GVU auf Windows XP / abgesicherter Modus startet nicht

Jojo66 · 05.01.2013, 16:37

Hallo ich habe hier ein System mit GVU Trojaner bei dem der abgesicherte Modus nicht startet.
Ich habe mit OTLPE gescannt
OTL.TXT

Code:

ATTFilter

OTL logfile created on: 1/5/2013 4:31:50 PM - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
767.00 Mb Total Physical Memory | 538.00 Mb Available Physical Memory | 70.00% Memory free
707.00 Mb Paging File | 579.00 Mb Available in Paging File | 82.00% Paging File free
Paging file location(s): C:\pagefile.sys 1150 1150 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 52.99 Gb Total Space | 17.88 Gb Free Space | 33.74% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
 
========== Win32 Services (SafeList) ==========
 
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) --  File not found
SRV - (LEC TranslateDotNet Server) --  File not found
SRV - (iPod Service) --  File not found
SRV - (AppMgmt) --  File not found
SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirWebService) -- C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira Operations GmbH & Co. KG)
SRV - (AntiVirMailService) -- C:\Programme\Avira\AntiVir Desktop\avmailc.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (NMSAccess) -- C:\Programme\CDBurnerXP\NMSAccessU.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (SLService) -- C:\WINDOWS\System32\slserv.exe ( )
 
 
========== Driver Services (SafeList) ==========
 
DRV - (WDICA) --  File not found
DRV - (wanatw) WAN Miniport (ATW) --  File not found
DRV - (PDRFRAME) --  File not found
DRV - (PDRELI) --  File not found
DRV - (PDFRAME) --  File not found
DRV - (PDCOMP) --  File not found
DRV - (PCIDump) --  File not found
DRV - (lbrtfdc) --  File not found
DRV - (i2omgmt) --  File not found
DRV - (Changer) --  File not found
DRV - (avkmgr) -- C:\WINDOWS\system32\drivers\avkmgr.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH)
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (NPF) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (AFS2K) -- C:\WINDOWS\System32\drivers\AFS2K.SYS (Oak Technology Inc.)
DRV - (SSHDRV84) -- C:\WINDOWS\system32\drivers\SSHDRV84.sys ()
DRV - (LHidUsbK) -- C:\WINDOWS\system32\drivers\LHidUsbK.sys (Logitech, Inc.)
DRV - (L8042mou) -- C:\WINDOWS\system32\drivers\L8042MOU.SYS (Logitech, Inc.)
DRV - (LMouKE) -- C:\WINDOWS\system32\drivers\LMouKE.Sys (Logitech, Inc.)
DRV - (LHidKe) -- C:\WINDOWS\system32\drivers\LHidKE.Sys (Logitech, Inc.)
DRV - (nsysaudm) -- C:\WINDOWS\system32\drivers\nsysaudm.sys ()
DRV - (VIAudio) VIA AC'97 Audio Controller (WDM) -- C:\WINDOWS\system32\drivers\viaudio.sys (VIA Technologies, Inc.)
DRV - (viaagp1) -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS (VIA Technologies, Inc.)
DRV - (Mtlstrm) -- C:\WINDOWS\system32\drivers\mtlstrm.sys ( )
DRV - (Slntamr) -- C:\WINDOWS\system32\drivers\slntamr.sys ( )
DRV - (Mtlmnt5) -- C:\WINDOWS\system32\drivers\mtlmnt5.sys ( )
DRV - (SlNtHal) -- C:\WINDOWS\system32\drivers\slnthal.sys ( )
DRV - (SlWdmSup) -- C:\WINDOWS\system32\drivers\slwdmsup.sys (Vireo Software)
DRV - (NtMtlFax) -- C:\WINDOWS\system32\drivers\ntmtlfax.sys ( )
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hyrican.de
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\Administrator_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hyrican.de/
IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\Dieter_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKU\Dieter_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\Dieter_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\Dieter_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Dieter_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Dieter_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
 
IE - HKU\Helga_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Helga_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Helga_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
 
IE - HKU\Jörg_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hyrican.de/
IE - HKU\Jörg_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\LocalService_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hyrican.de
IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\NetworkService_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hyrican.de
IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.10.835: C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1136: C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.847: C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
 
