| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win XP keine Icons kein Taskmanager und Leiste sowie keine MaustastenfunktionWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
25.01.2013, 20:48
| #1 |
 |  Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hallo an alle als Hilfesuchender in Sachen Viren Trojaner etc. wie im Titel bereits erwähnt habe bei meinem PC seit kurzem das Problem das alle Icons verschwunden sind es ist nur der blanke Desktop zu sehen der Mauszeiger ist vorhanden jedoch sind die beiden Maustasten ohne Funktion der Taskmanager läßt sich auch nicht aufrufen, im abgesicherten Modus läuft er einwandfrei allerdings kann ich trotz Aktivierung keinen Wiederherstellungspunkt anwählen. Meine Frage daher könnte es sich um einen Schädling handeln? Im Anhang das log von Hijack. greets lionos PHP-Code: Geändert von lionos (25.01.2013 um 20:57 Uhr) |
|
26.01.2013, 22:05
| #2 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™   | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hallo und
__________________  Lesestoff:Bitte keine Hijackthis-Logfiles posten!!! Zitat:
Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!
__________________ |
|
27.01.2013, 14:42
| #3 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hallo Danke für die Erklärung des Posten in Code -Tags und Sorry das mit Hijack habe ich zu spät gelesen!
__________________Ich bin lt. Anleitung vorgegangen 1.Defogger 2.OTL und 3.GMER hier die logs: Code:
ATTFilter OTL logfile created on: 26.01.2013 14:07:32 - Run 3 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Gerhard\Desktop Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000C07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy 2,00 Gb Total Physical Memory | 1,47 Gb Available Physical Memory | 73,55% Memory free 3,85 Gb Paging File | 3,55 Gb Available in Paging File | 92,31% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 298,08 Gb Total Space | 229,61 Gb Free Space | 77,03% Space Free | Partition Type: NTFS Drive D: | 465,76 Gb Total Space | 191,77 Gb Free Space | 41,17% Space Free | Partition Type: NTFS Drive F: | 29,44 Gb Total Space | 7,46 Gb Free Space | 25,34% Space Free | Partition Type: NTFS Computer Name: GERFRUEH-9EFD7D | User Name: Gerhard | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.01.25 19:03:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\OTL.exe PRC - [2012.10.07 03:13:42 | 000,184,288 | ---- | M] (McAfee, Inc.) -- C:\Programme\Gemeinsame Dateien\McAfee\Platform\McSvcHost\McSvHost.exe PRC - [2008.09.05 23:30:04 | 000,952,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe PRC - [2004.08.04 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe ========== Modules (No Company Name) ========== MOD - [2009.02.27 16:41:26 | 000,311,296 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\pdfshell.DEU MOD - [2004.11.02 21:16:40 | 000,121,856 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll ========== Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- -- (McShield) SRV - [2013.01.19 12:16:15 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013.01.12 03:27:33 | 000,170,912 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- C:\Programme\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2013.01.10 20:06:31 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012.11.09 06:53:22 | 000,167,344 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\WINDOWS\system32\mfevtps.exe -- (mfevtp) SRV - [2012.11.09 06:50:10 | 000,168,880 | ---- | M] () [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\McAfee\SystemCore\\mfefire.exe -- (mfefire) SRV - [2012.10.07 03:13:42 | 000,184,288 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy) SRV - [2012.10.07 03:13:42 | 000,184,288 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc) SRV - [2012.10.07 03:13:42 | 000,184,288 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc) SRV - [2012.10.07 03:13:42 | 000,184,288 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc) SRV - [2012.10.06 07:28:42 | 000,632,344 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\McAfee\AMCore\mcshield.exe -- (mfecore) SRV - [2012.09.12 17:25:22 | 000,020,472 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- c:\Programme\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2012.08.31 12:20:06 | 000,167,784 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service) SRV - [2012.08.11 16:43:06 | 000,055,184 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2012.01.23 05:43:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Stopped] -- C:\Programme\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService) SRV - [2011.09.15 12:06:04 | 000,088,576 | ---- | M] () [Auto | Stopped] -- C:\Programme\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service) SRV - [2011.05.24 10:33:30 | 001,840,128 | ---- | M] (MAGIX AG) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\FABS.exe -- (Fabs) SRV - [2011.04.26 13:54:12 | 002,702,848 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) SRV - [2010.05.04 21:22:20 | 000,072,704 | ---- | M] (Adobe Systems) [Disabled | Stopped] -- C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2010.01.09 20:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2010.01.09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2005.09.20 17:22:02 | 000,159,744 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOKUME~1\Gerhard\LOKALE~1\Temp\kwrorkow.sys -- (kwrorkow) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012.11.09 06:56:16 | 000,060,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids) DRV - [2012.11.09 06:53:02 | 000,091,168 | ---- | M] (McAfee, Inc.