| |
| |||||||
Log-Analyse und Auswertung: gmer AuswertungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
22.07.2012, 20:09
| #1 |
| |  gmer Auswertung Hallo, WIndows hat eine Bösartige Software entfernt (Alureon) Danach funktionierten meine Internet Browser nicht. Habe festgestellt das die Standard DNS gelöscht war bei den Netzwerk eigenschaften. Alles eingetragen danach liefen die Browser wieder. Habe mein System mit Avira gescannt ohne Befund, ich brauche jetzt nur nochmal eine Meinung zu den Funden bei Gmer: Vielen Dank schonmal! Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-07-22 20:43:54
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 Hitachi_HTS725032A9A364 rev.PC3OC72E
Running: l8z7uzox.exe; Driver: C:\DOKUME~1\Bartsch\LOKALE~1\Temp\kgtdipod.sys
---- System - GMER 1.0.15 ----
SSDT BA75550C ZwClose
SSDT BA7554C6 ZwCreateKey
SSDT BA755516 ZwCreateSection
SSDT BA7554BC ZwCreateThread
SSDT BA7554CB ZwDeleteKey
SSDT BA7554D5 ZwDeleteValueKey
SSDT BA755507 ZwDuplicateObject
SSDT BA7554DA ZwLoadKey
SSDT BA7554A8 ZwOpenProcess
SSDT BA7554AD ZwOpenThread
SSDT BA75552F ZwQueryValueKey
SSDT BA7554E4 ZwReplaceKey
SSDT BA755520 ZwRequestWaitReplyPort
SSDT BA7554DF ZwRestoreKey
SSDT BA75551B ZwSetContextThread
SSDT BA755525 ZwSetSecurityObject
SSDT BA75552A ZwSystemDebugControl
SSDT BA7554B7 ZwTerminateProcess
---- Kernel code sections - GMER 1.0.15 ----
.text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xA872E000, 0x235D07, 0xE8000020]
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Ftdisk \Device\HarddiskVolume1 hotcore3.sys (A part of Paragon System Utilities/Paragon Software Group)
AttachedDevice \Driver\Ftdisk \Device\HarddiskVolume2 hotcore3.sys (A part of Paragon System Utilities/Paragon Software Group)
AttachedDevice \Driver\Ftdisk \Device\HarddiskVolume3 hotcore3.sys (A part of Paragon System Utilities/Paragon Software Group)
AttachedDevice \Driver\Ftdisk \Device\HarddiskVolume4 hotcore3.sys (A part of Paragon System Utilities/Paragon Software Group)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- EOF - GMER 1.0.15 ----
|
|
24.07.2012, 23:24
| #2 |
| | gmer Auswertung Hier die OTL :
__________________Code:
ATTFilter OTL logfile created on: 25.07.2012 00:06:28 - Run 1 OTL by OldTimer - Version 3.2.54.1 Folder = C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Downloads Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1,75 Gb Total Physical Memory | 1,06 Gb Available Physical Memory | 60,83% Memory free 3,60 Gb Paging File | 2,79 Gb Available in Paging File | 77,57% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 211,76 Gb Total Space | 156,90 Gb Free Space | 74,09% Space Free | Partition Type: NTFS Drive D: | 66,28 Gb Total Space | 63,13 Gb Free Space | 95,25% Space Free | Partition Type: FAT32 Drive F: | 950,56 Mb Total Space | 915,93 Mb Free Space | 96,36% Space Free | Partition Type: FAT32 Computer Name: CHRISTIAN | User Name: Bartsch | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.07.25 00:06:06 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Downloads\OTL.exe PRC - [2012.05.24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Dropbox\bin\Dropbox.exe PRC - [2012.05.09 05:07:45 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe PRC - [2012.05.09 05:07:44 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe PRC - [2012.05.09 05:07:44 | 000,210,896 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avnotify.exe PRC - [2012.05.09 05:07:44 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe PRC - [2012.05.09 05:07:44 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe PRC - [2012.04.26 11:00:19 | 001,380,464 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\mshaktuell.exe PRC - [2012.01.18 15:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe PRC - [2011.12.20 14:32:00 | 000,634,880 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\htcUPCTLoader.exe PRC - [2011.12.06 23:00:14 | 000,784,240 | ---- | M] () -- C:\Programme\Motorola\MotoHelper\MotoHelperAgent.exe PRC - [2011.12.06 23:00:14 | 000,214,896 | ---- | M] () -- C:\Programme\Motorola\MotoHelper\MotoHelperService.exe PRC - [2011.10.24 22:32:00 | 000,055,144 | ---- | M] (Apple Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Programme\HTC\Internet Pass-Through\PassThruSvr.exe PRC - [2011.01.17 19:50:34 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Programme\OpenOffice.org 3\program\soffice.exe PRC - [2011.01.17 19:50:34 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Programme\OpenOffice.org 3\program\soffice.bin PRC - [2010.11.05 17:11:52 | 000,081,920 | R--- | M] (Nero AG) -- C:\Programme\Motorola Media Link\NServiceEntry.exe PRC - [2010.03.17 05:48:42 | 000,229,458 | ---- | M] (IDT, Inc.) -- c:\Programme\IDT\WDM\stacsv.exe PRC - [2010.03.05 00:38:00 | 000,071,096 | ---- | M] () -- C:\Programme\CDBurnerXP\NMSAccessU.exe PRC - [2009.10.12 13:51:26 | 001,455,480 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BTStackServer.exe PRC - [2009.10.12 13:51:26 | 000,607,584 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe PRC - [2009.05.11 18:35:30 | 000,118,784 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\system32\atibtmon.exe PRC - [2009.04.21 22:01:56 | 000,737,280 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe PRC - [2006.02.28 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2006.02.28 14:00:00 | 000,196,608 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\WMIADAP.EXE ========== Modules (No Company Name) ========== MOD - [2012.07.22 14:10:48 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\dbc413807cb7360b3e26ef3ca1d54f9a\System.Web.ni.dll MOD - [2012.07.22 14:05:10 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll MOD - [2012.07.22 14:03:19 | 003,186,688 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll MOD - [2012.07.22 14:03:17 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2012.07.22 14:03:16 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll MOD - [2012.07.22 14:03:04 | 002,048,000 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll MOD - [2012.07.22 11:26:06 | 001,592,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll MOD - [2012.05.13 12:19:50 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\92d58f840f549f9bd880783d43db7e3c\System.Runtime.Remoting.ni.dll MOD - [2012.05.13 12:19:27 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll MOD - [2012.05.13 12:11:28 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\016444dfc5f7e3d11c776f2fbc7a4594\Accessibility.ni.dll MOD - [2012.05.13 09:28:22 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll MOD - [2012.05.13 09:26:38 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll MOD - [2012.05.13 09:26:29 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll MOD - [2012.05.09 05:07:45 | 000,398,288 | ---- | M] () -- C:\Programme\Avira\AntiVir Desktop\sqlite3.dll MOD - [2012.04.26 11:17:29 | 002,002,032 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wfvie12.dll MOD - [2012.04.26 11:17:24 | 000,319,600 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\rsguiwinapi47.dll MOD - [2012.04.26 11:17:23 | 001,543,280 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wsteu12.dll MOD - [2012.04.26 11:17:20 | 000,275,056 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\rscorewinapi47.dll MOD - [2012.04.26 11:01:32 | 007,921,776 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wgui12.dll MOD - [2012.04.26 11:01:14 | 002,984,560 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wcore12.dll MOD - [2012.04.26 11:01:02 | 004,443,760 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wauff12.dll MOD - [2012.04.26 11:00:34 | 001,640,560 