Name = Shogun | Source = SideBySide | ID = 16842787
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
 (x86)\Waves9\Applications\GTR 3.5.exe". Fehler in Manifest- oder Richtliniendatei
 "C:\Program Files (x86)\Waves9\Applications\WavesQtLibs_4.7.3_Win32_Release\WavesQtLibs_4.7.3_Win32_Release.MANIFEST"
 in Zeile  8.  Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der
 angeforderten Komponente überein.  Verweis: WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition:
 WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Verwenden
 Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
 
Error - 13.06.2012 09:57:54 | Computer Name = Shogun | Source = SideBySide | ID = 16842787
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
 (x86)\Waves9\Applications\wlc.exe". Fehler in Manifest- oder Richtliniendatei "C:\Program
 Files (x86)\Waves9\Applications\WavesQtLibs_4.7.3_Win32_Release\WavesQtLibs_4.7.3_Win32_Release.MANIFEST"
 in Zeile  8.  Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der
 angeforderten Komponente überein.  Verweis: WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition:
 WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Verwenden
 Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
 
Error - 13.06.2012 09:52:33 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 13:41:28 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
Error - 13.06.2012 13:57:50 | Computer Name = Shogun | Source = WinMgmt | ID = 10
Description = 
 
[ Media Center Events ]
Error - 17.06.2010 14:34:44 | Computer Name = Shogun | Source = Microsoft-Windows-Media Center Extender | ID = 538
Description = 
 
Error - 17.06.2010 14:51:05 | Computer Name = Shogun | Source = Microsoft-Windows-Media Center Extender | ID = 301
Description = 
 
Error - 04.07.2010 09:12:50 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:12:50 - Fehler beim Herstellen der Internetverbindung.  15:12:50 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 07.07.2010 09:20:48 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:48 - Fehler beim Herstellen der Internetverbindung.  15:20:48 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 07.07.2010 09:21:18 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:21:17 - Fehler beim Herstellen der Internetverbindung.  15:21:17 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 23.07.2010 09:20:23 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:23 - Fehler beim Herstellen der Internetverbindung.  15:20:23 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 23.07.2010 09:20:31 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:20:28 - Fehler beim Herstellen der Internetverbindung.  15:20:28 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 31.07.2010 09:48:28 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:48:28 - Fehler beim Herstellen der Internetverbindung.  15:48:28 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 31.07.2010 09:49:01 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 15:48:57 - Fehler beim Herstellen der Internetverbindung.  15:48:57 
-     Serververbindung konnte nicht hergestellt werden..  
 
Error - 01.04.2011 06:24:55 | Computer Name = Shogun | Source = MCUpdate | ID = 0
Description = 12:24:55 - Directory konnte nicht abgerufen werden (Fehler: Die zugrunde
 liegende Verbindung wurde geschlossen: Für den geschützten SSL/TLS-Kanal konnte
 keine Vertrauensstellung hergestellt werden..)  
 
[ System Events ]
Error - 13.06.2012 09:52:13 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 09:52:13 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 09:52:26 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   ncfjxloa  viamrx64  vsmraid  zogvkg
 
Error - 13.06.2012 13:41:03 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 13:41:03 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 13:41:13 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   ncfjxloa  viamrx64  vsmraid  zogvkg
 
Error - 13.06.2012 13:46:03 | Computer Name = Shogun | Source = Service Control Manager | ID = 7034
Description = Dienst "NVIDIA Stereoscopic 3D Driver Service" wurde unerwartet beendet.
 Dies ist bereits 1 Mal passiert.
 
Error - 13.06.2012 13:57:31 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "ithsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 13:57:31 | Computer Name = Shogun | Source = Service Control Manager | ID = 7000
Description = Der Dienst "lilsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%577
 
Error - 13.06.2012 13:57:42 | Computer Name = Shogun | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
   viamrx64  vsmraid
 
[ TuneUp Events ]
Error - 12.11.2010 11:14:49 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:16:29 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:17:54 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:19:55 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:19:55 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:20:50 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:20:50 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
Error - 12.11.2010 11:21:00 | Computer Name = Shogun | Source = TuneUp.UtilitiesSvc | ID = 300
Description = 
 
 
< End of report >

--- --- ---

Also ich bedanke mich erstmal für die bisherige Mühe, doch leider scheint mein Problem immer noch nicht gelöst zu sein. Die anderen Browser haben immer noch keine Verbindung zum Internet, allerdings kann ich auf den Router zugreifen, konnte ich aber auch schon vorher.

kira · 13.06.2012, 23:26

1.

Zitat:

Achtung wichtig!:
Falls Du selber im Logfile Änderungen vorgenommen hast, musst Du durch die Originalbezeichnung ersetzen und so in Script einfügen! sonst funktioniert nicht!
(Benutzerordner, dein Name oder sonstige Änderungen durch X, Stern oder andere Namen ersetzt)

Fixen mit OTL

Starte die OTL.exe.
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Kopiere folgendes Skript - (also beginnend mit :OTL und am Ende [emptytemp]), alles was in der Codebox steht (ohne "code"!) :

Code:

ATTFilter

:OTL
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
IE - HKCU\..\SearchScopes,DefaultScope = {033009A2-82B6-4D4D-80AB-6CEB39A4C66B}
IE - HKCU\..\SearchScopes\{033009A2-82B6-4D4D-80AB-6CEB39A4C66B}: "URL" = http://www.google.com/search?q={searchTerms}&amp;sourceid=ie7&amp;rls=com.microsoft:{language}:{referrer:source}&amp;ie={inputEncoding?}&oe={outputEncoding?}
IE - HKCU\..\SearchScopes\{0A301480-201B-4B48-B937-00595733ABF3}: "URL" = http://handy-preis.net/search/{searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:21654C57
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1279 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9
@Alternate Data Stream - 1268 bytes -> C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9

:Files
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]

und füge es hier ein:
Schließe alle Programme.
Klicke auf den Fix Button.
Klick auf .
OTL verlangt einen Neustart. Bitte zulassen.
Nach dem Neustart findest Du ein Textdokument.
Kopiere den Inhalt hier in Deinen Thread.