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k) DRV - [2012.11.09 06:51:12 | 000,565,352 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk) DRV - [2012.11.09 06:50:30 | 000,084,432 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp) DRV - [2012.11.09 06:50:30 | 000,084,432 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk) DRV - [2012.11.09 06:50:20 | 000,362,640 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek) DRV - [2012.11.09 06:50:00 | 000,065,488 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk) DRV - [2012.11.09 06:49:40 | 000,234,824 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk) DRV - [2012.11.09 06:49:10 | 000,132,912 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk) DRV - [2012.11.02 01:46:50 | 000,252,200 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfencbdc.sys -- (mfencbdc) DRV - [2012.11.02 01:46:50 | 000,081,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfencrk.sys -- (mfencrk) DRV - [2012.08.26 13:56:17 | 000,121,248 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2012.05.28 10:28:04 | 000,147,472 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HipShieldK.sys -- (HipShieldK) DRV - [2010.11.30 17:06:04 | 006,261,352 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2010.11.26 05:17:40 | 005,555,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2010.11.06 13:11:12 | 000,035,008 | ---- | M] (hxxp://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\libusb0.sys -- (libusb0) DRV - [2010.10.28 15:58:44 | 000,272,232 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2010.06.22 18:01:50 | 000,021,248 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\htcnprot.sys -- (htcnprot) DRV - [2009.11.18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009.11.18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009.06.17 17:56:24 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE) DRV - [2009.06.17 17:55:26 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou) DRV - [2009.06.17 17:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd) DRV - [2009.06.10 00:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys -- (HTCAND32) DRV - [2009.01.27 20:16:05 | 000,217,664 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter) DRV - [2009.01.27 20:16:05 | 000,030,080 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2009.01.27 20:16:00 | 000,096,032 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman) DRV - [2009.01.22 19:36:57 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2008.07.02 20:38:14 | 000,089,600 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2007.12.10 17:55:00 | 000,247,296 | R--- | M] (DTV-DVB Provide) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MtsBda.sys -- (MTSBDA) DRV - [2007.10.28 16:35:14 | 000,583,128 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ACEDRV10.sys -- (acedrv10) DRV - [2007.10.26 14:53:46 | 000,250,560 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\acehlp10.sys -- (acehlp10) DRV - [2006.09.04 15:45:00 | 000,016,896 | R--- | M] (DTV-DVB) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MtsHid.sys -- (MtsHID) DRV - [2004.08.04 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE) DRV - [2001.08.18 04:33:10 | 000,320,384 | ---- | M] (Matrox Graphics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\G200m.sys -- (G200) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask) IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.) IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) IE - HKCU\..\SearchScopes,DefaultScope = {0F4625B1-78AB-4C7A-B216-79D7660E9CEB} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=101067&mntrId=78d03c29000000000000001fd02e3b2d IE - HKCU\..\SearchScopes\{0F4625B1-78AB-4C7A-B216-79D7660E9CEB}: "URL" = hxxp://www.google.de/search?q={searchTerms} IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050 IE - HKCU\..\SearchScopes\{CF5ABA85-BF18-40B4-A726-75515C7FE6A1}: "URL" = hxxp://search.yahoo.com/search?fr=mcafee&p={SearchTerms} IE - HKCU\..\SearchScopes\{DDB48027-FFEE-4DCC-98A6-0696B842BE49}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=de_US&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^AT&apn_uid=708B7C89-449C-4C71-90B9-7E02B4FAFC1A&apn_sauid=9B4C96F6-0ED3-4650-AE1B-B7E26673B6AF IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.defaultthis.engineName: "DVDVideoSoftTB Customized Web Search" FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Ask.com" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.at/" FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0031-ABCDEFFEDCBA%7D:6.0.31 FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:3.5.0 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1 FF - prefs.js..extensions.enabledItems: {031cedaa-726d-b0a8-7ba6-b3c437c89f13}:4.6.6.3 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - prefs.js..keyword.URL: "hxxp://search.sweetim.com/search.asp?src=2&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programme\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL () FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Programme\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Musicnotes.com/Musicnotes Viewer,version=1.18.3: C:\Programme\Musicnotes\npmusicn.dll (Musicnotes, Inc.) FF - HKLM\Software\MozillaPlugins\@Sibelius.com/Scorch Plugin,version=6.1.5.22: C:\Programme\Musicnotes\npsibelius.dll () FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Programme\Gemeinsame Dateien\McAfee\SystemCore [2013.01.19 21:48:48 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Programme\McAfee\SiteAdvisor [2013.01.19 21:49:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2013.01.19 12:16:15 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2013.01.19 12:16:11 | 000,000,000 | ---D | M] [2009.05.30 18:14:36 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Extensions [2009.02.01 14:21:48 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Extensions\home2@tomtom.com [2009.05.30 18:14:36 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Extensions\mozswing@mozswing.org [2013.01.18 14:00:54 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions [2013.01.18 14:00:54 | 000,000,000 | ---D | M] (DVDVideoSoftTB) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2012.10.07 13:52:25 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\toolbar@ask.com [2012.12.15 11:27:38 | 000,036,139 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012.11.23 14:17:26 | 000,804,627 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012.10.07 13:52:25 | 000,002,299 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\askcom.xml [2011.03.21 15:15:10 | 000,000,931 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\conduit.xml [2012.12.01 20:14:15 | 000,003,915 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\sweetim.xml [2013.01.19 21:20:33 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2013.01.19 12:16:09 | 000,000,000 | ---D | M] (z) -- C:\Programme\Mozilla Firefox\extensions\{031cedaa-726d-b0a8-7ba6-b3c437c89f13} [2013.01.19 21:20:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2013.01.19 21:49:30 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAMME\MCAFEE\SITEADVISOR [2013.01.19 12:16:15 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll [2012.06.23 13:39:14 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.01.12 19:06:54 | 000,002,288 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\babylon.xml [2012.08.30 18:03:53 | 000,002,465 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml [2012.06.23 13:39:14 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml [2012.06.23 13:39:14 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml [2012.09.16 10:54:55 | 000,002,024 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\McSiteAdvisor.xml [2012.06.23 13:39:14 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml [2012.06.23 13:39:14 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = hxxp://www.google.de/search?q={searchTerms} CHR - default_search_provider: suggest_url = CHR - homepage: hxxp://www.google.com/ CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\10.0.648.204\pdf.dll CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\10.0.648.204\gears.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\10.0.648.204\gcswf32.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Programme\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Java(TM) Platform SE 6 U15 (Enabled) = C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Java Deployment Toolkit 6.0.150.3 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npdeploytk.dll CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Programme\Mozilla Firefox\plugins\NPOFFICE.DLL CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin7.dll CHR - plugin: Reallusion CT4Player for Mozilla (Enabled) = C:\Programme\Mozilla Firefox\plugins\npRLCT4Player.dll CHR - plugin: ScorchPlugin (Enabled) = C:\Programme\Mozilla Firefox\plugins\NPSibelius.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programme\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programme\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programme\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.2.183.39\npGoogleOneClick8.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL CHR - plugin: Picasa (Enabled) = C:\Programme\Google\Picasa3\npPicasa3.dll CHR - plugin: Musicnotes (Enabled) = C:\Programme\Musicnotes\npmusicn.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Programme\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: McAfee SiteAdvisor = C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.31.131.2_0\ O1 HOSTS File: ([2004.08.04 13:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (no name) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - No CLSID value found. O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (&TerraTec Home Cinema) - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\Programme\TerraTec\TerraTec Home Cinema\THCDeskBand.dll (TerraTec Electronic GmbH) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (&TerraTec Home Cinema) - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\Programme\TerraTec\TerraTec Home Cinema\THCDeskBand.dll (TerraTec Electronic GmbH) O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.) O4 - HKLM..\Run: [ATICustomerCare] C:\Programme\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [ATIModeChange] C:\WINDOWS\System32\Ati2mdxx.exe (ATI Technologies, Inc.) O4 - HKLM..\Run: [mcpltui_exe] C:\Programme\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [mcui_exe] C:\Programme\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Programme\Acronis\TrueImage\TrueImageMonitor.exe (Acronis) O4 - HKCU..\Run: [AnyDVD] C:\Programme\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.) O4 - HKCU..\Run: [McAfee McItInfo] C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Temp\mcitinfo_1358792733.exe (McAfee, Inc.) O4 - HKCU..