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\wreli12.dll MOD - [2012.04.26 11:00:19 | 001,380,464 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\mshaktuell.exe MOD - [2012.04.26 11:00:11 | 000,135,792 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\rsodbc47.dll MOD - [2012.04.26 11:00:08 | 000,028,672 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\rsdcom47.dll MOD - [2012.01.25 11:01:03 | 000,720,896 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtsqlrs47.dll MOD - [2011.12.20 14:32:00 | 001,515,520 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\Maps\R66Api.dll MOD - [2011.12.20 14:32:00 | 000,634,880 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\htcUPCTLoader.exe MOD - [2011.12.20 14:32:00 | 000,559,244 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\sqlite3.7.dll MOD - [2011.12.20 14:32:00 | 000,516,599 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\sqlite3.dll MOD - [2011.12.20 14:32:00 | 000,389,120 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\htcDetect.dll MOD - [2011.12.20 14:32:00 | 000,172,032 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\htcDetectLegend.dll MOD - [2011.12.20 14:32:00 | 000,143,360 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\htcDisk.dll MOD - [2011.12.20 14:32:00 | 000,103,936 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\OutputLog.dll MOD - [2011.12.20 14:32:00 | 000,094,208 | ---- | M] () -- C:\Programme\HTC\HTC Sync 3.0\fdHttpd.dll MOD - [2011.12.06 23:00:14 | 000,784,240 | ---- | M] () -- C:\Programme\Motorola\MotoHelper\MotoHelperAgent.exe MOD - [2011.12.06 23:00:14 | 000,214,896 | ---- | M] () -- C:\Programme\Motorola\MotoHelper\MotoHelperService.exe MOD - [2011.11.05 11:21:16 | 000,985,088 | ---- | M] () -- C:\Programme\OpenOffice.org 3\program\libxml2.dll MOD - [2011.11.04 19:17:33 | 000,380,928 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3769.16931__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll MOD - [2011.11.04 19:17:33 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3769.16953__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2011.11.04 19:17:33 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3769.16947__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll MOD - [2011.11.04 19:17:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3769.16941__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll MOD - [2011.11.04 19:17:32 | 001,736,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3769.16951__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll MOD - [2011.11.04 19:17:32 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3769.17008__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2011.11.04 19:17:32 | 000,069,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3769.16987__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2011.11.04 19:17:32 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3769.16976__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll MOD - [2011.11.04 19:17:31 | 000,184,320 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Dashboard\2.0.3769.17063__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:31 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3769.16940__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:31 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3769.17029__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:31 | 000,013,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Runtime\2.0.3769.17064__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Runtime.dll MOD - [2011.11.04 19:17:31 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Runtime\2.0.3769.17062__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Runtime.dll MOD - [2011.11.04 19:17:30 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3769.16993__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2011.11.04 19:17:30 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3769.16953__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:30 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3769.16952__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll MOD - [2011.11.04 19:17:29 | 000,356,352 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3769.16992__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:29 | 000,118,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Dashboard\2.0.3769.17030__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:29 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3769.16992__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll MOD - [2011.11.04 19:17:29 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Runtime\2.0.3769.17029__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Runtime.dll MOD - [2011.11.04 19:17:27 | 000,856,064 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3769.16979__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:27 | 000,409,600 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3769.17001__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll MOD - [2011.11.04 19:17:26 | 000,409,600 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3769.16942__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:26 | 000,196,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3769.16954__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:26 | 000,102,400 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3769.16978__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll MOD - [2011.11.04 19:17:26 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3769.16984__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:26 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3769.16983__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll MOD - [2011.11.04 19:17:25 | 000,573,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3769.16954__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:25 | 000,323,584 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3769.16986__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:25 | 000,307,200 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3769.16958__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll MOD - [2011.11.04 19:17:25 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3769.16957__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll MOD - [2011.11.04 19:17:24 | 000,397,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3769.16977__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:24 | 000,376,832 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3769.16973__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:24 | 000,270,336 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll MOD - [2011.11.04 19:17:24 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3769.16976__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2011.11.04 19:17:24 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3769.16978__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2011.11.04 19:17:24 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3769.16985__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2011.11.04 19:17:23 | 000,008,192 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3769.16925__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll MOD - [2011.11.04 19:17:23 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3769.16921__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll MOD - [2011.11.04 19:17:23 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3769.16925__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll MOD - [2011.11.04 19:17:22 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll MOD - [2011.11.04 19:17:22 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3769.17026__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll MOD - [2011.11.04 19:17:22 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3769.17034__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll MOD - [2011.11.04 19:17:22 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3769.16930__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll MOD - [2011.11.04 19:17:22 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3769.16926__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll MOD - [2011.11.04 19:17:21 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3769.16919__90ba9c70f846762e\LOG.Foundation.dll MOD - [2011.11.04 19:17:21 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll MOD - [2011.11.04 19:17:21 | 000,015,360 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3769.16920__90ba9c70f846762e\NEWAEM.Foundation.dll MOD - [2011.11.04 19:17:21 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3769.16924__90ba9c70f846762e\MOM.Foundation.dll MOD - [2011.11.04 19:17:20 | 000,151,552 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3769.16923__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll MOD - [2011.11.04 19:17:20 | 000,098,304 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3769.16920__90ba9c70f846762e\CLI.Foundation.dll MOD - [2011.11.04 19:17:20 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll MOD - [2011.11.04 19:17:20 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3769.17027__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2011.11.04 19:17:20 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3769.17022__90ba9c70f846762e\CLI.Foundation.XManifest.dll MOD - [2011.11.04 19:17:20 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3769.16922__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll MOD - [2011.11.04 19:17:20 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3769.16922__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll MOD - [2011.11.04 19:17:20 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3769.16952__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll MOD - [2011.11.04 19:17:20 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll MOD - [2011.11.04 19:17:20 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3769.16947__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2011.11.04 19:17:20 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3769.16940__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2011.11.04 19:17:20 | 000,009,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Shared\2.0.3769.17028__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Shared.dll MOD - [2011.11.04 19:17:20 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3769.16921__90ba9c70f846762e\CLI.Component.Client.Shared.dll MOD - [2011.11.04 19:17:20 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3769.16929__90ba9c70f846762e\DEM.Graphics.dll MOD - [2011.11.04 19:17:20 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3769.16924__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll MOD - [2011.11.04 19:17:19 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3769.16969__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3769.17007__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3769.16991__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3769.16950__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3769.16977__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3769.16940__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3769.16987__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3769.16940__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Shared\2.0.3769.17001__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3769.16941__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3769.16983__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll MOD - [2011.11.04 19:17:19 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3769.16930__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll MOD - [2011.11.04 19:17:18 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3769.17034__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll MOD - [2011.11.04 19:17:18 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3769.16950__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2011.11.04 19:17:18 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3769.16921__90ba9c70f846762e\APM.Foundation.dll MOD - [2011.11.04 19:17:18 | 000,014,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll MOD - [2011.11.04 19:17:18 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll MOD - [2011.11.04 19:17:18 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3769.16928__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll MOD - [2011.11.04 19:17:18 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3769.16926__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll MOD - [2011.11.04 19:17:18 | 000,006,144 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3769.16926__90ba9c70f846762e\AEM.Server.Shared.dll MOD - [2011.11.04 19:17:17 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3769.16946__90ba9c70f846762e\CLI.Component.Wizard.dll MOD - [2011.11.04 19:17:17 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3769.17022__90ba9c70f846762e\MOM.Implementation.dll MOD - [2011.11.04 19:17:17 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3769.17020__90ba9c70f846762e\LOG.Foundation.Implementation.dll MOD - [2011.11.04 19:17:17 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3769.16928__90ba9c70f846762e\CLI.Component.Runtime.dll MOD - [2011.11.04 19:17:17 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3769.16929__90ba9c70f846762e\CLI.Component.SkinFactory.dll MOD - [2011.11.04 19:17:17 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3769.16925__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll MOD - [2011.11.04 19:17:17 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3769.16924__90ba9c70f846762e\CLI.Foundation.Private.dll MOD - [2011.11.04 19:17:17 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3769.16922__90ba9c70f846762e\LOG.Foundation.Private.dll MOD - [2011.11.04 19:17:17 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3769.16923__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll MOD - [2011.11.04 19:17:17 | 000,011,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3769.16946__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll MOD - [2011.11.04 19:17:16 | 001,220,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3769.16936__90ba9c70f846762e\CLI.Component.Dashboard.dll MOD - [2011.11.04 19:17:16 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3769.16934__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll MOD - [2011.11.04 19:17:16 | 000,010,240 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3769.16935__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll MOD - [2011.11.04 19:17:15 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3769.16928__90ba9c70f846762e\APM.Server.dll MOD - [2011.11.04 19:17:15 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3769.16927__90ba9c70f846762e\AEM.Server.dll MOD - [2011.11.04 19:17:15 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll MOD - [2011.11.04 19:17:15 | 000,019,456 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3769.17022__90ba9c70f846762e\CCC.Implementation.dll MOD - [2011.11.04 19:17:15 | 000,008,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3769.16952__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2011.11.04 13:47:20 | 000,865,280 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtcluceners47.dll MOD - [2011.11.04 13:47:18 | 000,271,872 