| |
| |||||||
Log-Analyse und Auswertung: Firefox wird mit Laden bestimmter Websites nie fertig !Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
14.01.2013, 02:50
| #1 |
| |  Firefox wird mit Laden bestimmter Websites nie fertig ! Hallo liebe Forum Helfer,ich hoffe,ic habe jetzt alles soweit gemacht und ich hoffe,dass ich hier alles richtig mache.OTL logfile created on: 14.01.2013 01:42:55 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SirToby66-PC\Downloads\Neuer Ordner Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,50 Gb Total Physical Memory | 2,39 Gb Available Physical Memory | 68,23% Memory free 7,19 Gb Paging File | 6,18 Gb Available in Paging File | 85,96% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 286,09 Gb Total Space | 196,46 Gb Free Space | 68,67% Space Free | Partition Type: NTFS Computer Name: SIRTOBY66-PC-PC | User Name: SirToby66-PC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.01.14 01:41:47 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SirToby66-PC\Downloads\Neuer Ordner\OTL.exe PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastUI.exe PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe PRC - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012.04.25 19:53:38 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Programme\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe PRC - [2011.12.14 12:23:34 | 001,212,224 | ---- | M] (TuneUp Software) -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe PRC - [2011.12.14 12:23:32 | 001,514,304 | ---- | M] (TuneUp Software) -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe PRC - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009.04.11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe PRC - [2008.05.07 09:19:26 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2008.01.21 03:25:33 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe PRC - [2008.01.21 03:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnscfg.exe PRC - [2008.01.21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Defender\MSASCui.exe ========== Modules (No Company Name) ========== MOD - [2013.01.10 08:47:10 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b5df40c22ab563a816103629e2ca99d4\System.Runtime.Remoting.ni.dll MOD - [2013.01.10 08:45:47 | 011,820,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\259f7342c8ebb1150db3df1bc4d3394c\System.Web.ni.dll MOD - [2013.01.10 08:39:02 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\b757806657fa5db2b1ed1a89b026b463\System.Xml.ni.dll MOD - [2013.01.10 08:34:19 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\0c3da9004b277959e24a9fd606d3dd05\System.Windows.Forms.ni.dll MOD - [2013.01.10 08:33:43 | 001,593,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\78157a494dc9a7e52be8840decfcd9cc\System.Drawing.ni.dll MOD - [2013.01.10 08:29:47 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\cc149d08e75f8c53cd28ac926b38c370\System.ni.dll MOD - [2013.01.10 08:29:28 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2227d1559f87943255069398608d5c56\mscorlib.ni.dll MOD - [2011.01.12 23:02:50 | 001,679,360 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3041.37050__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dl l MOD - [2011.01.12 23:02:50 | 000,253,952 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3041.37003__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll MOD - [2011.01.12 23:02:50 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3041.37065__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2011.01.12 23:02:50 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3041.37278__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2011.01.12 23:02:50 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3041.37041__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll MOD - [2011.01.12 23:02:50 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3041.37177__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dl l MOD - [2011.01.12 23:02:50 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3041.37024__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime. dll MOD - [2011.01.12 23:02:49 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3041.37235__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2011.01.12 23:02:48 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3041.37319__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll MOD - [2011.01.12 23:02:16 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3041.37326__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:16 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3041.37018__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:15 | 000,352,256 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3041.37246__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:15 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3041.37316__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard. dll MOD - [2011.01.12 23:02:15 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3041.37252__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2011.01.12 23:02:15 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3041.37244__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll MOD - [2011.01.12 23:02:15 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3041.37315__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll MOD - [2011.01.12 23:02:13 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3041.37189__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:13 | 000,585,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3041.37080__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashbo ard.dll MOD - [2011.01.12 23:02:13 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3041.37027__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashbo ard.dll MOD - [2011.01.12 23:02:13 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3041.37268__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll MOD - [2011.01.12 23:02:13 | 000,217,088 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3041.37072__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:13 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3041.37210__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashbo ard.dll MOD - [2011.01.12 23:02:13 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3041.37187__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll MOD - [2011.01.12 23:02:13 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3041.37086__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime. dll