2.
reinige dein System mit CCleaner:

"CCleaner"→ "Analysieren"→ Klick auf den Button "Start CCleaner"
"Registry""Fehler suchen"→ "Fehler beheben"→ "Alle beheben"
Starte dein System neu auf

3.
Vor dem nächsten Schritt, also bevor wir weitermachen:
Da jederzeit etwas passieren kann, wenn du wichtige Daten hast die Du sichern möchtest, empfehle ich Dir es jetzt machen (wie Bilder, Musik usw)
►Achte darauf: Die sicherten Daten sollen keine "Ausführbare Dateien" enthalten! - ►Dateiendungen - Dies ist eine Liste von Dateiendungen, die Dateien mit ausführbarem Code bezeichnen können.
Unabhängig von einem Befall (weil ja kann eine Festplatte auch kaputt gehen, oder es gibt andere technische Probleme ), sollte man regelmäßig Sicherung machen und an einem sicheren Ort bewahren, wie CD und DVD, externe Festplatten oder/und USB-Sticks
Mache das jetzt bitte!

4.
Lade Combofix von einem der folgenden Download-Spiegel herunter:

BleepingComputer.com - ForoSpyware.com

und speichere das Programm auf den Desktop, nicht woanders hin, das ist wichtig!
Beachte die ausführliche Original-Anleitung.

Zurzeit ist Combofix auf folgenden Windows-Versionen lauffähig:

Windows XP (nur 32-bit)
Windows 2000 (nur 32-bit)
Windows Vista (32-bit/64-bit)
Windows 7 (32-bit/64-bit)

Vorbereitung und wichtige Hinweise

Bitte während des Scans mit Combofix Antiviren- sowie Antispy-Programme, die Firewall und evtl. vorhandenes Skript-Blocking (Norton) deaktivieren.
Liste der zu deaktivierenden Programme.
Bei Unklarheiten bitte vorher fragen.
Bitte während des Laufs von Combofix nicht in das Combofix-Fenster klicken.
Das könnte Dein System einfrieren oder hängen bleiben lassen.
Es kann circa eine Viertelstunde dauern, bis der Scan fertig ist.
ComboFix wird Deine Einstellungen in Bezug auf den Bildschirmschoner zurücksetzen.
Diese Einstellungen kannst Du nach Beendigung unserer Bereinigung wieder ändern.
Mache nichts anderes, wenn es Dir nicht gelungen ist, Combofix laufen zu lassen.
Teile uns das mit und warte auf unsere Anweisungen.

Kurzanleitung zur Installation der Wiederherstellungskonsole unter XP

Doppelklicke auf die ComboFix.exe und folge den Anweisungen.
Akzeptiere die Bedingungen (Disclaimer) mit "Ja".
ComboFix wird schauen, ob die Microsoft-Windows-Wiederherstellungskonsole installiert ist.
Dies ist Teil des Prozesses. Angesichts der Art von Malware Infizierungen, die es heute gibt, wird dringend empfohlen, diese Wiederherstellungskonsole auf dem PC installiert zu haben, bevor jegliche Reinigung von Malware durchgeführt wird.
Folge den Anweisungen, um ComboFix das Herunterladen und Installieren der Wiederherstellungskonsole zu ermöglichen und stimme dem Lizenzvertrag (EULA) zu, sobald Du dazu aufgefordert wirst.

** Zur Information: Sollte die Wiederherstellungskonsole schon installiert sein, so wird ComboFix seine Malware-Entfernungsprozedur normal fortfahren.

Sobald die Wiederherstellungskonsole durch ComboFix installiert wurde, solltest Du folgende Nachricht sehen:

Klicke "Ja", um mit dem Suchlauf nach Malware fortzufahren.

Wenn ComboFix fertig ist, wird es ein Log erstellen (bitte warten, das dauert einen Moment).
Unbedingt warten, bis sich das Combofix-Fenster geschlossen hat und das Logfile im Editor erscheint.
Bitte poste die Log-Dateien C:\ComboFix.txt und C:\Qoobox\Add-Remove Programs.txt in Code-Tags hier in den Thread.

Hinweis: Combofix macht aus verschiedenen Gründen den Internet Explorer zum Standard-Browser und erstellt ein IE-Icon auf dem Desktop.
Das IE-Desktop-Icon kannst Du nach der Bereinigung wieder löschen und Deinen bevorzugten Browser wieder als Standard-Browser einstellen.