 
 
O1 HOSTS File: ([2002/08/29 07:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {1DBAB667-A486-421e-AFE4-CF07DD0088E5} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O3 - HKU\Dieter_ON_C\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\Helga_ON_C\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\Helga_ON_C\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\Helga_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Helga_ON_C\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\Jörg_ON_C\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\Jörg_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\irprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [svñhîst]  File not found
O4 - HKLM..\Run: [TkBellExe] C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\.DEFAULT..\Run: [ALUAlert]  File not found
O4 - HKU\.DEFAULT..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation)
O4 - HKU\.DEFAULT..\Run: [Symantec NetDriver Warning]  File not found
O4 - HKU\.DEFAULT..\Run: [Symantec Network Driver Update Warning]  File not found
O4 - HKU\Administrator_ON_C..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation)
O4 - HKU\Dieter_ON_C..\Run: [360Amigo] C:\Program files\360Amigo\360Amigo.exe (360Amigo)
O4 - HKU\Dieter_ON_C..\Run: [flatster Recorder] C:\Programme\flatster Recorder\flatster Recorder.exe (Euro-Driver Peter Busch)
O4 - HKU\Dieter_ON_C..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe ()
O4 - HKU\Helga_ON_C..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe ()
O4 - HKU\Helga_ON_C..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation)
O4 - HKU\Helga_ON_C..\Run: [swg]  File not found
O4 - HKU\Jörg_ON_C..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe ()
O4 - HKU\Jörg_ON_C..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation)
O4 - HKU\Jörg_ON_C..\Run: [swg]  File not found
O4 - HKU\Helga_ON_C..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil11e_ActiveX.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Desktop Application Director 9.LNK = C:\Programme\Corel\WordPerfect Office 2000\programs\dad9.exe (Corel Corporation Limited)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hp psc 1000 series.lnk = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hpoddt01.exe.lnk = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Logitech Desktop Messenger.lnk = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Logitech SetPoint.lnk = C:\Programme\Logitech\SetPoint\KEM.exe (Logitech Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Dieter_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Helga_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Jörg_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1348241715375 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/04/30 02:08:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/01/03 09:52:42 | 000,047,616 | RHS- | C] (Auslogics) -- C:\Dokumente und Einstellungen\Dieter\1409921.exe
[2012/12/15 12:54:09 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Dieter\Lokale Einstellungen\Anwendungsdaten\AskToolbar
[2012/12/10 19:33:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Dieter\.jivex
[2012/12/10 18:38:59 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Dieter\tmpjex1
[2003/04/30 02:50:26 | 001,805,696 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2003/04/30 02:50:26 | 000,413,528 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2003/04/30 02:50:26 | 000,161,984 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2003/04/30 02:50:26 | 000,084,720 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2003/04/30 02:50:26 | 000,045,056 | ---- | C] ( ) -- C:\WINDOWS\System32\slserv.exe
[2003/04/30 02:50:25 | 000,194,128 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[1 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013/01/05 10:21:00 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{0A7B626A-BF2D-4691-B49F-6B535575183A}.job
[2013/01/05 10:19:51 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/05 10:19:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/01/05 04:25:10 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/01/03 12:08:20 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/03 09:52:42 | 000,047,616 | RHS- | M] (Auslogics) -- C:\Dokumente und Einstellungen\Dieter\1409921.exe
[2013/01/02 07:35:20 | 000,000,525 | ---- | M] () -- C:\hpfr3420.xml
[2013/01/02 07:02:19 | 000,483,129 | ---- | M] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\karneval 2.bcp
[2012/12/30 11:41:24 | 000,483,129 | ---- | M] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\karneval13.bcp
[2012/12/26 04:52:18 | 000,003,860 | ---- | M] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\rum.bcp
[2012/12/21 05:48:41 | 000,230,392 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/12/16 07:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012/12/16 07:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012/12/15 13:14:42 | 000,000,384 | ---- | M] () -- C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1355595189.job
[2012/12/15 13:13:27 | 000,000,751 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hp psc 1000 series.lnk
[2012/12/15 13:13:27 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