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\phononrs47.dll MOD - [2011.11.04 13:47:16 | 011,163,648 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtwebkitrs47.dll MOD - [2011.11.04 13:47:14 | 000,108,544 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qttestrs47.dll MOD - [2011.11.04 13:47:12 | 001,340,416 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtscriptrs47.dll MOD - [2011.11.04 13:47:12 | 000,281,088 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtsvgrs47.dll MOD - [2011.11.04 13:47:10 | 008,934,400 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtguirs47.dll MOD - [2011.11.04 13:47:10 | 002,395,648 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qt3supportrs47.dll MOD - [2011.11.04 13:47:10 | 000,990,208 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtnetworkrs47.dll MOD - [2011.11.04 13:47:10 | 000,358,400 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtxmlrs47.dll MOD - [2011.11.04 13:47:08 | 002,356,736 | ---- | M] () -- C:\Programme\WISO\Steuersoftware 2012\qtcorers47.dll MOD - [2011.11.02 00:26:32 | 000,087,912 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\zlib1.dll MOD - [2011.11.02 00:26:12 | 001,242,472 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\libxml2.dll MOD - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Programme\HTC\Internet Pass-Through\PassThruSvr.exe MOD - [2010.11.05 17:12:00 | 000,460,199 | R--- | M] () -- C:\Programme\Motorola Media Link\sqlite3.dll MOD - [2010.11.05 17:11:48 | 000,036,864 | R--- | M] () -- C:\Programme\Motorola Media Link\NLog.dll MOD - [2010.11.05 17:11:44 | 000,057,344 | R--- | M] () -- C:\Programme\Motorola Media Link\NetSharingService.dll MOD - [2010.11.05 17:11:44 | 000,026,624 | R--- | M] () -- C:\Programme\Motorola Media Link\NFileCacheDBAccess.dll MOD - [2010.11.05 17:11:42 | 000,038,912 | R--- | M] () -- C:\Programme\Motorola Media Link\NAdvLog.dll MOD - [2010.11.05 17:11:24 | 000,114,688 | R--- | M] () -- C:\Programme\Motorola Media Link\LiveupdateTactics.dll MOD - [2010.11.05 17:11:22 | 000,044,032 | R--- | M] () -- C:\Programme\Motorola Media Link\InterProcessChannel.dll MOD - [2010.11.05 17:11:12 | 000,018,432 | R--- | M] () -- C:\Programme\Motorola Media Link\DbAccess.dll MOD - [2010.04.12 17:59:12 | 000,098,304 | R--- | M] () -- C:\Programme\ATI Technologies\ATI.ACE\Branding\Branding.dll MOD - [2010.03.05 00:38:00 | 000,071,096 | ---- | M] () -- C:\Programme\CDBurnerXP\NMSAccessU.exe MOD - [2009.10.12 14:50:14 | 002,854,976 | ---- | M] () -- C:\WINDOWS\system32\btwicons.dll MOD - [2009.10.12 13:47:42 | 000,069,697 | ---- | M] () -- C:\Programme\WIDCOMM\Bluetooth Software\BTKeyInd.dll MOD - [2006.02.28 14:00:00 | 000,214,528 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\wbemcomn.dll MOD - [2006.02.28 14:00:00 | 000,196,608 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\WMIADAP.EXE MOD - [2006.02.28 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012.05.09 05:07:45 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012.05.09 05:07:44 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2012.05.06 21:11:43 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2011.12.06 23:00:14 | 000,214,896 | ---- | M] () [Auto | Running] -- C:\Programme\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper) SRV - [2011.10.24 22:32:00 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Programme\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service) SRV - [2010.11.05 17:11:52 | 000,081,920 | R--- | M] (Nero AG) [Auto | Running] -- C:\Programme\Motorola Media Link\NServiceEntry.exe -- (DeviceMonitorService) SRV - [2010.03.17 05:48:42 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\Programme\IDT\WDM\stacsv.exe -- (STacSV) SRV - [2010.03.05 00:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Programme\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012.05.09 05:07:45 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2012.05.09 05:07:45 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2011.11.08 13:59:04 | 000,011,008 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motusbdevice.sys -- (motusbdevice) DRV - [2011.11.04 19:09:26 | 002,696,448 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2011.10.19 17:56:15 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr) DRV - [2011.07.29 13:54:56 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv) DRV - [2011.07.29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv) DRV - [2011.04.04 15:55:38 | 000,020,480 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp) DRV - [2011.03.31 15:53:24 | 000,024,064 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motmodem.sys -- (motmodem) DRV - [2011.03.28 11:52:52 | 000,381,032 | ---- | M] (Paragon) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Uim_IM.sys -- (Uim_IM) DRV - [2011.03.28 11:52:52 | 000,040,824 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UimBus.sys -- (UimBus) DRV - [2011.03.28 11:52:48 | 000,057,112 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hotcore3.sys -- (hotcore3) DRV - [2010.06.22 19:01:52 | 000,021,248 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\htcnprot.sys -- (htcnprot) DRV - [2010.06.17 16:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010.05.03 15:49:18 | 000,225,232 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2010.04.27 12:07:38 | 004,686,848 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2010.04.27 11:24:50 | 001,763,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) DRV - [2010.04.01 15:31:50 | 000,023,424 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Motousbnet.sys -- (Motousbnet) DRV - [2010.03.17 05:48:42 | 001,659,283 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2009.12.03 08:57:48 | 000,045,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2009.12.03 08:57:28 | 000,991,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL) DRV - [2009.11.12 14:48:56 | 000,005,504 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009.06.10 16:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys -- (HTCAND32) DRV - [2009.05.08 12:56:12 | 000,042,752 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motodrv.sys -- (MotDev) DRV - [2009.04.21 23:13:34 | 000,113,664 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud) DRV - [2009.03.16 23:19:44 | 000,058,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD) DRV - [2009.01.29 18:18:00 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl) DRV - [2009.01.29 18:11:20 | 000,006,016 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motfilt.sys -- (BTCFilterService) DRV - [2007.11.02 16:51:30 | 000,006,400 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motswch.sys -- (MotoSwitchService) DRV - [2007.04.16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;192.168.*.* ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/ig?hl=de" FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Programme\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.05.06 21:11:43 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2012.03.03 10:30:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Components: C:\Programme\Mozilla Sunbird\components [2011.11.09 19:58:51 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Plugins: C:\Programme\Mozilla Sunbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Components: C:\Programme\Mozilla Thunderbird\components [2012.04.06 10:59:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Plugins: C:\Programme\Mozilla Thunderbird\plugins [2011.11.09 19:58:53 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Mozilla\Extensions [2011.11.09 19:58:53 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Mozilla\Extensions\{718e30fb-e89b-41dd-9da7-e25a45638b28} [2012.05.02 22:52:30 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Mozilla\Firefox\Profiles\k1tpapyd.default\extensions [2011.11.09 19:58:53 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Mozilla\Sunbird\Profiles\gj0aqcvn.default\extensions [2012.03.19 22:00:19 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2011.08.22 11:25:14 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011.04.03 21:13:15 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Programme\Mozilla Firefox\extensions\quickstores@quickstores.de [2011.11.05 18:57:18 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2012.05.06 21:11:42 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll [2012.03.02 23:17:10 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll [2011.09.27 21:04:22 | 000,170,080 | ---- | M] (Tracker Software Products Ltd.) -- C:\Programme\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2012.02.22 21:11:49 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.05.31 10:37:22 | 000,002,423 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\babylon.xml [2012.02.22 21:11:49 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml [2012.02.22 21:11:49 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml [2012.02.22 21:11:49 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml [2012.02.22 21:11:49 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml [2012.02.22 21:11:49 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2006.02.28 14:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation) O4 - HKLM..\Run: [APSDaemon] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [HTC Sync Loader] C:\Programme\HTC\HTC Sync 3.0\htcUPCTLoader.exe () O4 - HKLM..\Run: [mumservice] C:\Program Files\Motorola\Software Update\mumservice.exe File not found O4 - HKLM..\Run: [snp2uvc] C:\WINDOWS\System32\csnp2uvc.dll ( ) O4 - HKLM..\Run: [StartCCC] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - Startup: C:\Dokumente und Einstellungen\All Users.WINDOWS\Startmenü\Programme\Autostart\BTTray.lnk = C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) O4 - Startup: C:\Dokumente und Einstellungen\All Users.WINDOWS\Startmenü\Programme\Autostart\Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) O4 - Startup: C:\Dokumente und Einstellungen\All Users.WINDOWS\Startmenü\Programme\Autostart\WISO Mein Steuer-Sparbuch heute.lnk = C:\Programme\WISO\Steuersoftware 2012\mshaktuell.exe () O4 - Startup: C:\Dokumente und Einstellungen\Bartsch\Startmenü\Programme\Autostart\Dropbox.lnk = C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\Dokumente und Einstellungen\Bartsch\Startmenü\Programme\Autostart\OpenOffice.org 3.2.lnk = C:\Programme\OpenOffice.org 3\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Senden an &Bluetooth-Gerät... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Senden an Bluetooth - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2457A1D5-3E10-4DDC-86A9-D4D93DA3D4E1}: NameServer = 192.168.2.1 O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010.11.04 04:13:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012.07.18 21:07:16 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT32 ] O33 - MountPoints2\{b6223cc2-434f-11e1-b4ec-002682b35d38}\Shell - "" = AutoRun O33 - MountPoints2\{b6223cc2-434f-11e1-b4ec-002682b35d38}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{b6223cc2-434f-11e1-b4ec-002682b35d38}\Shell\AutoRun\command - "" = D:\setup.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2012.07.24 23:56:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2012.07.24 23:42:10 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2012.07.24 23:42:09 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2012.07.24 23:42:09 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2012.07.24 23:40:12 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2012.07.23 23:06:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\SMA [2012.07.23 23:06:12 | 000,000,000 | ---D | C] -- C:\Programme\SMA [2012.07.23 23:06:12 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Startmenü\Programme\SMA [2012.07.20 07:13:22 | 000,000,000 | ---D | C] -- C:\d269f1a9214367392b4369 [2012.07.20 06:51:00 | 000,000,000 | ---D | C] -- C:\Programme\Dropbox [2012.07.19 20:51:34 | 012,272,184 | ---- | C] (ESTsoft Corp.) -- C:\Dokumente und Einstellungen\Bartsch\Desktop\ALShow1.92.exe [2012.07.19 20:51:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Wunschlisten [2012.07.19 20:51:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Teldafax_insolvenz [2012.07.19 20:51:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Taufe Fiona [2012.07.19 20:51:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Judith_gehalt [2012.07.19 20:51:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Elterngeld [2012.07.19 20:51:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Elias_geschenk [2012.07.19 20:51:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Baldo-Post [2012.07.19 20:50:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Zensus2011 [2012.07.19 20:49:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Wieder da VA - The Dome 55 (2010) - VOiCE 01 [2012.07.19 20:49:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Steuer-Sparbuch [2012.07.19 20:49:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\SMA [2012.07.19 20:49:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Photovoltaik [2012.07.19 20:48:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\My Photos [2012.07.19 20:48:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\My Documents [2012.07.19 20:48:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\MHG [2012.07.19 20:48:45 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Eigene Videos [2012.07.19 20:48:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Entwickeln [2012.07.19 20:48:31 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Eigene Musik [2012.07.19 20:48:23 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Eigene Bilder [2012.07.19 20:48:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\DVDVideoSoft [2012.07.19 20:48:10 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Dropbox [2012.07.19 20:46:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Downloads [2012.07.19 20:46:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Dokumente [2012.07.19 20:46:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Congstar Vertrag Judith [2012.07.19 20:46:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Carport [2012.07.19 20:46:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Bluetooth-Exchange-Ordner [2012.07.19 20:46:43 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Bewerbung Hamburg [2012.07.19 20:46:43 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Aufnahmen [2012.07.19 20:34:40 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Eigene Videos [2012.07.19 20:34:40 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Eigene Musik [2012.07.19 20:34:40 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\microsoft [2012.07.19 20:03:16 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Eigene Bilder [2012.07.19 20:02:16 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Downloads [2012.07.19 20:02:16 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\backup_Haushaltsbuch [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.07.25 00:05:17 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\defogger_reenable [2012.07.24 23:58:56 | 000,449,704 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat [2012.07.24 23:58:56 | 000,433,350 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012.07.24 23:58:56 | 000,080,972 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat [2012.07.24 23:58:56 | 000,068,306 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012.07.24 23:56:47 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012.07.24 23:56:39 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012.07.24 23:56:25 | 000,138,056 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012.07.24 23:43:52 | 000,000,399 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2012.07.24 23:38:56 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2012.07.24 23:38:54 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2012.07.24 23:38:54 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2012.07.24 23:38:42 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2012.07.24 23:36:04 | 000,022,880 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2012.07.24 23:33:13 | 000,000,223 | -HS- | M] () -- C:\boot.ini [2012.07.23 23:19:59 | 000,001,715 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\SMA Sunny Explorer.lnk [2012.07.23 23:06:53 | 000,001,715 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\SMA Sunny Explorer.lnk [2012.07.23 20:21:18 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012.07.22 20:53:06 | 000,815,901 | ---- | M] () -- C:\WINDOWS\setupapi.old [2012.07.22 14:04:57 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012.07.22 11:20:53 | 000,000,129 | ---- | M] () -- C:\WINDOWS\System32\MRT.INI [2012.07.20 06:51:12 | 000,001,042 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Startmenü\Programme\Autostart\Dropbox.lnk [2012.07.20 06:50:48 | 000,001,038 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Dropbox.lnk [2012.07.05 14:34:05 | 000,000,247 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\anzeigen-Baldo.rtf [2012.07.05 14:03:01 | 000,222,178 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\baldo_anzeige1.jpg [2012.07.05 13:56:59 | 000,063,517 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\baldo_anzeige.jpg [2012.07.03 22:48:44 | 000,484,244 | ---- | M] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\bild Jana.jpg [2012.06.25 11:15:54 | 012,272,184 | ---- | M] (ESTsoft Corp.) -- C:\Dokumente und Einstellungen\Bartsch\Desktop\ALShow1.92.exe [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.07.25 00:05:17 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\defogger_reenable [2012.07.24 23:41:56 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2012.07.24 23:41:21 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2012.07.24 23:41:07 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2012.07.24 23:41:05 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2012.07.24 23:41:03 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2012.07.24 23:40:52 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2012.07.24 23:40:44 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2012.07.24 23:40:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2012.07.24 23:29:55 | 001,048,806 | ---- | C] () -- C:\WINDOWS\System32\oem3.inf [2012.07.24 23:18:47 | 000,168,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\startoc.cat [2012.07.24 23:18:47 | 000,018,989 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2012.07.24 23:18:47 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2012.07.24 23:18:47 | 000,007,029 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2012.07.24 23:18:46 | 001,014,663 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2012.07.24 23:18:46 | 000,817,199 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2012.07.24 23:18:46 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2012.07.24 23:18:46 | 000,041,270 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2012.07.24 23:18:46 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2012.07.24 23:18:46 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2012.07.24 23:18:46 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2012.07.24 23:18:46 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2012.07.24 23:18:46 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2012.07.24 23:18:46 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2012.07.24 23:18:45 | 001,899,936 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2012.07.24 23:18:45 | 000,523,252 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2012.07.23 23:06:53 | 000,001,715 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\SMA Sunny Explorer.lnk [2012.07.19 20:51:35 | 000,222,178 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\baldo_anzeige1.jpg [2012.07.19 20:51:35 | 000,063,517 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\baldo_anzeige.jpg [2012.07.19 20:51:35 | 000,001,699 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Avira Free Antivirus Profil Lokale Laufwerke.LNK [2012.07.19 20:51:35 | 000,001,689 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\AntiVir starten.lnk [2012.07.19 20:51:35 | 000,000,247 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\anzeigen-Baldo.rtf [2012.07.19 20:51:28 | 000,110,910 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\sinusw500v.export [2012.07.19 20:51:28 | 000,013,325 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Teldafax.odt [2012.07.19 20:51:28 | 000,005,065 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\smaauto.bat [2012.07.19 20:51:28 | 000,001,715 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\SMA Sunny Explorer.lnk [2012.07.19 20:51:28 | 000,001,698 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\WISO Steuer-Sparbuch 2012.lnk [2012.07.19 20:51:28 | 000,000,807 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Verknüpfung mit To-Do-Liste.lnk [2012.07.19 20:51:27 | 002,240,432 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\PV-ST-EV-Bartsch.zip [2012.07.19 20:51:27 | 001,996,288 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Problemlosungen.pps [2012.07.19 20:51:27 | 000,030,738 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Kopie von postbabk.pdf [2012.07.19 20:51:27 | 000,014,687 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\nullmeldung.pdf [2012.07.19 20:51:27 | 000,002,088 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Paragon Backup & Recovery™ 2011 Free.lnk [2012.07.19 20:51:27 | 000,001,747 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Motorola Software Update.lnk [2012.07.19 20:51:27 | 000,001,702 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\MOTOROLA MEDIA LINK.lnk [2012.07.19 20:51:27 | 000,001,566 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Mozilla Sunbird.lnk [2012.07.19 20:51:27 | 000,001,522 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\iTunes.lnk [2012.07.19 20:51:27 | 000,000,861 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\OpenOffice.org 3.3.lnk [2012.07.19 20:51:27 | 000,000,840 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Paint.NET.lnk [2012.07.19 20:51:27 | 000,000,696 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Mozilla Firefox.lnk [2012.07.19 20:51:23 | 061,294,907 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\fotobuch.cpr [2012.07.19 20:51:23 | 000,484,244 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\bild Jana.jpg [2012.07.19 20:51:23 | 000,282,372 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\fenster.jpg [2012.07.19 20:51:23 | 000,279,507 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\fax.pdf [2012.07.19 20:51:23 | 000,193,552 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\faceboook1.JPG [2012.07.19 20:51:23 | 000,192,312 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Eheurkunde.pdf [2012.07.19 20:51:23 | 000,014,693 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\finanzmerkel.pdf [2012.07.19 20:51:23 | 000,001,038 