\Run: [TomTomHOME.exe] C:\Programme\TomTom HOME 2\TomTomHOMERunner.exe (TomTom) O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Neuer Wert #1 = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Download with &Media Finder - Reg Error: Value error. File not found O8 - Extra context menu item: Free YouTube Download - C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DVDVideoSoftIEHelpers\freeytvdownloader.htm () O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1232650270234 (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1272195241796 (MUWebControl Class) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Programme\McAfee\MSC\McSnIePl.dll (McAfee, Inc.) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: D:\Fotos\Icons\Desktop Hintergrund.bmp O24 - Desktop BackupWallPaper: D:\Fotos\Icons\Desktop Hintergrund.bmp O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Programme\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.01.22 19:27:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011.12.21 05:23:52 | 046,524,572 | ---- | M] () - F:\autorun.upg -- [ NTFS ] O33 - MountPoints2\{f8d42c81-ea2f-11dd-90dc-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{f8d42c81-ea2f-11dd-90dc-806d6172696f}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{f8d42c81-ea2f-11dd-90dc-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2013.01.25 20:19:14 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\HiJackThis.exe [2013.01.25 19:53:02 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Gerhard\Recent [2013.01.25 19:44:59 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Malwarebytes [2013.01.25 19:44:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware [2013.01.25 19:44:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes [2013.01.25 19:44:41 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2013.01.25 19:44:41 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware [2013.01.25 19:44:17 | 010,156,344 | ---- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\mbam-setup-1.70.0.1100.exe [2013.01.20 19:20:40 | 028,181,408 | ---- | C] (TuneUp Software) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\TuneUpUtilities2013_de-DE.exe [2013.01.20 10:58:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\McAfee [2013.01.19 21:49:29 | 000,147,472 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\HipShieldK.sys [2013.01.19 21:29:38 | 000,167,344 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\mfevtps.exe [2013.01.19 21:24:29 | 005,090,696 | ---- | C] (McAfee, Inc.) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\McAfeeSetup.exe [2013.01.19 19:41:45 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.01.19 19:41:45 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.01.19 19:41:45 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.01.19 19:41:24 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2013.01.19 13:51:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Winferno [2013.01.19 12:28:23 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe [2013.01.19 12:26:47 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Security Client [2013.01.19 12:16:08 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox [2013.01.18 16:49:00 | 000,014,664 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\stinger.sys [2013.01.18 16:48:15 | 000,000,000 | ---D | C] -- C:\Programme\stinger [2013.01.18 16:39:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan [2013.01.15 19:22:44 | 000,084,432 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfendisk.sys [2013.01.12 18:51:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Gerhard\Eigene Dateien\Neuer Ordner [2013.01.10 20:06:24 | 016,369,160 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2013.01.07 18:28:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SweetIM [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [19 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.01.26 13:44:49 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\defogger_reenable [2013.01.25 21:02:46 | 000,050,477 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Desktop\Defogger.exe [2013.01.25 20:21:57 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\HiJackThis.exe [2013.01.25 20:00:06 | 000,001,230 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013.01.25 19:59:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013.01.25 19:44:45 | 000,000,756 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.25 19:11:30 | 010,156,344 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\mbam-setup-1.70.0.1100.exe [2013.01.25 19:03:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\OTL.exe [2013.01.20 20:12:31 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013.01.20 20:06:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013.01.20 19:57:23 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013.01.20 19:31:59 | 000,000,386 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job [2013.01.20 19:21:00 | 028,181,408 | ---- | M] (TuneUp Software) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\TuneUpUtilities2013_de-DE.exe [2013.01.19 21:32:09 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif [2013.01.19 21:24:31 | 005,090,696 | ---- | M] (McAfee, Inc.) -- C:\Dokumente und Einstellungen\Gerhard\Desktop\McAfeeSetup.exe [2013.01.19 13:51:14 | 000,000,370 | ---- | M] () -- C:\WINDOWS\tasks\rpc.job [2013.01.18 17:04:51 | 000,014,664 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\stinger.sys [2013.01.18 14:12:46 | 000,002,467 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Desktop\CorelDRAW 12.lnk [2013.01.14 