MOD - [2011.01.12 23:02:13 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3041.37209__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime. dll MOD - [2011.01.12 23:02:12 | 000,479,232 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3041.37180__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:12 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3041.37170__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:12 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3041.37227__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll MOD - [2011.01.12 23:02:12 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3041.37087__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll MOD - [2011.01.12 23:02:12 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3041.37178__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2011.01.12 23:02:12 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3041.37187__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2011.01.12 23:02:12 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3041.37226__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2011.01.12 23:02:12 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2939.23687__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll MOD - [2011.01.12 23:02:12 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2939.23679__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll MOD - [2011.01.12 23:02:12 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2939.23767__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll MOD - [2011.01.12 23:02:12 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2939.23710__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll MOD - [2011.01.12 23:02:12 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2939.23768__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll MOD - [2011.01.12 23:02:11 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll MOD - [2011.01.12 23:02:11 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2939.23662__90ba9c70f846762e\LOG.Foundation.dll MOD - [2011.01.12 23:02:11 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2939.23667__90ba9c70f846762e\NEWAEM.Foundation.dll MOD - [2011.01.12 23:02:11 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2939.23717__90ba9c70f846762e\DEM.OS.I0602.dll MOD - [2011.01.12 23:02:11 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2939.23707__90ba9c70f846762e\MOM.Foundation.dll MOD - [2011.01.12 23:02:11 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2939.23717__90ba9c70f846762e\DEM.OS.dll MOD - [2011.01.12 23:02:11 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll MOD - [2011.01.12 23:02:11 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2939.23718__90ba9c70f846762e\DEM.Graphics.dll MOD - [2011.01.12 23:02:11 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll MOD - [2011.01.12 23:02:11 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll MOD - [2011.01.12 23:02:10 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2939.23668__90ba9c70f846762e\CLI.Foundation.dll MOD - [2011.01.12 23:02:10 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2939.23689__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll MOD - [2011.01.12 23:02:10 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2939.23743__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2011.01.12 23:02:10 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2939.23764__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2011.01.12 23:02:10 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2939.23802__90ba9c70f846762e\CLI.Foundation.XManifest.dll MOD - [2011.01.12 23:02:10 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2939.23693__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll MOD - [2011.01.12 23:02:10 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2939.23687__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll MOD - [2011.01.12 23:02:10 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2939.23679__90ba9c70f846762e\CLI.Component.Client.Shared.dll MOD - [2011.01.12 23:02:10 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2939.23688__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll MOD - [2011.01.12 23:02:10 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2939.23734__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2011.01.12 23:02:10 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2939.23718__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2011.01.12 23:02:09 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2939.23740__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll MOD - [2011.01.12 23:02:09 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.2939.23763__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2965.22300__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2939.23739__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2939.23738__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2939.23742__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2939.23708__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2939.23735__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dl l MOD - [2011.01.12 23:02:08 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2939.23741__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dl l MOD - [2011.01.12 23:02:08 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2939.23711__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2011.01.12 23:02:08 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2939.23665__90ba9c70f846762e\AEM.Foundation.dll MOD - [2011.01.12 23:02:08 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll MOD - [2011.01.12 23:02:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dl l MOD - [2011.01.12 23:02:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2939.23709__90ba9c70f846762e\APM.Foundation.dll MOD - [2011.01.12 23:02:08 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2939.23687__90ba9c70f846762e\AEM.Server.Shared.dll MOD - [2011.01.12 23:01:58 | 000,005,120 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.3041.37295_de_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll MOD - [2011.01.12 23:01:56 | 001,511,424 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3041.37012__90ba9c70f846762e\CLI.Component.Dashboard.dll MOD - [2011.01.12 23:01:56 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3041.37034__90ba9c70f846762e\CLI.Component.Wizard.dll MOD - [2011.01.12 23:01:56 | 000,413,696 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3041.37295__90ba9c70f846762e\CLI.Component.Systemtray.dll MOD - [2011.01.12 23:01:56 | 000,102,400 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3041.37305__90ba9c70f846762e\MOM.Implementation.dll MOD - [2011.01.12 23:01:56 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3041.36994__90ba9c70f846762e\CLI.Component.Runtime.dll MOD - [2011.01.12 23:01:56 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3041.37302__90ba9c70f846762e\LOG.Foundation.Implementation.dll MOD - [2011.01.12 23:01:56 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2939.23713__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll MOD - [2011.01.12 23:01:56 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2939.23678__90ba9c70f846762e\CLI.Foundation.Private.dll MOD - [2011.01.12 23:01:56 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2939.23689__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll MOD - [2011.01.12 23:01:56 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3041.37343__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll MOD - [2011.01.12 23:01:56 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2939.23679__90ba9c70f846762e\LOG.Foundation.Private.dll MOD - [2011.01.12 23:01:56 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2939.23694__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll MOD - [2011.01.12 23:01:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2939.23712__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll MOD - [2011.01.12 23:01:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2939.23711__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll MOD - [2011.01.12 23:01:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2939.23746__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2011.01.12 23:01:56 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.2939.23677__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll MOD - [2011.01.12 23:01:56 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3041.37359__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll MOD - [2011.01.12 23:01:56 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3041.36993__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll MOD - [2011.01.12 23:01:55 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3041.36994__90ba9c70f846762e\ATIDEMOS.dll MOD - [2011.01.12 23:01:55 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3041.36990__90ba9c70f846762e\APM.Server.dll MOD - [2011.01.12 23:01:55 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3041.36992__90ba9c70f846762e\AEM.Server.dll MOD - [2011.01.12 23:01:55 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3041.37304__90ba9c70f846762e\CCC.Implementation.dll MOD - [2011.01.12 23:01:55 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll MOD - [2009.03.30 05:42:12 | 000,434,176 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll MOD - [2009.03.30 05:42:11 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2008.04.30 03:00:24 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll ========== Services (SafeList) ========== SRV - [2013.01.09 14:07:49 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013.01.05 04:44:06 | 000,115,760 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programme\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012.07.13 12:39:50 | 000,160,944 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.04.25 19:53:38 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Programme\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe -- (KSS) SRV - [2011.12.14 12:23:32 | 001,514,304 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2011.01.12 23:31:06 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Programme\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2008.10.09 06:07:56 | 000,107,912 | ---- | M] () [Disabled | Stopped] -- C:\Programme\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) SRV - [2008.01.21 03:25:33 | 000,896,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Running] -- C:\Users\SIRTOB~1\AppData\Local\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134) DRV - [2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (AswRdr) DRV - [2012.10.30 23:51:57 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012.08.21 10:13:14 | 000,018,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd) DRV - [2011.12.12 19:31:38 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2010.06.23 08:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2009.09.29 07:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtport.sys -- (LgBttPort) DRV - [2009.09.29 07:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgvmodem.sys -- (LGVMODEM) DRV - [2009.09.29 07:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtbus.sys -- (lgbusenum) DRV - [2008.11.19 17:09:10 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem) DRV - [2008.11.19 17:09:08 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag) DRV - [2008.11.19 17:09:08 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus) DRV - [2008.10.09 14:42:42 | 000,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\KMWDFILTER.sys -- (KMWDFILTER) DRV - [2008.05.07 11:47:36 | 000,085,136 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR) DRV - [2008.04.30 05:33:46 | 003,551,232 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2008.04.29 10:31:06 | 000,143,328 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService) DRV - [2008.04.28 14:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) DRV - [2008.04.02 05:40:48 | 000,175,632 | ---- | M] (AMD Technologies Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s) DRV - [2007.10.02 17:03:56 | 000,052,736 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\itecir.sys -- (itecir) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.packardbell.com/?id=9283 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.reimageplus.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie IE - HKCU\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5} IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://search.reimageplus.com/?sp=reimb&q={searchTerms} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} IE - HKCU\..\SearchScopes\{C4061D09-D7BF-4173-9A1A-F592B29D98DA}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PBEA_deDE497 IE - HKCU\..