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\Dropbox.lnk [2012.07.19 20:51:22 | 012,686,807 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Desktop\bedanl_sinusw500v_Telefon_AB_08_2006.pdf [2012.07.19 20:50:04 | 000,352,687 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\fensterdichtung.jpg [2012.07.19 20:50:04 | 000,199,938 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\zensus.xps [2012.07.19 20:50:04 | 000,199,450 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\zensus2.xps [2012.07.19 20:50:04 | 000,013,156 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Untitled.pdf [2012.07.19 20:50:04 | 000,002,583 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Signatur_outlook.html [2012.07.19 20:50:04 | 000,001,675 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\hauseingan.jpg [2012.07.19 20:34:41 | 000,422,475 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\u4_Jana.jpg [2012.07.19 20:34:41 | 000,174,837 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\u3_Jana.jpg [2012.07.19 20:34:40 | 000,400,736 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\u2_Jana.jpg [2012.07.19 20:34:40 | 000,332,492 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\u1_Jana.jpg [2012.07.19 20:34:40 | 000,026,564 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Haushaltsbuch.mmb [2012.05.09 20:03:31 | 000,000,403 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2012.04.12 21:31:12 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI [2012.03.29 19:22:31 | 002,469,760 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe [2012.03.29 19:22:31 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe [2012.03.29 19:22:31 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll [2012.03.29 19:22:31 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys [2012.03.29 19:22:31 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys [2012.03.19 14:28:31 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012.02.16 18:55:48 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012.02.13 11:00:52 | 000,019,364 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2011.12.08 13:05:28 | 000,017,920 | ---- | C] () -- C:\Dokumente und Einstellungen\Bartsch\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.12.08 12:54:56 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2011.11.30 19:19:21 | 000,000,806 | ---- | C] () -- C:\WINDOWS\wiso.ini [2011.11.09 18:22:45 | 000,000,129 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2011.11.06 12:59:56 | 000,000,051 | ---- | C] () -- C:\WINDOWS\BRQIKMON.INI [2011.11.06 12:57:00 | 000,000,468 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI [2011.11.06 12:57:00 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini [2011.11.06 12:57:00 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI [2011.11.04 19:23:08 | 001,763,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2011.11.04 19:23:08 | 000,211,840 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2011.11.04 19:23:08 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2011.11.04 19:23:08 | 000,025,984 | ---- | C] () -- C:\WINDOWS\snuvcdsm.exe [2011.11.04 19:23:08 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini [2011.11.04 19:23:05 | 000,255,360 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [2011.11.04 19:20:11 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2011.11.04 19:16:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2011.11.04 19:16:17 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2011.11.04 19:16:17 | 000,202,234 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2011.11.04 19:16:17 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2011.11.04 18:30:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011.11.04 18:25:07 | 000,022,880 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011.11.04 17:54:21 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011.11.04 17:52:58 | 000,138,056 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011.02.16 15:01:16 | 000,141,592 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat ========== LOP Check ========== [2011.11.05 20:41:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\backup [2012.05.07 22:28:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\Buhl Data Service GmbH [2011.12.08 12:55:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\Canneverbe Limited [2011.12.06 11:31:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\elsterformular [2011.11.05 20:40:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\explauncher [2011.11.05 20:40:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\launcher [2012.01.20 12:24:03 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\Motorola [2012.07.23 23:06:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\SMA [2012.02.13 10:50:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2011.12.05 12:18:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Buhl Data Service [2011.12.08 12:55:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Canneverbe Limited [2012.07.25 00:02:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Dropbox [2011.12.06 11:32:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\elsterformular [2012.03.18 12:27:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\HTC [2012.03.18 12:21:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1 [2012.01.20 12:52:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Motorola [2011.11.13 14:11:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\OpenOffice.org [2011.11.05 10:32:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\SMA [2011.11.06 13:12:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Thunderbird ========== Purity Check ========== < End of report > Hier die Extra Code:
ATTFilter OTL Extras logfile created on: 25.07.2012 00:06:28 - Run 1
OTL by OldTimer - Version 3.2.54.1 Folder = C:\Dokumente und Einstellungen\Bartsch\Eigene Dateien\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,75 Gb Total Physical Memory | 1,06 Gb Available Physical Memory | 60,83% Memory free
3,60 Gb Paging File | 2,79 Gb Available in Paging File | 77,57% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 211,76 Gb Total Space | 156,90 Gb Free Space | 74,09% Space Free | Partition Type: NTFS
Drive D: | 66,28 Gb Total Space | 63,13 Gb Free Space | 95,25% Space Free | Partition Type: FAT32
Drive F: | 950,56 Mb Total Space | 915,93 Mb Free Space | 96,36% Space Free | Partition Type: FAT32
Computer Name: CHRISTIAN | User Name: Bartsch | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\SMA\SunnyExplorer.exe" = C:\SMA\SunnyExplorer.exe:*:Enabled:Sunny Explorer
"C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Dropbox\bin\Dropbox.exe" = C:\Dokumente und Einstellungen\Bartsch\Anwendungsdaten\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Programme\Motorola\Software Update\msu.exe" = C:\Programme\Motorola\Software Update\msu.exe:*:Enabled:msu -- (Motorola)
"C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Programme\SMA\Sunny Explorer\SunnyExplorer.exe" = C:\Programme\SMA\Sunny Explorer\SunnyExplorer.exe:*:Enabled:SMA Sunny Explorer -- (SMA Solar Technology AG)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00030407-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Small Business
"{04F384B2-7B52-7C78-B26F-C4DD4068774B}" = CCC Help Spanish
"{09888B7F-6280-8737-AF63-35688187B914}" = Catalyst Control Center Localization All
"{0CC1DAFB-40C8-4903-953D-471E541477C7}" = WISO Steuer-Sparbuch 2012
"{10B6E744-93F8-AC70-15C2-F590A823851A}" = ccc-utility
"{16CA9DAC-6A40-4204-A826-33C4D52A266C}" = Catalyst Control Center - Branding
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19F53134-B97B-FD16-6174-3452004C04EC}" = CCC Help Chinese Standard