Combofix nicht auf eigene Faust einsetzen. Wenn keine entsprechende Infektion vorliegt, kann das den Rechner lahmlegen und/oder nachhaltig schädigen!

jgswcrnk · 14.06.2012, 17:54

zu 1. :
06142012_152807.log:

Code:

ATTFilter

All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{033009A2-82B6-4D4D-80AB-6CEB39A4C66B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{033009A2-82B6-4D4D-80AB-6CEB39A4C66B}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0A301480-201B-4B48-B937-00595733ABF3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0A301480-201B-4B48-B937-00595733ABF3}\ not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\PromptOnSecureDesktop deleted successfully.
ADS C:\ProgramData\TEMP:21654C57 deleted successfully.
Unable to delete ADS C:\Users\Alex\Lokale Einstellungen:B0xyyiG2RxmoreZXbFFv0gy .
Unable to delete ADS C:\Users\Alex\AppData\Local\Anwendungsdaten:B0xyyiG2RxmoreZXbFFv0gy .
Unable to delete ADS C:\Users\Alex\Lokale Einstellungen:MHeC10heAPZBZsxVeee5s9 .
Unable to delete ADS C:\Users\Alex\AppData\Local\Anwendungsdaten:MHeC10heAPZBZsxVeee5s9 .
========== FILES ==========
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Alex\Desktop\cmd.bat deleted successfully.
C:\Users\Alex\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: Alex
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 339263236 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 5939457 bytes
->Google Chrome cache emptied: 856432 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 89640 bytes
->Flash cache emptied: 6656 bytes
 
User: All Users
 
User: AppData
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: dimitri
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Mcx1-SHOGUN
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Public
 
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18660 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 330,00 mb
 
 
OTL by OldTimer - Version 3.2.48.0 log created on 06142012_152807

Files\Folders moved on Reboot...
C:\Users\Alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\Alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XE1NN36X\117210-kein-anderer-browser-hat-verbindung-internet-aussser-ie-2[1].htm moved successfully.

Registry entries deleted on Reboot...

zu 2. :
-durchgeführt

zu 3. :
-durchgeführt

zu 4. :

Combofix.txt :
[code]
Combofix Logfile:

Code:

ATTFilter

ComboFix 12-06-14.01 - Alex 14.06.2012  17:47:58.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.49.1031.18.8191.6026 [GMT 2:00]
ausgeführt von:: c:\users\Alex\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Complitly
c:\program files (x86)\Complitly\chrome\ComplitlyChrome.crx
c:\program files (x86)\Complitly\ChromeSetSearchInBrowser.exe
c:\program files (x86)\Complitly\FireFoxExtension.exe
c:\program files (x86)\Complitly\InstTracker.exe
c:\program files (x86)\Complitly\support@Complitly.com\chrome.manifest
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\appIcon.png
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\browserOverlay.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.js
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\utils.js
c:\program files (x86)\Complitly\support@Complitly.com\defaults\preferences\predictad.js
c:\program files (x86)\Complitly\support@Complitly.com\install.rdf
c:\program files (x86)\Complitly\unins000.dat
c:\program files (x86)\Complitly\unins000.exe
c:\program files (x86)\Mozilla Maintenance Service
c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
c:\program files (x86)\Mozilla Maintenance Service\Uninstall.exe
c:\program files (x86)\Mozilla Maintenance Service\updater.ini
c:\programdata\1308151971.bdinstall.bin
c:\programdata\1312919239.bdinstall.bin
c:\programdata\1312919284.bdinstall.bin
c:\programdata\1312919436.bdinstall.bin
c:\programdata\1312919510.bdinstall.bin
c:\programdata\1339338796.bdinstall.bin
c:\programdata\1339342398.bdinstall.bin
c:\programdata\Bc
c:\programdata\Bc\0
c:\programdata\Propellerhead Software\ReCycle
c:\programdata\Propellerhead Software\ReCycle\ReCycle210.dat
c:\users\Alex\AppData\Local\.#
c:\users\Alex\AppData\Local\.#\MBX@5B0@EF1A30.###
c:\users\Alex\AppData\Local\.#\MBX@5B0@EF1A40.###
c:\users\Alex\AppData\Roaming\Desktopicon
c:\users\Alex\AppData\Roaming\Propellerhead Software\ReCycle
c:\users\Alex\AppData\Roaming\Propellerhead Software\ReCycle\ReCycle Preferences File.prf
c:\users\Alex\AppData\Roaming\SQLite3.dll
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\@
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\00000004.@
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\1afb2d56
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\L\201d3dde
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\00000004.@
c:\windows\Installer\{ed2a76fe-9f2e-a7b6-9d76-00cf656c3841}\U\000000cb.@
c:\windows\SysWow64\msvcsv60.dll
c:\windows\XSxS
I:\install.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_MozillaMaintenance
-------\Service_MozillaMaintenance
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-05-14 bis 2012-06-14  ))))))))))))))))))))))))))))))
.
.
2012-06-14 14:25 . 2010-11-20 10:43	41984	----a-w-	c:\windows\system32\drivers\winusb.sys
2012-06-14 13:22 . 2012-05-08 08:02	8955792	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F1A692D2-E846-4923-9ABF-BF98B64525CB}\mpengine.dll
2012-06-13 21:16 . 2012-06-13 21:16	--------	d-----w-	c:\program files (x86)\BitTorrent
2012-06-13 11:55 . 2012-06-13 11:55	--------	d-----w-	C:\_OTL
2012-06-13 07:43 . 2012-06-10 16:19	927800	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-06-13 07:43 . 2012-06-10 16:19	927800	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B58CFD4A-D4DB-42B4-980E-081EF1EB6A1B}\gapaengine.dll
2012-06-13 07:34 . 2012-04-26 05:41	77312	----a-w-	c:\windows\system32\rdpwsx.dll
2012-06-13 07:34 . 2012-04-26 05:41	149504	----a-w-	c:\windows\system32\rdpcorekmts.dll
2012-06-13 07:34 . 2012-04-26 05:34	9216	----a-w-	c:\windows\system32\rdrmemptylst.exe
2012-06-13 07:34 . 2012-05-04 11:06	5559664	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-06-13 07:34 . 2012-05-01 05:40	209920	----a-w-	c:\windows\system32\profsvc.dll
2012-06-13 07:34 . 2012-05-04 10:03	3968368	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2012-06-13 07:34 . 2012-05-04 10:03	3913072	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2012-06-13 07:34 . 2012-05-15 01:32	3146752	----a-w-	c:\windows\system32\win32k.sys
2012-06-13 07:34 . 2012-04-28 05:32	1112064	----a-w-	c:\windows\system32\rdpcorets.dll
2012-06-13 07:34 . 2012-04-28 03:55	210944	----a-w-	c:\windows\system32\drivers\rdpwd.sys
2012-06-13 07:34 . 2012-04-07 12:31	3216384	----a-w-	c:\windows\system32\msi.dll
2012-06-13 07:34 . 2012-04-07 11:26	2342400	----a-w-	c:\windows\SysWow64\msi.dll
2012-06-13 07:33 . 2012-04-24 05:37	1462272	----a-w-	c:\windows\system32\crypt32.dll
2012-06-13 07:33 . 2012-04-24 05:37	184320	----a-w-	c:\windows\system32\cryptsvc.dll
2012-06-13 07:33 . 2012-04-24 05:37	140288	----a-w-	c:\windows\system32\cryptnet.dll
2012-06-13 07:33 . 2012-04-24 04:36	1158656	----a-w-	c:\windows\SysWow64\crypt32.dll
2012-06-13 07:33 . 2012-04-24 04:36	140288	----a-w-	c:\windows\SysWow64\cryptsvc.dll
2012-06-13 07:33 . 2012-04-24 04:36	103936	----a-w-	c:\windows\SysWow64\cryptnet.dll
2012-06-13 07:31 . 2012-05-08 08:02	8955792	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-06-13 07:26 . 2012-06-13 07:26	388096	----a-r-	c:\users\Alex\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-06-12 22:09 . 2012-06-12 22:09	--------	d-----w-	c:\users\Alex\AppData\Roaming\Malwarebytes
2012-06-12 22:09 . 2012-06-12 22:09	--------	d-----w-	c:\programdata\Malwarebytes
2012-06-12 21:32 . 2012-06-12 21:32	--------	d-s---w-	c:\windows\SysWow64\Microsoft
2012-06-12 15:21 . 2012-06-12 15:21	--------	d---a-w-	C:\.fseventsd
2012-06-12 08:21 . 2012-06-12 08:21	--------	d-----w-	c:\program files (x86)\af0.net
2012-06-11 22:31 . 2012-06-11 22:33	--------	d-----w-	C:\SMCLpav
2012-06-11 19:13 . 2012-06-11 19:13	--------	d-----w-	c:\program files (x86)\Safari
2012-06-11 18:59 . 2012-06-11 18:59	--------	d-----w-	c:\users\Alex\AppData\Local\Mozilla