20:23:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013.01.14 19:20:36 | 000,000,125 | -HS- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\.zreglib [2013.01.12 13:26:10 | 000,230,912 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013.01.12 03:30:20 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.01.12 03:26:16 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.01.12 03:24:49 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.01.10 20:06:27 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.01.10 20:06:27 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.01.10 20:06:24 | 016,369,160 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2013.01.07 08:02:04 | 000,365,568 | ---- | M] () -- C:\Dokumente und Einstellungen\Gerhard\Desktop\gmer.exe [2013.01.03 10:52:52 | 000,374,247 | ---- | M] () -- C:\WINDOWS\setupapi.old [2013.01.01 15:37:03 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [19 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.01.26 13:44:49 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\defogger_reenable [2013.01.25 21:10:49 | 000,050,477 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Desktop\Defogger.exe [2013.01.25 21:06:03 | 000,365,568 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Desktop\gmer.exe [2013.01.25 19:44:45 | 000,000,756 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.19 13:51:14 | 000,000,370 | ---- | C] () -- C:\WINDOWS\tasks\rpc.job [2013.01.19 12:37:16 | 000,000,386 | -H-- | C] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job [2013.01.19 12:27:21 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif [2013.01.15 19:29:12 | 000,002,641 | ---- | C] () -- C:\WINDOWS\System32\drivers\mfencrk.inf [2013.01.15 19:29:11 | 000,002,946 | ---- | C] () -- C:\WINDOWS\System32\drivers\mfencbdc.inf [2012.09.23 10:10:05 | 000,000,023 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\kodakpcd.ini [2012.05.13 21:41:45 | 000,513,902 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1390067357-1035525444-682003330-1003-0.dat [2012.05.13 21:41:39 | 000,513,902 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat [2012.05.10 21:11:21 | 000,082,460 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\clip_image002.jpg [2012.03.04 15:56:30 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg [2012.03.04 15:56:29 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe [2012.02.16 19:34:51 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012.01.03 19:59:11 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll [2011.11.13 15:28:40 | 000,000,248 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Goya.ini [2011.11.13 15:28:14 | 000,000,046 | ---- | C] () -- C:\WINDOWS\Goya.INI [2011.07.18 19:32:28 | 000,001,099 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\ShiftN.ini [2011.03.02 06:57:44 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2011.03.02 06:57:40 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll [2011.03.02 06:57:40 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll [2011.03.02 06:57:40 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll [2011.03.02 06:57:40 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll [2010.01.05 20:33:26 | 000,000,760 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\setup_ldm.iss [2009.12.03 12:49:29 | 000,061,224 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\GoToAssistDownloadHelper.exe [2009.02.07 14:06:13 | 001,513,587 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\mdbu.bin [2009.01.27 19:27:06 | 000,000,125 | -HS- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\.zreglib [2009.01.26 22:24:22 | 000,230,912 | ---- | C] () -- C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ========== ZeroAccess Check ========== [2009.01.22 19:43:02 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2004.08.04 13:00:00 | 001,483,776 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2004.08.04 13:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2004.08.04 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2012.12.25 15:44:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\188F1432-103A-4ffb-80F1-36B633C5C9E1 [2009.02.01 12:52:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Acronis [2012.10.07 13:41:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask [2012.01.12 19:06:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Babylon [2012.05.24 18:56:12 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CanonBJ [2012.05.24 18:56:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CanonIJWSpt [2011.05.01 11:05:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CMUV [2012.09.16 10:47:58 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Common Files [2010.11.28 20:03:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\DVBViewer GE [2009.01.28 21:54:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Elaborate Bytes [2012.03.04 16:01:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eLicenser [2009.07.19 20:47:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\fotobuch.de AG [2009.07.18 13:23:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\HappyFoto [2012.09.21 11:50:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX [2009.10.03 10:24:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Metacafe [2010.01.30 20:01:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Musicnotes [2012.05.13 19:11:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Samsung [2013.01.19 20:09:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan [2009.01.28 