"{1C81980B-03AB-603C-92E9-90B6533B9327}" = CCC Help Russian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{2DDE97B9-51EA-5A2B-3808-9AA238EFA1B6}" = ccc-core-preinstall
"{2F0B7B57-B8EA-E2B4-7F9C-04634E45EA6B}" = Skins
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{33216147-B9F0-D72E-39B7-AB85964F7D79}" = CCC Help Finnish
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35ACC3FA-491C-18BE-F370-15EB94C0323E}" = CCC Help Czech
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP Webcam Driver
"{3A6F4A31-8CFD-46B4-8385-E1F384DB121E}" = PDF-XChange Viewer
"{3D247D74-80E2-FE1C-28B1-88A7E9FB5616}" = CCC Help French
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{4298C764-C1BD-C752-8A7F-2F0D64769ECE}" = ccc-core-static
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BD1AA15-7355-94CA-4FCB-43D1B104D669}" = CCC Help Italian
"{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}" = Paint.NET v3.5.10
"{56C7398E-5407-B5A4-A75B-0BAF0C375EA2}" = Catalyst Control Center Graphics Full Existing
"{5DC280D6-C1FB-4BFC-8D85-62B4A7FE8D10}" = CCC Help Hungarian
"{641F8CA8-07B2-D4ED-853E-155F7D682D75}" = CCC Help Norwegian
"{6B5B2048-374D-A4B1-7E08-77B71977FCE2}" = CCC Help Japanese
"{6C12B6BF-3891-497B-B5CA-3D64DA093947}" = Motorola Mobile Drivers Installation 5.4.0
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6F13CEC5-9EB3-F97D-FD2D-1E82EBDFF6C6}" = CCC Help Danish
"{72235AB7-D9EE-8B76-E4EB-DAEE2959BF27}" = CCC Help Dutch
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{736B7FB9-CAC6-7B36-1405-624A491FC82D}" = Catalyst Control Center InstallProxy
"{76B2D295-93F9-AE96-B32D-0773D46F36A1}" = CCC Help English
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A3FFA58-876F-489C-B6CF-0503916224DF}" = HTC Sync
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84814E6B-2581-46EC-926A-823BD1C670F6}" = HP Integrated Module with Bluetooth wireless technology
"{86F93B58-D230-CDDD-5FE5-2A55A91BBEFD}" = CCC Help German
"{87453195-440B-4764-8251-693DD883E612}" = Sunny Explorer
"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules
"{969FD63D-5CBB-4595-A9B6-25AB4CF79787}" = HP ESU for Microsoft Windows XP
"{98DD74DF-962F-02A2-12FB-A3703BC3F5E3}" = CCC Help Polish
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AE0AE27D-0853-2B99-546B-373F76A0ABF0}" = Catalyst Control Center Graphics Full New
"{B480BB0A-1AD7-914D-B177-547DD9617898}" = CCC Help Thai
"{B643DE41-ED84-CAC1-D037-B40271CF6F39}" = CCC Help Greek
"{B914588F-806F-313A-0031-BB1A64234F4F}" = CCC Help Portuguese
"{C0799F17-2367-4871-A078-A209FEDE17EF}" = ATI Catalyst Install Manager
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C268B5E1-A5DA-11DF-A289-005056C00008}" = Paragon Backup & Recovery™ 2011 Free
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF64CD9E-91B4-A292-33F8-6805F1E63517}" = Catalyst Control Center Graphics Light
"{D08227C9-78C3-48E0-B460-63A7C1DFCBF0}" = Motorola Software Update
"{D409115A-1A70-E7D6-A89B-32E990D973FA}" = CCC Help Chinese Traditional
"{D9DC70B6-BE13-41DD-9053-9E617E72D085}" = MOTOROLA MEDIA LINK
"{DD11FA1E-FC83-7B37-1AB6-CCFB56B48CDC}" = Catalyst Control Center Core Implementation
"{E0A3DEFE-7893-646B-A9F4-22AC20722F6F}" = CCC Help Turkish
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E41B3BAE-E607-E032-9018-E10E6BC8F8F3}" = CCC Help Korean
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F6D6B258-E3CA-4AAC-965A-68D3E3140A8C}" = iTunes
"{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}" = Realtek Ethernet Controller All-In-One Windows Driver
"{FCD7C42F-58B2-725B-8B72-FCE619378E45}" = CCC Help Swedish
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avira AntiVir Desktop" = Avira Free Antivirus
"Broadcom 802.11-WLAN-Adapter" = Broadcom 802.11-WLAN-Adapter
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.1 Home Edition
"ElsterFormular 12.2.2.6665k" = ElsterFormular-Update
"ElsterFormular 12.4.0.7094k" = ElsterFormular
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MotoHelper" = MotoHelper 2.1.32 Driver 5.4.0
"Mozilla Firefox 12.0 (x86 de)" = Mozilla Firefox 12.0 (x86 de)
"Mozilla Thunderbird 12.0.1 (x86 de)" = Mozilla Thunderbird 12.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"schrankplaner3.500" = schrankplaner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WMFDist11" = Windows Media Format 11 runtime
"XP Codec Pack" = XP Codec Pack
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 23.07.2012 06:57:24 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2047
Error - 23.07.2012 06:57:26 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 23.07.2012 06:57:26 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4391
Error - 23.07.2012 06:57:26 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4391
Error - 23.07.2012 14:22:57 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 23.07.2012 14:22:57 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2109
Error - 23.07.2012 14:22:57 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2109
Error - 23.07.2012 14:22:59 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 23.07.2012 14:22:59 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4312
Error - 23.07.2012 14:22:59 | Computer Name = CHRISTIAN | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4312
[ System Events ]
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "DNS-Client" ist vom Dienst "TCP/IP-Protokolltreiber" abhängig,
der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "TCP/IP-NetBIOS-Hilfsprogramm" ist vom Dienst "AFD" abhängig,
der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Apple Mobile Device" ist vom Dienst "TCP/IP-Protokolltreiber"
abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Dienst "Bonjour"" ist vom Dienst "TCP/IP-Protokolltreiber"
abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7001
Description = Der Dienst "IPSEC-Dienste" ist vom Dienst "IPSEC-Treiber" abhängig,
der aufgrund folgenden Fehlers nicht gestartet wurde: %%31
Error - 23.07.2012 17:31:44 | Computer Name = CHRISTIAN | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
AFD AmdPPM avipbb avkmgr Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss ssmdrv Tcpip UimBus Uim_IM
Error - 23.07.2012 17:33:23 | Computer Name = CHRISTIAN | Source = DCOM | ID = 10005
Description = Bei DCOM ist der Fehler "%1084" aufgetreten, als der Dienst "EventSystem"
mit den Argumenten "" gestartet wurde, um den folgenden Server zu verwenden: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 24.07.2012 17:29:56 | Computer Name = CHRISTIAN | Source = PSched | ID = 14104
Description = QoS [Adapter {2457A1D5-3E10-4DDC-86A9-D4D93DA3D4E1}]: Der Paketplaner
konnte die Bindung zum Miniporttreiber nicht herstellen.
Error - 24.07.2012 17:38:26 | Computer Name = CHRISTIAN | Source = DCOM | ID = 10005
Description = Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "SENS"
mit den Argumenten "" gestartet wurde, um den folgenden Server zu verwenden: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}
Error - 24.07.2012 17:38:26 | Computer Name = CHRISTIAN | Source = DCOM | ID = 10005
Description = Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "SENS"
mit den Argumenten "" gestartet wurde, um den folgenden Server zu verwenden: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}
< End of report >
Geändert von jbo446 (24.07.2012 um 23:29 Uhr) |
|
| Themen zu gmer Auswertung |
| alureon, auswertung, avira, brauche, browser, c:\windows, code, dns, driver, festgestellt, filter, gelöscht, gmer, harddisk, ide, internet, internet browser, microsoft, netzwerk, ohne befund, service, service pack 3, software, standard, system, system32, temp |
Linear-Darstellung