[2012/12/15 13:13:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Hewlett-Packard
[2012/12/15 13:13:07 | 000,019,554 | ---- | M] () -- C:\WINDOWS\hpoins01.dat
[2012/12/15 13:07:44 | 000,000,831 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\HP Photo & Imaging.lnk
[2012/12/15 13:07:44 | 000,000,751 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hpoddt01.exe.lnk
[2012/12/15 13:07:43 | 000,000,831 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\HP Director.lnk
[2012/12/15 10:38:55 | 000,000,014 | ---- | M] () -- C:\Dokumente und Einstellungen\Dieter\dot4_001
[2012/12/14 11:15:11 | 000,002,385 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows-Journal-Viewer.lnk
[2012/12/14 10:37:26 | 000,000,001 | R--- | M] () -- C:\Dokumente und Einstellungen\Dieter\serverport
[2012/12/10 19:28:58 | 000,000,284 | ---- | M] () -- C:\Dokumente und Einstellungen\Dieter\medcd.ini
[1 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013/01/02 07:02:19 | 000,483,129 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\karneval 2.bcp
[2012/12/26 05:35:17 | 000,483,129 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\karneval13.bcp
[2012/12/26 04:52:18 | 000,003,860 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\Eigene Dateien\rum.bcp
[2012/12/15 13:14:40 | 000,000,384 | ---- | C] () -- C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1355595189.job
[2012/12/15 13:13:27 | 000,000,751 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hp psc 1000 series.lnk
[2012/12/15 13:07:44 | 000,000,831 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\HP Photo & Imaging.lnk
[2012/12/15 13:07:44 | 000,000,751 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\hpoddt01.exe.lnk
[2012/12/15 13:07:43 | 000,000,831 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\HP Director.lnk
[2012/12/15 13:05:29 | 000,019,554 | ---- | C] () -- C:\WINDOWS\hpoins01.dat
[2012/12/15 13:05:29 | 000,016,606 | ---- | C] () -- C:\WINDOWS\hpomdl01.dat
[2012/12/15 10:37:42 | 000,000,014 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\dot4_001
[2012/12/10 19:33:26 | 000,000,001 | R--- | C] () -- C:\Dokumente und Einstellungen\Dieter\serverport
[2012/12/10 18:43:30 | 000,008,356 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\overlay.ini
[2012/12/10 18:43:30 | 000,000,284 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\medcd.ini
[2012/12/10 18:43:30 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\vorlagen.ini
[2012/05/30 02:23:11 | 000,000,264 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2012/05/30 02:23:10 | 000,001,077 | ---- | C] () -- C:\WINDOWS\_isenv31.ini
[2012/05/30 02:23:10 | 000,000,633 | ---- | C] () -- C:\WINDOWS\_iserr31.ini
[2012/05/02 11:45:37 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\hpothb07.tif
[2012/05/02 11:45:37 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\hpothb07.dat
[2012/02/16 03:10:26 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/01/27 06:00:42 | 000,010,599 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\hademu_elster_2048.pfx
[2011/12/28 14:12:07 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Jörg\hpothb07.tif
[2011/12/28 14:12:07 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Jörg\hpothb07.dat
[2011/12/28 14:11:32 | 000,000,327 | -H-- | C] () -- C:\Dokumente und Einstellungen\Dieter\hpothb07.dat
[2011/12/28 14:11:31 | 000,000,493 | -H-- | C] () -- C:\Dokumente und Einstellungen\Dieter\hpothb07.tif
[2011/12/28 14:11:14 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Helga\hpothb07.tif
[2011/12/28 14:11:14 | 000,000,000 | -H-- | C] () -- C:\Dokumente und Einstellungen\Helga\hpothb07.dat
[2011/12/09 09:47:54 | 000,000,039 | ---- | C] () -- C:\WINDOWS\Settings.ini
[2011/09/25 11:35:25 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2011/09/15 20:18:22 | 000,081,920 | R--- | C] () -- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
[2011/01/06 15:09:25 | 000,000,056 | ---- | C] () -- C:\WINDOWS\CoverDes.INI
[2010/03/17 07:43:02 | 000,000,036 | ---- | C] () -- C:\WINDOWS\rasqervy.dll
[2010/03/17 07:42:46 | 000,000,008 | ---- | C] () -- C:\WINDOWS\sdfinacs.dll
[2010/03/17 07:42:45 | 000,000,005 | ---- | C] () -- C:\WINDOWS\sdfixwcs.dll
[2009/10/20 13:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009/07/02 15:02:01 | 000,000,141 | ---- | C] () -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2008/10/28 20:08:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008/06/13 18:44:47 | 000,554,496 | ---- | C] () -- C:\WINDOWS\System32\dvmsg.dll
[2007/12/16 18:01:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CorelDrw.INI
[2007/10/02 13:21:41 | 000,003,584 | ---- | C] () -- C:\Dokumente und Einstellungen\Helga\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/12/30 07:33:58 | 000,129,024 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2006/11/25 03:53:47 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Thps3.INI
[2006/03/04 05:30:05 | 000,053,248 | R--- | C] () -- C:\WINDOWS\UpdtNv28.exe
[2005/12/02 06:26:11 | 000,001,682 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2005/12/02 06:26:11 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\CCAA5ECD66.sys
[2005/08/21 17:11:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\musiceditor.INI