19:02:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SlySoft [2013.01.07 18:28:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SweetIM [2012.03.04 15:58:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Syncrosoft [2011.02.02 23:19:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP [2011.06.23 22:19:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TerraTec [2009.02.01 14:21:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TomTom [2012.09.30 15:07:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TuneUp Software [2013.01.19 13:51:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Winferno [2010.02.20 12:14:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\WinZipSE [2012.09.16 10:47:58 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{32364CEA-7855-4A3C-B674-53D8E9B97936} [2010.07.10 11:50:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2009.09.27 18:24:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2009.06.11 14:46:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [2012.09.30 15:07:06 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2012.01.12 19:06:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Babylon [2011.12.02 15:43:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\calibre [2009.09.10 13:24:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Canon [2009.02.22 19:06:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\CD-LabelPrint [2009.11.07 20:11:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\CoffeeCup Software [2012.12.06 18:44:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DarkWave Studio [2011.08.08 17:06:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\de.magix-fotos.fotobuch.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1 [2012.01.12 21:29:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DesktopIconForAmazon [2011.02.24 21:58:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DiskAid [2012.10.06 15:14:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DVDVideoSoft [2012.09.30 15:22:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\DVDVideoSoftIEHelpers [2009.12.29 19:46:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\EPSON [2011.01.26 19:11:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\FileZilla [2009.07.19 20:47:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\fotobuch.de AG [2011.10.26 14:16:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\GrabPro [2009.03.05 20:22:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Haenlein-Software [2011.10.31 19:29:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\HartlauerFotoService3 [2012.01.20 09:25:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\HTC [2011.02.25 13:40:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1 [2010.01.24 19:43:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Leadertech [2012.09.22 14:46:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\MAGIX [2012.01.12 19:08:45 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Media Finder [2012.09.21 22:23:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\MotionStudios [2012.09.30 15:06:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\OpenCandy [2012.01.03 21:08:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\OpenOffice.org [2010.05.04 18:41:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Opera [2011.10.26 14:46:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Orbit [2011.02.26 15:17:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Outlook [2010.08.30 14:38:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\PanoramaStudio [2013.01.07 18:29:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\PriceGong [2011.10.26 14:16:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\ProgSense [2012.05.13 19:13:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Samsung [2012.07.08 11:16:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Smart Panel [2011.02.24 22:09:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Software4u [2011.06.23 22:18:54 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\TerraTec [2009.02.01 14:21:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\TomTom [2012.09.30 15:07:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\TuneUp Software [2009.01.22 20:27:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Windows Desktop Search [2009.01.26 16:21:54 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Windows Search ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 72 bytes -> C:\WINDOWS:1EE0B4C75C493001 @Alternate Data Stream - 192 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:A5B56640 @Alternate Data Stream - 156 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:06A7F9ED @Alternate Data Stream - 153 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:D1B5B4F1 < End of report > Code:
ATTFilter GMER 2.0.18444 - hxxp://www.gmer.net
Rootkit scan 2013-01-27 14:10:22
Windows 5.1.2600 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-8 SAMSUNG_HD322HJ rev.1AC01113 298,09GB
Running: gmer.exe; Driver: C:\DOKUME~1\Gerhard\LOKALE~1\Temp\kwrorkow.sys
---- Kernel code sections - GMER 2.0 ----
.reloc C:\WINDOWS\system32\drivers\acehlp10.sys section is executable [0xBA4DBB80, 0x380E2, 0xE0000060]
---- Registry - GMER 2.0 ----
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{7547F477-3F24-FB05-4589-6C4F6A9999DB}
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{92C1845F-9629-E837-45B3-5CE2552BF71B}
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{92C1845F-9629-E837-45B3-5CE2552BF71B}@pahkcmcamhdadjfkagekbgbhjjogehob 0x61 0x62 0x6D 0x6F ...