\SearchScopes\{CEB0965A-EF69-4CCA-A3A8-C78908C48991}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=&apn_ptnrs=FV&apn_dtid=YYYYYYYYDE&apn_uid=8b1813f6-6b89-46bf-9190-47c993120ed9&apn_sauid=3AFDB94D-701C-42C5-AC43-2C6ACC426057 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1 ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Reimage Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "about:home" FF - prefs.js..extensions.enabledAddons: testpilot%40labs.mozilla.com:1.2.2 FF - prefs.js..extensions.enabledAddons: %7B635abd67-4fe9-1b23-4f01-e679fa7484c1%7D:2.5.1.20121011034613 FF - prefs.js..extensions.enabledAddons: %7Bafe43e80-0abc-4df2-81a0-3fe44b74abe8%7D:1.300.434 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0 FF - prefs.js..keyword.URL: "hxxp://search.reimageplus.com/?sp=reimb&q=" FF - prefs.js..network.proxy.type: 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.12.05 08:01:39 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.01.13 20:06:05 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.08 15:54:27 | 000,000,000 | ---D | M] [2012.07.03 11:18:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Extensions [2013.01.14 00:59:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions [2012.12.04 23:33:31 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} [2012.12.04 23:33:32 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2012.10.31 18:09:49 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(299) [2012.12.04 23:33:31 | 000,000,000 | ---D | M] (Low Quality Flash) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions\low_quality_flash@pie2k.com [2012.12.04 23:33:31 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\Firefox\Profiles\mdi9w1r5.default\extensions\plugin@yontoo.com [2012.07.03 11:23:56 | 000,330,316 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\personas@christopher.beard.xpi [2012.10.08 19:08:03 | 000,621,521 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\testpilot@labs.mozilla.com.xpi [2013.01.10 11:04:50 | 000,347,812 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2013.01.06 09:44:51 | 000,580,255 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{afe43e80-0abc-4df2-81a0-3fe44b74abe8}.xpi [2013.01.06 08:16:42 | 000,220,411 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2012.11.15 13:31:35 | 000,328,449 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi [2012.11.24 18:13:26 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012.07.13 09:56:41 | 000,010,916 | ---- | M] () (No name found) -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\extensions\{f30238a4-dbcd-42c6-a6ee-6675ca697432}.xpi [2012.08.12 10:39:05 | 000,002,399 | ---- | M] () -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\searchplugins\askcom.xml [2012.11.29 16:36:26 | 000,002,212 | ---- | M] () -- C:\Users\SirToby66-PC\AppData\Roaming\mozilla\firefox\profiles\mdi9w1r5.default\searchplugins\Reimage Search.xml [2013.01.13 20:06:04 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2013.01.05 04:44:54 | 000,262,704 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012.07.17 19:00:14 | 000,170,624 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2013.01.05 16:11:17 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.06.22 21:14:24 | 000,003,747 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2013.01.05 16:11:17 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2013.01.05 16:11:17 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2013.01.05 16:11:17 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2013.01.05 16:11:17 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2013.01.05 16:11:17 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - homepage: hxxp://search.reimageplus.com/ CHR - default_search_provider: COMPUTER BILD-Suche (Enabled) CHR - default_search_provider: search_url = hxxp://www.computerbild.de/suche/index.html?s_text={searchTerms} CHR - default_search_provider: suggest_url = , CHR - homepage: hxxp://search.reimageplus.com/ CHR - plugin: Erster Nutzer (Disabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Error reading preferences file CHR - Extension: Turn Off the Lights = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.1.0.17_0\ CHR - Extension: YouTube = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Poolbillard = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb\1.0.4_0\ CHR - Extension: Adblock Plus = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3.1_0\ CHR - Extension: Zynga Toolbar = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\chagngapoeghhljpcnojlkonegopkimi\1.1_0\ CHR - Extension: Facebook Emoticons = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhlpbjmefddeakmojbijkafijdlphee\0.1.0.6_0\ CHR - Extension: Complitly plugin for chrome = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\ CHR - Extension: Google+ = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm\1.0.1.424_0\ CHR - Extension: Live-\u00DCbersetzung = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\egihmnpaelmnhobbkohgegkmcfjaeebl\0.1.0.6_0\ CHR - Extension: Pixlr-o-matic = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj\1.2_0\ CHR - Extension: Facebook Disconnect = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.3.0_1\ CHR - Extension: avast! WebRep = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\ CHR - Extension: Zynga = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcgmidjhhnnjikpigolabhacfngibde\2.3.18.20_0\ CHR - Extension: Colorfull Sun Set = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\iknflcjkkahjgichcidlfcalplplegii\1_0\ CHR - Extension: FlyOrDie Blackball = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjkhefodfbgjpcmahghmfggbcpjabnag\1.0.3_0\ CHR - Extension: Gamers Unite! Snag Bar = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjdgpblkmmekbpdolbhlljkdhkplnkf\1.1.0_0\ CHR - Extension: Gamers Unite! Snag Bar = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjdgpblkmmekbpdolbhlljkdhkplnkf\1.1.0_0\gu\ CHR - Extension: CityVille = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgkinlmadnbppnmldahlkmpkopceiepj\1_0\ CHR - Extension: SparkChess 6 = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem\6.1.0.1_0\ CHR - Extension: Facebook Notifications = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.27_0\ CHR - Extension: Facebook Secure Connection (Force Https SSL) = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\obfehkohhfbooodomcfenbhaobpeddcl\1.0.13_0\ CHR - Extension: Google Quick Scroll = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc\1.83_0\ CHR - Extension: Yahoo Mail f\u00FCr Chrome = C:\Users\SirToby66-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\opeeoaeaoifnbgnigifffgcmfcfimijl\1.8.1_0\ O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\SirToby66-PC\AppData\Roaming\Complitly\Complitly.dll (SimplyGen) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Programme\Google\Google_BAE\BAE.dll (Packard Bell) O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programme\Yontoo\YontooIEClient.dll (Yontoo LLC) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found. O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [toolbar_eula_launcher] C:\Programme\Packard Bell\GOOGLE_EULA\EULALauncher.exe ( ) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKCU..\Run: [817CA17B11215A7B612E41A1A8EFEE359EA58087._service_run] C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) O4 - HKCU..\Run: [SmpcSys] C:\Programme\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV) O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKCU..\RunOnce: [RegistryDefrag Success Message] C:\Program Files\TuneUp Utilities 2012\TUMessages.exe (TuneUp Software) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B178FCCE-4A7D-4E8A-B79F-2DE26CC5603B}: DhcpNameServer = 192.168.178.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\SirToby66-PC\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\SirToby66-PC\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O27 - HKLM IFEO\carbonitesetuplitepbpreinstaller.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\driverwhiz.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\hpzscr01.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\nero.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\nerostartsmart.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\nerovision.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\picasa2.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\setup.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\skype.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\spotify.exe: Debugger - C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{39d4ac6f-cdb9-11e1-b64f-001e6867d7ee}\Shell - "" = AutoRun O33 - MountPoints2\{39d4ac6f-cdb9-11e1-b64f-001e6867d7ee}\Shell\AutoRun\command - "" = E:\LGAutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2013.01.14 01:05:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.01.14 01:05:39 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2013.01.06 16:37:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite [2012.12.28 09:02:19 | 000,000,000 | ---D | C] -- C:\Users\SirToby66-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan [2012.12.28 09:00:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab [2012.12.28 09:00:36 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab [2012.12.23 09:04:28 | 000,000,000 | ---D | C] -- C:\Users\SirToby66-PC\AppData\Local\ElevatedDiagnostics [2012.12.16 21:12:39 | 000,000,000 | ---D | C] -- C:\Users\SirToby66-PC\AppData\Roaming\Systweak [2012.12.16 21:12:38 | 000,018,360 | ---- | C] (Systweak Inc., (www.systweak.com)) -- C:\Windows\System32\roboot.exe [2012.12.16 20:48:56 | 000,000,000 | ---D | C] -- C:\Users\SirToby66-PC\Documents\Neuer Ordner [1 C:\*.tmp files -> C:\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.01.14 01:39:12 | 000,000,000 | ---- | M] () -- C:\Users\SirToby66-PC\defogger_reenable [2013.01.14 01:16:00 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.01.14 01:07:03 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.01.14 01:05:53 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.14 00:58:13 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2013.01.14 00:58:13 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2013.01.14 00:38:32 | 000,000,162 | ---- | M] () -- C:\Windows\reimage.ini [2013.01.14 00:16:08 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.01.13 20:58:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.01.13 20:06:12 | 000,000,849 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013.01.13 18:54:16 | 000,001,356 | ---- | M] () -- C:\Users\SirToby66-PC\AppData\Local\d3d9caps.dat [2013.01.12 10:18:15 | 000,001,974 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.01.11 11:23:19 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2013.01.11 11:23:19 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013.01.11 11:23:19 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2013.01.11 11:23:19 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013.01.10 09:58:27 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20130110_095820.reg [2013.01.10 08:24:56 | 000,232,512 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013.01.08 10:02:14 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20130108_100209.reg [2013.01.06 17:08:41 | 000,002,413 | ---- | M] () -- C:\Windows\System32\lgAxconfig.ini [2013.01.06 17:08:24 | 000,000,782 | ---- | M] () -- C:\Users\SirToby66-PC\Desktop\LGMobile Support Tool.lnk [2013.01.06 16:37:37 | 000,001,002 | ---- | M] () -- C:\Users\Public\Desktop\LG PC Suite.lnk [2012.12.28 09:01:59 | 000,000,957 | ---- | M] () -- C:\Users\SirToby66-PC\Desktop\Kaspersky Security Scan.lnk [2012.12.27 05:48:07 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121227_054803.reg [2012.12.25 18:27:00 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121225_182655.reg [2012.12.24 07:11:29 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121224_071123.reg [2012.12.23 09:18:43 | 000,004,370 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121223_091837.reg [2012.12.20 23:23:56 | 000,001,848 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121220_232349.reg [2012.12.20 20:12:42 | 000,005,602 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\cc_20121220_201232.reg [2012.12.20 13:27:48 | 000,003,880 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\free_av_7.0.1474_2012-12-20_13-27-45.avastconfig [2012.12.19 17:07:14 | 000,001,688 | ---- | M] () -- C:\Windows\System32\ASOROSet.bin [2012.12.16 20:15:59 | 000,011,435 | ---- | M] () -- C:\Users\SirToby66-PC\Documents\weihnachten bei der deutschen bahn.odt [1 C:\*.tmp files -> C:\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.01.14 01:39:12 | 000,000,000 | ---- | C] () -- C:\Users\SirToby66-PC\defogger_reenable [2013.01.14 01:05:53 | 000,000,909 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.14 00:37:32 | 000,000,162 | ---- | C] () -- C:\Windows\reimage.ini [2013.01.10 09:58:23 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20130110_095820.reg [2013.01.08 10:02:12 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20130108_100209.reg [2013.01.06 16:44:25 | 000,000,782 | ---- | C] () -- C:\Users\SirToby66-PC\Desktop\LGMobile Support Tool.lnk [2013.01.06 16:37:37 | 000,001,002 | ---- | C] () -- C:\Users\Public\Desktop\LG PC Suite.lnk [2012.12.28 09:02:20 | 000,000,957 | ---- | C] () -- C:\Users\SirToby66-PC\Desktop\Kaspersky Security Scan.lnk [2012.12.27 05:48:05 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121227_054803.reg [2012.12.25 18:26:58 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121225_182655.reg [2012.12.24 07:11:26 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121224_071123.reg [2012.12.23 09:18:40 | 000,004,370 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121223_091837.reg [2012.12.20 23:23:51 | 000,001,848 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121220_232349.reg [2012.12.20 20:12:35 | 000,005,602 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\cc_20121220_201232.reg [2012.12.20 13:27:48 | 000,003,880 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\free_av_7.0.1474_2012-12-20_13-27-45.avastconfig [2012.12.19 16:56:17 | 000,001,688 | ---- | C] () -- C:\Windows\System32\ASOROSet.bin [2012.12.16 20:15:57 | 000,011,435 | ---- | C] () -- C:\Users\SirToby66-PC\Documents\weihnachten bei der deutschen bahn.odt [2012.08.19 16:07:52 | 000,003,584 | ---- | C] () -- C:\Users\SirToby66-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012.08.13 07:25:58 | 000,001,356 | ---- | C] () -- C:\Users\SirToby66-PC\AppData\Local\d3d9caps.dat [2012.07.14 22:14:05 | 000,002,413 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini [2012.07.04 10:30:55 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2012.07.04 10:30:54 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2012.07.03 08:13:57 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin ========== ZeroAccess Check ========== [2006.11.02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2012.07.03 11:23:27 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Babylon [2012.07.12 11:21:31 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Canon [2012.08.07 09:36:21 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\com.acrobat.createpdf.CreatePDFDesktop [2012.07.09 18:47:26 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\com.unitedinternet.ums.sms-mms-manager [2012.12.04 23:33:31 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Complitly [2012.10.08 19:08:33 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\DRPSu [2012.10.08 18:19:54 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Easeware [2012.09.21 12:08:50 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Gamers Unite! Snag Bar [2012.12.04 23:33:32 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\OpenOffice.org [2012.07.03 07:13:52 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Packard Bell [2012.09.04 20:27:52 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\pdfforge [2013.01.07 00:04:04 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Spotify [2012.12.23 08:56:13 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\Systweak [2012.07.05 20:25:31 | 000,000,000 | ---D | M] -- C:\Users\SirToby66-PC\AppData\Roaming\TuneUp Software ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:0B4227B4 < End of report > OTL Extras logfile created on: 14.01.2013 01:42:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SirToby66-PC\Downloads\Neuer Ordner Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,50 Gb Total Physical Memory | 2,39 Gb Available Physical Memory | 68,23% Memory free 7,19 Gb Paging File | 6,18 Gb Available in Paging File | 85,96% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 286,09 Gb Total Space | 196,46 Gb Free Space | 68,67% Space Free | Partition Type: NTFS Computer Name: SIRTOBY66-PC-PC | User Name: SirToby66-PC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "UacDisableNotify" = 0 "InternetSettingsDisableNotify" = 0 "AutoUpdateDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0A2D46F7-C606-4380-8C33-70044A44D9FF}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=c:\windows\system32\svchost.exe | "{17E74AE7-A5F9-4F3E-AD6B-A74590D1BE88}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{2444623C-1DD4-4097-BA99-592518997B27}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=c:\windows\system32\svchost.exe | "{2C5D413C-D960-49E2-AABF-CC3B98CC3AE4}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{3089AD63-6F1B-4639-9A97-699288463C96}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{33A3A27A-FA3D-40BA-91EA-FC7B6191BC24}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=c:\windows\system32\svchost.exe | "{38F68BF1-3C08-4BD0-81E4-DBAAB7FF8DA2}" = rport=445 | protocol=6 | dir=out | app=system | "{3E1D025E-09D7-4DCD-B806-F33B141BE3E4}" = rport=2869 | protocol=6 | dir=out | app=system | "{57535140-540B-4FE7-81F5-E441CC5E8C2D}" = lport=137 | protocol=17 | dir=in | app=system | "{593AA904-1020-4746-B6A9-9F502EFD2CE2}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=c:\windows\system32\svchost.exe | "{6375E81D-5AC9-48A0-AC6E-A7F92A805F23}" = lport=2869 | protocol=6 | dir=in | app=system | "{6A4D1D94-0922-4BA4-B288-5FBD8A25FA97}" = lport=138 | protocol=17 | dir=in | app=system | "{71EF2C77-C97D-443F-93E3-0BD83CBE2713}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{8875079E-048A-4F7A-BFAD-CB40406AC156}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{9704BE41-0617-4725-AB31-011CB4E5DACE}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=c:\windows\system32\svchost.exe | "{9E19FFE9-492F-4C86-8699-27B74C910EBB}" = lport=139 | protocol=6 | dir=in | app=system | "{B91655E2-0584-4762-86D9-8DCC6C98CCE4}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{BFF82DE7-18AC-4D0C-B16A-0BACC6958914}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{DD34770C-2F2C-415F-82FF-AFF265F53714}" = lport=445 | protocol=6 | dir=in | app=system | "{E03171E7-5D13-4470-AABD-28AD70899C72}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{E32533F1-6B5B-46CA-9FA7-6EBE65EEBC16}" = rport=137 | protocol=17 | dir=out | app=system | "{E49D4767-0A74-4474-9A81-D801E6A2A50C}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{E9B4F0A6-8289-4EE2-A4C0-DB8FE37A793B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{ED57F042-C926-40BE-AD9D-362CAEED8D40}" = rport=139 | protocol=6 | dir=out | app=system | "{F26A261B-2436-426E-844F-230D4821C777}" = rport=138 | protocol=17 | dir=out | app=system | "{FB56AC3E-51CC-4459-97B3-EE7CDE8CF6DC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=c:\windows\system32\svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0B66752E-A057-4A15-BAF8-884529EFCDA8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{5727AEB1-7667-498A-9503-72DD03669C55}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 | "{5C4FE3BF-3944-4A89-8EA3-1765CC84D6CE}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{A4FB27A1-F7F2-4447-BE35-27145D044D40}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{C524F864-A770-4810-81AA-E4E36367DD7A}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | "{CC95B588-01DA-43B3-B439-679DA19397A8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{CDDBF3A6-AD50-4051-A811-1F4922540EE1}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | "{DBC532F0-701A-488D-AF68-E607C0881F19}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{ECEE7F1B-C265-48C6-AC77-779A69F1E96D}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{F1BA1042-71EB-4241-9DC6-5978194CEC4E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "TCP Query User{27E7795F-03A6-498E-8E38-E5312656BBE0}C:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe | "TCP Query User{5C6C61E3-65C4-4D02-91B4-B9401EBFDD03}C:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe | "UDP Query User{0079F3FD-8AF3-4D4B-9181-2F2DFDB126E3}C:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe | "UDP Query User{74331B32-A031-4BA6-A76D-0A3DA2FC7ECC}C:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\sirtoby66-pc\appdata\roaming\spotify\spotify.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu "{0B540DA4-41AE-4B79-BEAB-0F07E09669AB}" = Driver Whiz "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX320_series" = Canon MX320 series MP Drivers "{13F8A447-A47C-5BD3-6B20-253E74355411}" = Catalyst Control Center Localization Japanese "{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1D8635E1-46A9-1B10-6151-ED7169AB8C9A}" = GMX SMS-Manager "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2036A4BA-1F79-42AD-D534-61C99C3CCF4E}" = CCC Help Chinese Standard "{21D742ED-E3ED-5A5E-8BDD-D13E04F1FE09}" = Catalyst Control Center Graphics Light "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{24488C8B-9392-5B13-4833-F873049F6363}" = CCC Help Chinese Traditional "{26215724-5D65-FBC4-32F8-D682786C6209}" = Catalyst Control Center Localization Swedish "{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller "{281671BF-8069-1C20-CB0A-FE105461CEC5}" = CCC Help Italian "{282C6138-1905-D893-05F0-C00F9DA28D89}" = Catalyst Control Center Graphics Full New "{286F5774-7764-3DAF-C5F7-11C01E435467}" = ATI Catalyst Install Manager "{2C92F6C3-19D8-F23D-9F83-A7CA32C045E1}" = CCC Help English "{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in "{3861C39D-E623-D0A2-9000-4161AB1504DF}" = Catalyst Control Center Localization Italian "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{3967DD99-EEDF-5EA8-4655-BD8DF754AE88}" = CCC Help French "{398E8289-A60A-7D2A-FBFD-5D308F0E19EC}" = CCC Help Finnish "{39DCC38C-7EF1-4619-531D-0593BE395B81}" = CCC Help German "{39F4E33E-90B7-4417-99E2-CB667BD1470F}" = Catalyst Control Center Localization Finnish "{3A79D0F5-670F-718D-CBB4-154DFC6C798E}" = CCC Help Japanese "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3CFCA040-8BD4-50A7-F974-1BF2F460D37D}" = Catalyst Control Center Localization Korean "{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector "{47130164-2AA2-BD8A-3619-4975FDF8CF90}" = CCC Help Hungarian "{4FA387BE-782D-AA93-5365-7ADB1E6BA323}" = ccc-utility "{4FFBB818-B13C-11E0-931D-B2664824019B}_is1" = Complitly "{5202A985-6F0F-03CD-2D23-5894BF95FDFE}" = Catalyst Control Center Localization Thai "{56009CA3-423B-41F8-884A-E5B049534F15}" = Kaspersky Security Scan "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5977CD1B-4D2A-F95E-D20F-0FF4ECE18BC8}" = Catalyst Control Center Graphics Full Existing "{5DB849D6-9392-4FB7-9ABB-87ED433152E5}" = LG United Mobile Drivers "{606F8B82-9F20-08CD-3618-7A6E49CA7AF8}" = CCC Help Norwegian "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6136C4FE-686D-C83C-9C37-E7B626D43C8C}" = Catalyst Control Center Localization Chinese Traditional "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{723B07E3-5392-F459-BE1B-05DCD9B6E5F3}" = Catalyst Control Center Localization Chinese Standard "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{733C0606-EC1F-E0F8-1430-F81C9036CF9C}" = CCC Help Swedish "{78356225-DD63-0017-4C45-0715438C44A2}" = Catalyst Control Center Localization Hungarian "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7BB87738-C85B-0AAD-85A9-84C5D691A50D}" = CCC Help Greek "{7C8F81B4-9175-796C-2066-E7C4259CBB3C}" = Catalyst Control Center Localization Dutch "{867099D4-2292-68CB-C57A-C232005CA228}" = Catalyst Control Center Localization Russian "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 8168 8101E 8102E Ethernet Driver "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A852303-D7D8-3027-4393-B65EACCF572E}" = CCC Help Polish "{8BBEDC31-F291-506B-9E41-F07D17406393}" = CCC Help Korean "{921D0FF1-BF6D-6D28-BEA2-070B18FE3381}" = CCC Help Thai "{980B9958-1239-4FC5-8C88-AC5650321031}" = Nero 8 Essentials "{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows "{99E956EB-8B19-943B-56D2-209B77E9273F}" = CCC Help Dutch "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9C6D5B61-2FBE-2872-324C-DBEEE7D15502}" = CCC Help Turkish "{9D08ED8B-C0B4-9B9A-89C8-35B295721649}" = Catalyst Control Center Localization Czech "{9DF2305A-BE0D-F0A4-A9BC-4A7D4D448531}" = Catalyst Control Center Localization Spanish "{9FED50C9-70A7-451B-4D53-022E5E1F0B8C}" = Catalyst Control Center Localization Danish "{A07B1275-973C-0174-A950-E68D8D9F983C}" = Catalyst Control Center Localization Greek "{A1065C0A-2B16-2D9F-25B8-22253CB189D3}" = Catalyst Control Center Core Implementation "{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer "{A373EC49-E9B3-B26A-0960-E94F7C95B80D}" = CCC Help Russian "{A49D2DE3-67AF-B132-4CC2-49B48249D9A9}" = Catalyst Control Center Localization Polish "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9334485-7AAE-A1FE-8202-10716FDD2AD5}" = CCC Help Portuguese "{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Deutsch "{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}" = LG Bluetooth Drivers "{AD3257BA-6944-06AD-781D-76E3FD6F4170}" = Catalyst Control Center Localization German "{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime "{B01F9B35-2D9A-A9BF-2B68-1470B2AA56C5}" = CCC Help Czech "{B4F39BE8-389D-7D03-F33F-06AE16C8E977}" = Catalyst Control Center Localization Turkish "{BA50C4FE-E702-11F9-3A07-9CA9C053CD76}" = Catalyst