2012-06-11 17:30 . 2012-06-11 17:37	--------	d-----w-	c:\users\Alex\AppData\Roaming\PCPro
2012-06-11 17:30 . 2012-06-11 17:30	--------	d-----w-	c:\users\Alex\AppData\Roaming\PC Cleaners
2012-06-11 17:30 . 2012-06-11 17:30	5276432	----a-w-	c:\windows\uninst.exe
2012-06-11 17:30 . 2012-06-11 17:30	--------	d-----w-	c:\programdata\PC1Data
2012-06-11 06:33 . 2012-05-14 23:41	8955792	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{B9D77E62-A329-4452-B1E0-C8E65926E579}\mpengine.dll
2012-06-10 21:10 . 2012-06-10 21:10	--------	d-----w-	c:\program files (x86)\Tweaking.com
2012-06-10 16:16 . 2012-06-10 16:16	--------	d-----w-	c:\program files (x86)\Microsoft Security Client
2012-06-10 16:16 . 2012-06-10 16:16	--------	d-----w-	c:\program files\Microsoft Security Client
2012-06-10 14:43 . 2012-06-10 14:43	--------	d-----w-	c:\programdata\BDLogging
2012-06-09 22:52 . 2012-06-13 09:06	--------	d-----w-	c:\users\UpdatusUser
2012-06-09 22:52 . 2012-05-15 09:29	889664	----a-w-	c:\windows\system32\nvvsvc.exe
2012-06-09 22:52 . 2012-05-15 09:29	63296	----a-w-	c:\windows\system32\nvshext.dll
2012-06-09 22:52 . 2012-05-15 09:29	2561856	----a-w-	c:\windows\system32\nvsvcr.dll
2012-06-09 22:52 . 2012-05-15 09:29	118080	----a-w-	c:\windows\system32\nvmctray.dll
2012-06-09 22:52 . 2012-05-15 09:29	2621723	----a-w-	c:\windows\system32\nvcoproc.bin
2012-06-09 22:52 . 2012-05-15 09:29	3149632	----a-w-	c:\windows\system32\nvsvc64.dll
2012-06-09 22:52 . 2012-05-15 09:28	6151488	----a-w-	c:\windows\system32\nvcpl.dll
2012-06-09 22:51 . 2012-05-15 10:48	68928	----a-w-	c:\windows\system32\OpenCL.dll
2012-06-09 22:51 . 2012-05-15 10:48	61248	----a-w-	c:\windows\SysWow64\OpenCL.dll
2012-06-09 12:44 . 2012-06-09 12:44	282756	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2012-06-09 12:44 . 2012-06-09 12:44	163972	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2012-06-09 12:44 . 2003-02-27 14:12	696320	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2012-06-09 12:44 . 2002-12-05 12:10	155648	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2012-06-09 12:44 . 2002-12-02 13:22	5632	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2012-06-09 12:44 . 2002-12-02 11:33	57344	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2012-06-09 12:44 . 2002-12-02 11:33	237568	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2012-06-07 12:02 . 2012-06-07 12:02	--------	d-----w-	c:\program files (x86)\MSI Afterburner
2012-06-06 17:12 . 2012-06-07 08:13	--------	d-----w-	c:\program files (x86)\Rockstar Games
2012-06-06 12:44 . 2009-01-22 13:43	46752	----a-w-	c:\windows\system32\drivers\nvhda32.sys
2012-06-06 12:17 . 2009-01-21 14:47	501280	----a-w-	c:\windows\system32\nvuhda6.exe
2012-06-06 12:01 . 2012-06-06 12:01	--------	d-----w-	c:\program files\CCleaner
2012-06-06 11:38 . 2012-06-06 11:38	637848	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2012-06-06 08:17 . 2012-03-09 08:57	23816	----a-w-	c:\windows\system32\drivers\cpuz135_x64.sys
2012-06-03 21:27 . 2012-06-03 21:27	--------	d-----w-	c:\windows\system32\drivers\etc\bak
2012-06-02 10:59 . 2012-06-02 10:59	--------	d-sh--w-	c:\windows\SysWow64\%APPDATA%
2012-06-01 21:48 . 2012-06-01 21:48	--------	d-----w-	c:\users\Alex\AppData\Local\Samsung
2012-06-01 21:48 . 2012-06-01 21:48	--------	d-----w-	c:\users\Alex\AppData\Roaming\Samsung
2012-06-01 21:25 . 2012-06-01 21:25	--------	d-----w-	c:\program files\DIFX
2012-06-01 21:24 . 2009-07-29 19:02	54272	----a-w-	c:\windows\system32\libusb0.dll
2012-06-01 21:24 . 2009-07-29 19:02	31744	----a-w-	c:\windows\system32\drivers\libusb0.sys
2012-06-01 21:24 . 2006-05-31 10:18	42496	----a-w-	c:\windows\SysWow64\libusb0.dll
2012-06-01 21:21 . 2012-05-23 16:50	4659712	----a-w-	c:\windows\SysWow64\Redemption.dll
2012-06-01 21:20 . 2012-06-01 21:20	--------	d-----w-	c:\program files (x86)\MarkAny
2012-06-01 21:20 . 2012-06-01 21:22	--------	d-----w-	c:\program files (x86)\Samsung
2012-06-01 20:56 . 2012-06-01 21:58	--------	d-----w-	c:\programdata\Samsung
2012-05-30 08:01 . 2012-05-30 08:01	--------	d-----w-	c:\users\Alex\AppData\Roaming\Greyfirst
2012-05-30 08:01 . 2012-05-30 08:01	--------	d-----w-	c:\users\Alex\AppData\Local\Greyfirst
2012-05-30 08:01 . 2012-06-11 22:19	--------	d-----w-	c:\program files (x86)\Celtx
2012-05-29 17:16 . 2012-05-29 17:16	--------	d-----w-	C:\WMSDK
2012-05-29 16:47 . 2012-05-29 16:47	--------	d---a-w-	c:\windows\system32\HDAudio
2012-05-29 10:39 . 2012-05-29 12:41	--------	d-----w-	c:\program files (x86)\EVGA Precision X
2012-05-27 15:00 . 2012-05-27 15:00	--------	d-----w-	c:\program files (x86)\Common Files\Microsoft KitSetup
2012-05-27 13:00 . 2012-06-06 22:28	--------	d-----w-	c:\users\Alex\AppData\Roaming\Sony Corporation
2012-05-27 10:05 . 2012-05-27 10:05	--------	d-----w-	c:\program files (x86)\WunderWorks
2012-05-27 09:14 . 2012-05-27 10:06	--------	d-----w-	c:\program files (x86)\Xpadder
2012-05-25 17:24 . 2012-05-25 17:24	151552	----a-w-	c:\windows\SysWow64\nvRegDev.dll
2012-05-25 17:24 . 2012-05-25 17:24	40960	----a-w-	c:\windows\SysWow64\nvISWOW64.dll
2012-05-25 15:21 . 2012-05-25 15:21	--------	d-----w-	c:\programdata\Blackmagic Design
2012-05-25 15:20 . 2012-05-25 15:20	--------	d-----w-	c:\program files\NVIDIA GPU Computing Toolkit
2012-05-23 20:00 . 2012-06-12 16:53	--------	d-----w-	c:\users\Alex\AppData\Roaming\XNote Stopwatch
2012-05-23 20:00 . 2012-05-23 20:03	--------	d-----w-	c:\program files (x86)\XNote Stopwatch
2012-05-23 14:54 . 2012-05-23 14:54	--------	d-sh--w-	c:\users\Alex\AppData\Roaming\Common
2012-05-23 14:35 . 2012-05-15 10:48	301376	----a-w-	c:\windows\SysWow64\nvdecodemft.dll
2012-05-22 21:06 . 2012-05-22 21:06	--------	dc-h--w-	c:\programdata\{D565E85A-7602-4965-8B03-55D249C138D6}