---- EOF - GMER 2.0 ----
|
|
28.01.2013, 10:38
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Die Frage war aber aber auch, ob ein Virenscanner jemals Funde zu verzeichnen hatte und wenn ja, solltest du dazu die Logs posten. OTL und GMER sind Spezialtools und keine Virenscanner!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.01.2013, 18:03
| #5 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hallo das kommt jetzt noch dazu das sich der Echtzeitscan von Mcaffee nicht mehr aktivieren läßt bzw. es steht das er abgelaufen sei obwohl in der Kontoinfo die korrekte noch verbleibende Laufzeit angegeben wird ich habe auch nach log Dateien gesucht aber keine gefunden. greets rodeni |
|
29.01.2013, 21:00
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine MaustastenfunktionZitat:
Ist das rein zufällig ein Büro-/Firmen-PC? Oder ein Uni-Rechner? Und warum bitte wurden die Updates so sträflich vernchlässigt?!  WinXP SP2 und IE6 ist ein Stand, auf dem XP vor fast zehn Jahren mal aktuell war 
__________________ --> Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion |
|
29.01.2013, 21:14
| #7 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Ist nicht vernachlässigt da ist bereits eine Reparaturinstallation gelaufen! (ohne erfolg) |
|
29.01.2013, 21:36
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Was ist mit meiner anderen Frage?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.01.2013, 21:45
| #9 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Das ist mein Privat PC das war ein Komplettsystem das ich beim Händler vor Ort so gekauft habe!? |
|
29.01.2013, 22:00
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Ich bin immer sehr hellhörif wenn ich Professional Editionen in den Logs sehe  Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Malwarebytes Anti-Rootkit  Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.01.2013, 22:52
| #11 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Kein Fund lt. Abschlußmeldung! Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.01.0.1017
www.malwarebytes.org
Database version: v2013.01.18.09
Windows XP Service Pack 2 x86 NTFS (Safe Mode)
Internet Explorer 6.0.2900.2180
Gerhard :: GERFRUEH-9EFD7D [administrator]
29.01.2013 22:40:19
mbar-log-2013-01-29 (22-40-19).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 29879
Time elapsed: 26 minute(s), 12 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
|
|
30.01.2013, 11:09
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion 1. aswMBR Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. 2. TDSS-Killer Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
30.01.2013, 13:13
| #13 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hallo hier die Ergebnisse: Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-30 12:53:26
-----------------------------
12:53:26.484 OS Version: Windows 5.1.2600 Service Pack 2
12:53:26.484 Number of processors: 2 586 0x170A
12:53:26.484 ComputerName: GERFRUEH-9EFD7D UserName: Gerhard
12:53:32.296 Initialize success
12:53:57.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-8
12:53:57.687 Disk 0 Vendor: SAMSUNG_HD322HJ 1AC01113 Size: 305244MB BusType: 3
12:53:57.703 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-1f
12:53:57.703 Disk 1 Vendor: SAMSUNG_HD502IJ 1AA01113 Size: 476940MB BusType: 3
12:53:57.718 Disk 0 MBR read successfully
12:53:57.734 Disk 0 MBR scan
12:53:57.734 Disk 0 Windows XP default MBR code
12:53:57.750 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 305234 MB offset 63
12:53:57.765 Disk 0 scanning sectors +625121280
12:53:57.859 Disk 0 scanning C:\WINDOWS\system32\drivers