[2005/08/20 11:46:47 | 000,004,765 | ---- | C] () -- C:\WINDOWS\cddpfmt.ini
[2005/08/09 11:26:20 | 000,000,085 | ---- | C] () -- C:\WINDOWS\magix.ini
[2005/08/09 11:26:19 | 000,001,208 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2004/11/09 05:36:32 | 000,040,960 | ---- | C] () -- C:\WINDOWS\uneng.exe
[2004/10/18 07:55:48 | 000,076,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV84.sys
[2004/10/09 08:12:11 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003/12/12 04:45:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2003/12/12 04:45:20 | 000,040,960 | ---- | C] () -- C:\WINDOWS\InstKeyb.exe
[2003/12/12 04:45:20 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2003/12/12 04:45:20 | 000,002,608 | ---- | C] () -- C:\WINDOWS\KB9908.ini
[2003/11/27 06:52:03 | 000,007,631 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2003/11/06 06:01:56 | 000,000,011 | ---- | C] () -- C:\WINDOWS\wanpatan.ini
[2003/09/11 09:51:14 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2003/08/18 17:25:30 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2003/08/15 15:04:16 | 000,177,108 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\~
[2003/07/23 15:00:44 | 000,149,504 | ---- | C] () -- C:\WINDOWS\Unwise32.exe
[2003/07/23 15:00:44 | 000,006,067 | ---- | C] () -- C:\WINDOWS\Unwise32.ini
[2003/07/23 14:55:59 | 000,000,196 | ---- | C] () -- C:\WINDOWS\KTEL.INI
[2003/07/15 04:12:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\TEXTART.INI
[2003/07/08 04:31:15 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2003/06/27 04:51:35 | 000,012,800 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2003/06/09 12:47:01 | 000,000,254 | ---- | C] () -- C:\WINDOWS\qpw.INI
[2003/06/08 14:44:04 | 000,000,141 | ---- | C] () -- C:\Dokumente und Einstellungen\Jörg\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2003/06/07 11:37:12 | 000,000,141 | ---- | C] () -- C:\Dokumente und Einstellungen\Helga\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2003/06/07 09:55:49 | 000,000,139 | ---- | C] () -- C:\Dokumente und Einstellungen\Dieter\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2003/04/30 10:56:16 | 000,001,258 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2003/04/30 10:56:06 | 000,526,418 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2003/04/30 10:56:06 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2003/04/30 10:56:06 | 000,104,618 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2003/04/30 10:56:06 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2003/04/30 10:55:48 | 000,501,650 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003/04/30 10:55:48 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003/04/30 10:55:48 | 000,087,278 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003/04/30 10:55:48 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003/04/30 10:55:48 | 000,004,520 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003/04/30 10:55:46 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003/04/30 10:55:45 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003/04/30 10:55:41 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003/04/30 10:55:41 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003/04/30 10:55:35 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003/04/30 10:55:26 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003/04/30 07:44:51 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/04/30 06:55:53 | 000,112,688 | ---- | C] () -- C:\WINDOWS\System32\Shw32.dll
[2003/04/30 06:44:56 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\fxdb.dll
[2003/04/30 06:44:23 | 001,213,440 | ---- | C] () -- C:\WINDOWS\System32\opengl.dll
[2003/04/30 06:44:23 | 000,315,904 | ---- | C] () -- C:\WINDOWS\System32\glu.dll
[2003/04/30 06:44:23 | 000,154,624 | ---- | C] () -- C:\WINDOWS\System32\glut.dll
[2003/04/30 03:07:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/04/30 03:03:44 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2003/04/30 03:00:40 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2003/04/30 02:59:49 | 000,230,392 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003/04/30 02:50:31 | 000,405,504 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
[2003/04/30 02:50:31 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
[2003/04/30 02:50:31 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
[2003/04/30 02:50:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll
[2003/04/30 02:50:26 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll
[2003/04/30 02:50:26 | 000,024,576 | ---- | C] () -- C:\WINDOWS\slrundll.exe
[2003/04/30 02:50:25 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\coinst.dll
[2003/04/30 02:16:43 | 000,000,963 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/04/30 02:10:06 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2003/04/30 02:05:59 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2003/04/02 01:09:33 | 000,405,504 | ---- | C] () -- C:\Programme\gtermddo.exe
[2003/03/08 23:31:04 | 000,561,152 | ---- | C] () -- C:\WINDOWS\System32\hpotscl.dll
[2003/02/16 00:22:49 | 000,030,720 | ---- | C] () -- C:\WINDOWS\System32\drivers\nsysaudm.sys
[1999/01/26 17:00:00 | 000,114,816 | ---- | C] () -- C:\WINDOWS\System32\MSMT4232.DLL
 