2012-05-22 21:05 . 2012-05-22 21:05	--------	dc----w-	c:\programdata\{20EFD19B-675C-417B-A498-B0161D72FF88}
2012-05-22 21:04 . 2012-05-22 21:04	--------	dc-h--w-	c:\programdata\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
2012-05-22 15:18 . 2012-05-22 15:18	--------	d-----w-	c:\users\Alex\.MakeMKV
2012-05-22 15:17 . 2012-05-22 15:17	--------	d-----w-	c:\program files (x86)\MakeMKV
2012-05-18 23:02 . 2012-05-18 23:02	--------	d-----w-	c:\users\Alex\AppData\Roaming\SPL Plug-Ins
2012-05-18 23:02 . 2012-05-18 23:02	--------	d-----w-	c:\users\Alex\AppData\Roaming\Plugin Alliance
2012-05-18 22:32 . 2012-05-18 22:33	--------	d-----w-	c:\program files (x86)\Sound Performance Lab
2012-05-18 21:35 . 2012-05-18 21:35	--------	d-----w-	c:\program files\Common Files\Celemony
2012-05-18 21:35 . 2012-05-18 21:35	--------	d-----w-	c:\program files\Celemony
2012-05-18 01:52 . 2012-05-18 01:52	--------	dc-h--w-	c:\programdata\{C2686527-0D57-4F0B-ADAB-EE203CA30FC6}
2012-05-18 00:56 . 2012-05-18 00:56	--------	dc-h--w-	c:\programdata\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2012-05-17 18:12 . 2012-05-17 18:12	--------	d-----w-	c:\users\Alex\Adobe Flash Builder 4.6
2012-05-17 17:12 . 2012-05-17 17:12	--------	d-----w-	c:\users\Alex\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-05-17 16:55 . 2012-05-17 16:55	--------	d-----w-	c:\users\Alex\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
2012-05-17 16:55 . 2012-05-17 16:55	--------	d-----w-	c:\program files (x86)\Adobe Support Advisor
2012-05-17 15:33 . 2012-05-17 15:33	--------	d-----w-	c:\users\Alex\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2012-05-17 15:33 . 2012-05-17 15:33	--------	d-----w-	c:\program files (x86)\Adobe Download Assistant
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-13 10:38 . 2012-04-01 11:25	426184	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-13 10:38 . 2011-05-20 07:17	70344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-10 08:43 . 2011-06-15 14:32	1666641	----a-w-	c:\programdata\bdinstall.bin
2012-06-06 11:50 . 2012-01-09 13:21	955848	----a-w-	c:\windows\system32\npdeployJava1.dll
2012-06-06 11:50 . 2012-01-09 13:21	839112	----a-w-	c:\windows\system32\deployJava1.dll
2012-06-06 11:38 . 2010-05-11 14:27	567184	----a-w-	c:\windows\SysWow64\deployJava1.dll
2012-05-28 22:38 . 2009-08-18 11:49	564632	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2012-05-28 22:38 . 2009-08-18 10:24	19736	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-05-15 10:48 . 2012-03-19 22:08	1738048	----a-w-	c:\windows\system32\nvdispco64.dll
2012-05-15 10:48 . 2012-03-19 22:08	1468224	----a-w-	c:\windows\system32\nvgenco64.dll
2012-05-15 00:21 . 2012-05-15 00:21	423744	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2012-05-04 19:32 . 2012-04-01 11:32	8744608	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-05-02 00:46 . 2012-05-02 00:46	4472832	----a-w-	c:\windows\SysWow64\GPhotos.scr
2012-04-18 21:36 . 2012-04-18 21:36	7903888	----a-w-	c:\users\Alex\AppData\Roaming\Microsoft\Windows\Templates\fvsetup.exe
2012-04-04 05:53 . 2012-04-04 05:53	53656	----a-w-	c:\windows\system32\AdobePDF.dll
2012-04-04 05:53 . 2012-04-04 05:53	24984	----a-w-	c:\windows\system32\AdobePDFUI.dll
2012-03-30 11:35 . 2012-05-10 19:45	1918320	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-03-20 18:44 . 2012-03-20 18:44	98688	----a-w-	c:\windows\system32\drivers\NisDrvWFP.sys
2012-03-20 18:44 . 2012-03-20 18:44	203888	----a-w-	c:\windows\system32\drivers\MpFilter.sys
2012-03-17 07:58 . 2012-05-10 19:45	75120	----a-w-	c:\windows\system32\drivers\partmgr.sys
2009-05-18 15:22 . 2009-08-14 18:41	605696	----a-w-	c:\program files (x86)\lame.exe
2008-04-30 13:34 . 2009-06-03 16:48	400896	----a-w-	c:\program files (x86)\h264info.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	94208	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	94208	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	94208	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	94208	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DisplayFusion"="c:\program files (x86)\DisplayFusion\DisplayFusion.exe" [2012-06-11 4519880]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-10-17 284440]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-04-04 815512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux7"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"UpdReg"=c:\windows\UpdReg.EXE
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
"Adobe_ID0ENQBO"=c:\progra~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
"Ai Remote Help"="c:\program files (x86)\ASUS\AI Remote\AiRc.exe"
.
R0 viamrx64;viamrx64;c:\windows\system32\DRIVERS\viamrx64.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 136176]
R2 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2010-03-23 704760]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-13 257224]
R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864]
R3 cpuz130;cpuz130;c:\users\Alex\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 ENTECH64;ENTECH64;c:\windows\system32\DRIVERS\ENTECH64.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-04-09 1431888]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [x]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 136176]
R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [x]
R3 libusb0;PS Vita Driver;c:\windows\system32\drivers\libusb0.sys [2009-07-29 31744]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 netr28ux;RT2870-USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\DRIVERS\netr28ux.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtl8187B.sys [x]