Control Center Localization French "{C5899C0F-427B-B887-FF87-4DD44C000BB0}" = ccc-core-static "{CD95F661-A5C4-44F5-A6AA-ECDD91C240D2}" = WinZip 16.5 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D359B12F-9B1A-46FD-B70C-F507B5B11590}" = HDRegDE "{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser "{DFA0634A-852E-B8D0-D669-472F7BDC2875}" = Skins "{E05C16DA-7025-913F-ED41-90EF04585012}" = Catalyst Control Center Localization Norwegian "{E0660B58-D1DE-86AF-959A-B28ADF2DC26B}" = CCC Help Spanish "{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}" = LG USB Modem Drivers "{E4140CBD-470A-36AD-E130-96CC04C41537}" = Catalyst Control Center Graphics Previews Vista "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F1D4C9EA-5232-5755-6DE7-38AC8B95CB81}" = CCC Help Danish "{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Apple Application Support "{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{FC451B9B-A3CB-B094-226E-20A82815214F}" = Catalyst Control Center Localization Portuguese "{FCED9B62-34FF-4C15-8A23-F65221F7874D}" = ITECIR Driver "0B63C37025C2F467B0BAF5BC9C10E853F201C510" = Windows-Treiberpaket - ITE Tech.Inc. (itecir) HIDClass (10/03/2007 5.0.0004.5) "7-Zip" = 7-Zip 9.20 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "AdobeReader" = Adobe Reader 8 "AUDIO" = AUDIO DRIVER V6.0.1.5618 "avast" = avast! Free Antivirus "Canon MX320 series Benutzerregistrierung" = Canon MX320 series Benutzerregistrierung "CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program "CanonMyPrinter" = Canon Utilities My Printer "CanonSolutionMenu" = Canon Utilities Solution Menu "Carbonite" = Carbonite "Carbonite Setup Lite" = Sichern Sie Ihre Daten "CARDREADER" = cardreader Driver V1.0.10.4 "CCleaner" = CCleaner "CIR" = ITECIR Infrared Receiver V5.0.4.5 "com.unitedinternet.ums.sms-mms-manager" = GMX SMS-Manager "Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX "Google Chrome" = Google Chrome "GoogleBAE" = Google BAE "GoogleToolbar" = Google Toolbar "ImageWriter" = Packard Bell ImageWriter "Infocentre" = Infocentre Rev. 2.0.0.1 "InstallWIX_{56009CA3-423B-41F8-884A-E5B049534F15}" = Kaspersky Security Scan "LAN" = Realtek RTL8102 Driver V6.203.214.2008 "LCDTest" = Packard Bell LCD Test "LG PC Suite" = LG PC Suite "LG PC Suite IV" = LG PC Suite IV "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100 "METABOLI" = Metaboli "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Mozilla Firefox 18.0 (x86 de)" = Mozilla Firefox 18.0 (x86 de) "MozillaMaintenanceService" = Mozilla Maintenance Service "MP Navigator EX 2.1" = Canon MP Navigator EX 2.1 "Nero8" = Nero 8 Essentials "Picasa 3" = Picasa 3 "SETUPMYPC_DE" = SetUp My PC "SKYPE" = Skype 3.6.2.248 "Speccy" = Speccy "SynTPDeinstKey" = Synaptics Pointing Device Driver "TOUCHPAD" = TOUCHPAD DRIVER V10.0.1.0 "Updator" = Packard Bell Updator "VGA" = VGA DRIVERS V8.479 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "DRPSu Updater" = DriverPack Solution Updater "Gamers Unite! Snag Bar" = Gamers Unite! Snag Bar "Spotify" = Spotify ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 29.12.2012 03:15:25 | Computer Name = SirToby66-PC-PC | Source = WinMgmt | ID = 10 Description = Error - 30.12.2012 05:33:31 | Computer Name = SirToby66-PC-PC | Source = WinMgmt | ID = 10 Description = Error - 06.01.2013 03:06:22 | Computer Name = SirToby66-PC-PC | Source = WinMgmt | ID = 10 Description = Error - 06.01.2013 11:26:42 | Computer Name = SirToby66-PC-PC | Source = VSS | ID = 8194 Description = Error - 06.01.2013 11:50:14 | Computer Name = SirToby66-PC-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung LGUserCSTool.exe, Version 1.6.1.1, Zeitstempel 0x50d401ee, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x00000000, Prozess-ID 0x14f4, Anwendungsstartzeit 01cdec24b48519e0. Error - 06.01.2013 12:09:40 | Computer Name = SirToby66-PC-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung LGUserCSTool.exe, Version 1.6.1.1, Zeitstempel 0x50d401ee, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x00000000, Prozess-ID 0x11a8, Anwendungsstartzeit 01cdec2811698f30. Error - 06.01.2013 20:43:51 | Computer Name = SirToby66-PC-PC | Source = EventSystem | ID = 4621 Description = Error - 07.01.2013 05:31:05 | Computer Name = SirToby66-PC-PC | Source = WinMgmt | ID = 10 Description = Error - 07.01.2013 14:51:53 | Computer Name = SirToby66-PC-PC | Source = Application Hang | ID = 1002 Description = Programm firefox.exe, Version 17.0.1.4715 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen. Prozess-ID: 1120 Anfangszeit: 01cded07924f1165 Zeitpunkt der Beendigung: 30 Error - 07.01.2013 14:59:51 | Computer Name = SirToby66-PC-PC | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 29.07.2012 00:34:49 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7000 Description = Error - 29.07.2012 04:36:54 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7009 Description = Error - 29.07.2012 04:36:54 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7000 Description = Error - 29.07.2012 04:36:55 | Computer Name = SirToby66-PC-PC | Source = DCOM | ID = 10005 Description = Error - 30.07.2012 02:28:33 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7000 Description = Error - 30.07.2012 02:33:28 | Computer Name = SirToby66-PC-PC | Source = atapi | ID = 262155 Description = Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden. Error - 30.07.2012 05:06:18 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7009 Description = Error - 30.07.2012 05:06:18 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7000 Description = Error - 30.07.2012 05:06:18 | Computer Name = SirToby66-PC-PC | Source = DCOM | ID = 10005 Description = Error - 30.07.2012 06:48:59 | Computer Name = SirToby66-PC-PC | Source = Service Control Manager | ID = 7000 Description = < End of report > Bitte um Hilfe!!!Verstehe kein Wort und bin echt aufgeschmissen!lg,redrose  |
|
14.01.2013, 11:54
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Firefox wird mit Laden bestimmter Websites nie fertig ! Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!
__________________ |
|
| Themen zu Firefox wird mit Laden bestimmter Websites nie fertig ! |
| 7-zip, adblock, adobe, antivirus, application/pdf:, autorun, avast, bho, canon, defender, desktop, error, firefox, flash player, format, home, index, install.exe, kaspersky, logfile, mozilla, packard bell, preferences, realtek, registry, rundll, scan, security, software, svchost.exe, tracker, udp, vista, yahoo mail |
Linear-Darstellung