========== LOP Check ==========
 
[2003/04/30 02:16:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\InterTrust
[2010/03/20 12:20:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\aborange
[2010/03/08 06:01:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Amazon
[2011/09/25 11:35:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Canneverbe Limited
[2012/01/24 06:52:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\elsterformular
[2010/11/10 05:36:03 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\K-Pacs-Lite
[2005/07/19 11:01:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\klickTel
[2012/08/28 12:07:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Notepad++
[2009/01/04 09:21:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\OpenOffice.org
[2007/09/17 10:20:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Reha
[2012/01/17 05:58:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Tobit
[2011/09/25 03:52:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Uki
[2012/01/25 04:43:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Uniblue
[2008/05/21 11:48:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\WIBU-SYSTEMS
[2010/03/27 14:09:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Wireshark
[2003/04/30 02:16:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Helga\Anwendungsdaten\InterTrust
[2003/07/26 09:17:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Helga\Anwendungsdaten\Kazaa Lite
[2003/04/30 02:16:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Jörg\Anwendungsdaten\InterTrust
[2007/07/24 05:54:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Jörg\Anwendungsdaten\WIBU-SYSTEMS
[2012/03/24 14:10:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask
[2011/02/14 10:22:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\bDeJiIn00000
[2011/09/25 11:35:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Canneverbe Limited
[2012/01/24 06:49:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\elsterformular
[2011/12/14 13:22:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FUJIFILM
[2006/12/11 16:23:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Napster
[2012/01/25 13:53:13 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
[2012/12/15 13:14:42 | 000,000,384 | ---- | M] () -- C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1355595189.job
[2013/01/05 10:21:00 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A7B626A-BF2D-4691-B49F-6B535575183A}.job
 
========== Purity Check ==========
 
 
< End of report >

Ich wuerde das System gerne bereinigen und wuerde mich ueber Eure Hilfe freuen.

GVU auf Windows XP / abgesicherter Modus startet nicht

Plagegeister aller Art und deren Bekämpfung: GVU auf Windows XP / abgesicherter Modus startet nicht

GVU auf Windows XP / abgesicherter Modus startet nicht

Ähnliche Themen: GVU auf Windows XP / abgesicherter Modus startet nicht