R3 SMIGrabber3C;SMI Grabber Device Tuner Filter 3C;c:\windows\system32\Drivers\SmiUsbGrabber3C.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 SynasUSB;SynasUSB;c:\windows\system32\drivers\SynUSB64.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 vcd10bus;Virtual CD v10 Bus Enumerator;c:\windows\system32\DRIVERS\vcd10bus.sys [x]
R3 vcd9bus;Virtual CD v9 Bus Enumerator;c:\windows\system32\DRIVERS\vcd9bus.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
R4 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S0 mrdd;Marvell Removable Disk Control Driver;c:\windows\system32\DRIVERS\mrdd.sys [x]
S0 mv61xx;mv61xx;c:\windows\system32\DRIVERS\mv61xx.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 ArcSec;ArcSec;c:\windows\system32\drivers\ArcSec.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 emaudsv;E-MU Audio Service;c:\windows\system32\emaudsv.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\nlssrv32.exe [2010-10-04 64512]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35344]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 Synchro Arts License Manager;Synchro Arts License Manager;c:\program files (x86)\Common Files\Synchro Arts Shared\License.exe [2008-02-22 175488]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-02-09 2143552]
S3 emusba10;E-MU USB-Audio 1.0 Driver;c:\windows\system32\DRIVERS\emusba10.sys [x]
S3 nvoclk64;NVIDIA Enthusiasts Platform KDM;c:\windows\system32\DRIVERS\nvoclk64.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-12-12 11856]
S3 VUSB3HUB;VIA USB 3.0 Root Hub Service;c:\windows\system32\DRIVERS\ViaHub3.sys [x]
S3 xhcdrv;VIA USB eXtensible Host Controller Service;c:\windows\system32\DRIVERS\xhcdrv.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - tifsfilter
.
Inhalt des "geplante Tasks" Ordners
.
2012-06-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-01 10:38]
.
2012-02-07 c:\windows\Tasks\AdobeAAMUpdater-1.0-Shogun-Alex.job
- c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-05-17 04:09]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}]
2011-03-23 08:48	167416	------w-	c:\users\Alex\AppData\Roaming\Complitly\64\Complitly64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	97792	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	97792	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	97792	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-01-18 18:49	97792	----a-w-	c:\users\Alex\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 1271168]
"combofix"="c:\combofix\CF4018.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
wmccds
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = 
mStart Page = about:blank
uSearchAssistant = 
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.2.2
FF - ProfilePath - c:\users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\qeoh0y3x.default\
FF - prefs.js: network.proxy.ftp - 192.168.2.24
FF - prefs.js: network.proxy.ftp_port - 42102
FF - prefs.js: network.proxy.http - 192.168.2.24
FF - prefs.js: network.proxy.http_port - 42102
FF - prefs.js: network.proxy.socks - 192.168.2.24
FF - prefs.js: network.proxy.socks_port - 42102
FF - prefs.js: network.proxy.ssl - 192.168.2.24
FF - prefs.js: network.proxy.ssl_port - 42102
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Complitly_is1 - c:\program files (x86)\Complitly\unins000.exe
AddRemove-MozillaMaintenanceService - c:\program files (x86)\Mozilla Maintenance Service\uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.download\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariDownload"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.HTM"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.HTM"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.safariextz\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariExtension"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
"Progid"="SafariHTML"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\UserChoice]
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.SVG"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webarchive\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariHTML"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.XHT"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.XHT"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xml\UserChoice]
@Denied: (2) (LocalSystem)
@Denied: (2) (S-1-5-21-2380579043-224327424-4130863296-1000)
"Progid"="SafariHTML"
.
[HKEY_USERS\S-1-5-21-2380579043-224327424-4130863296-1000\Software\SecuROM\License information*]
"datasecu"=hex:97,60,90,59,79,fe,64,53,16,c4,04,ca,28,c1,a5,4e,8f,8b,66,ed,bd,
   cf,9b,90,ae,96,37,1c,2a,bd,05,11,78,d9,94,86,b4,04,df,90,5d,c3,28,35,d0,35,\
"rkeysecu"=hex:b8,ec,41,a2,d4,f0,77,7c,0c,32,34,02,8b,c3,93,ea
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:f6,7f,f4,c7,f0,cc,a5,6a,16,54,e9,ea,d1,e7,5f,ca,f2,ec,9e,ca,db,
   98,bc,21,4b,2e,be,a7,70,15,73,78,c8,ed,e0,0f,61,d7,9b,fe,57,e3,b9,03,28,a3,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:c2,bc,2c,2a,46,56,43,fb,51,f8,2f,a0,ae,7d,45,0d,fc,7a,b2,62,31,
   07,e0,df,40,16,f5,2b,ac,c0,45,34,57,69,30,35,1b,4f,b6,96,0e,92,6b,cc,c5,5a,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:f6,7f,f4,c7,f0,cc,a5,6a,16,54,e9,ea,d1,e7,5f,ca,f2,ec,9e,ca,db,
   98,bc,21,4b,2e,be,a7,70,15,73,78,c8,ed,e0,0f,61,d7,9b,fe,57,e3,b9,03,28,a3,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:cd,64,26,a5,55,3b,d7,a0,54,2b,03,f1,63,eb,c4,23,43,79,fa,75,f2,
   13,54,2a,5c,92,33,56,4d,c4,c3,8c,6e,f2,71,51,8e,bd,ef,c1,a3,0a,03,cf,d0,1c,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-06-14  18:21:03 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-06-14 16:21
.
Vor Suchlauf: 27 Verzeichnis(se), 57.964.232.704 Bytes frei
Nach Suchlauf: 35 Verzeichnis(se), 56.887.054.336 Bytes frei
.
- - End Of File - - A20E146B422E29270482C352103E27C1

--- --- ---

Die textdatei C:\Qoobox\Add-Remove Programs.txt gab es bei mir nicht!!!, gescheiwge das Verzeichnis.

Leider geht immernoch kein anderer Browser als IE

kira · 14.06.2012, 19:53

1.

lade Dir SUPERAntiSpyware FREE Edition herunter.
Achte darauf, eventuell angebotene Toolbar nicht mitzuinstallieren, also während der Installation den Haken bei der Toolbar (falls nötig), entfernen.
installiere das Programm und update online.
starte SUPERAntiSpyware und klicke auf "Ihren Computer durchsuchen"
setze ein Häkchen bei "Kompletter Scan" und klicke auf "Weiter"
anschließend alle gefundenen Schadprogramme werden aufgelistet, bei alle Funde Häkchen setzen und mit "OK" bestätigen
auf "Weiter" klicken dann "OK" und auf "Fertig stellen"
um die Ergebnisse anzuzeigen: auf "Präferenzen" dann auf den "Statistiken und Protokolle" klicken
drücke auf "Protokoll anzeigen" - anschließend diesen Bericht bitte speichern und hier posten

2.
Auch auf USB-Sticks, selbstgebrannten Datenträgern, externen Festplatten und anderen Datenträgern können Viren transportiert werden. Man muss daher durch regelmäßige Prüfungen auf Schäden, die durch Malware ("Worm.Win32.Autorun") verursacht worden sein können, überwacht werden. Hierfür sind ser gut geegnet und empfohlen, die auf dem Speichermedium gesicherten Daten, mit Hilfe des kostenlosen Online Scanners zu prüfen.
Schließe jetzt alle externe Datenträgeran (USB Sticks etc) Deinen Rechner an, dabei die Hochstell-Taste [Shift-Taste] gedrückt halten, damit die Autorun-Funktion nicht ausgeführt wird. (So verhindest Du die Ausführung der AUTORUN-Funktion) - Man kann die AUTORUN-Funktion aber auch generell abschalten.►Anleitung

3.
-> Führe dann einen Komplett-Systemcheck mit Eset Online Scanner (NOD32)Kostenlose Online Scanner durch
Achtung!: >>Du sollst nicht die Antivirus-Sicherheitssoftware installieren, sondern dein System nur online scannen<<

4.
erneut einen Scan mit OTL:

Doppelklick auf die OTL.exe
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Oben findest Du ein Kästchen mit Ausgabe.
Wähle bitte Standard-Ausgabe
Unter Extra-Registrierung wähle bitte Benutze SafeList.
Mache Häckchen bei LOP- und Purity-Prüfung.
Klicke nun auf Scan links oben.
Wenn der Scan beendet wurde werden zwei Logfiles erstellt.
Du findest die Logfiles auf Deinem Desktop => OTL.txt und Extras.txt
Poste die Logfiles in Code-Tags hier in den Thread.

► berichte erneut über den Zustand des Computers. Ob noch Probleme auftreten, wenn ja, welche?

jgswcrnk · 14.06.2012, 20:09

also befor ich das mache: ICH WEIß JETZT WAS DER FEHLER IST!!!
und zwar: sind es die 32bit browser, habe mir nämlich firefox und opera 64 bit installiert und beide funktionieren einwandfrei.

jetzt da der ansatz da ist, sollte ich mit dem Durchführen der folgenden Schritte warten oder sollte ich sie trotzdem abarbeiten?

kira · 14.06.2012, 20:55

während der Installation auf Kompatibilität immer achten!

ja, bitte alle Punkte erledigen, dein System war nicht sauber!

Kein anderer Browser hat Verbindung zum Internet, außser IE

Log-Analyse und Auswertung: Kein anderer Browser hat Verbindung zum Internet, außser IE