12:54:16.359 Service scanning
12:54:46.890 Modules scanning
12:54:55.000 Disk 0 trace - called modules:
12:54:55.015 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
12:54:55.031 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a787ab8]
12:54:55.093 3 CLASSPNP.SYS[f765805b] -> nt!IofCallDriver -> \Device\0000007a[0x8a70f108]
12:54:55.171 5 ACPI.sys[f75ad620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-8[0x8a705d98]
12:54:55.234 Scan finished successfully
12:55:24.640 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Gerhard\Desktop\MBR.dat"
12:55:24.640 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Gerhard\Desktop\aswMBR.txt"
Code:
ATTFilter 12:55:42.0062 1580 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:55:42.0062 1580 ============================================================
12:55:42.0062 1580 Current date / time: 2013/01/30 12:55:42.0062
12:55:42.0062 1580 SystemInfo:
12:55:42.0062 1580
12:55:42.0062 1580 OS Version: 5.1.2600 ServicePack: 2.0
12:55:42.0062 1580 Product type: Workstation
12:55:42.0062 1580 ComputerName: GERFRUEH-9EFD7D
12:55:42.0062 1580 UserName: Gerhard
12:55:42.0062 1580 Windows directory: C:\WINDOWS
12:55:42.0062 1580 System windows directory: C:\WINDOWS
12:55:42.0062 1580 Processor architecture: Intel x86
12:55:42.0062 1580 Number of processors: 2
12:55:42.0062 1580 Page size: 0x1000
12:55:42.0062 1580 Boot type: Safe boot
12:55:42.0062 1580 ============================================================
12:55:43.0421 1580 Drive \Device\Harddisk0\DR0 - Size: 0x4A85C4DE00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:55:43.0421 1580 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:55:43.0421 1580 Drive \Device\Harddisk2\DR4 - Size: 0x75C000000 (29.44 Gb), SectorSize: 0x200, Cylinders: 0xF02, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:55:43.0421 1580 ============================================================
12:55:43.0421 1580 \Device\Harddisk0\DR0:
12:55:43.0421 1580 MBR partitions:
12:55:43.0421 1580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
12:55:43.0421 1580 \Device\Harddisk1\DR1:
12:55:43.0421 1580 MBR partitions:
12:55:43.0421 1580 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
12:55:43.0421 1580 \Device\Harddisk2\DR4:
12:55:43.0421 1580 MBR partitions:
12:55:43.0421 1580 ============================================================
12:55:43.0453 1580 C: <-> \Device\Harddisk0\DR0\Partition1
12:55:43.0484 1580 D: <-> \Device\Harddisk1\DR1\Partition1
12:55:43.0500 1580 ============================================================
12:55:43.0500 1580 Initialize success
12:55:43.0500 1580 ============================================================
12:55:55.0984 1596 ============================================================
12:55:55.0984 1596 Scan started
12:55:55.0984 1596 Mode: Manual; SigCheck; TDLFS;
12:55:55.0984 1596 ============================================================
12:55:56.0750 1596 ================ Scan system memory ========================
12:55:56.0750 1596 System memory - ok
12:55:56.0750 1596 ================ Scan services =============================
12:55:57.0046 1596 Abiosdsk - ok
12:55:57.0046 1596 abp480n5 - ok
12:55:57.0234 1596 [ 0059FF74927A27395C5E190F9AA392DF ] acedrv10 C:\WINDOWS\system32\drivers\acedrv10.sys
12:55:57.0546 1596 acedrv10 - ok
12:55:57.0625 1596 [ 6625A32AD17A3FA6C7F405AEAC945AA7 ] acehlp10 C:\WINDOWS\system32\drivers\acehlp10.sys
12:55:57.0640 1596 acehlp10 - ok
12:55:57.0750 1596 [ 94B4741D2CF9ED38140B831293D1601A ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:55:57.0843 1596 ACPI - ok
12:55:57.0875 1596 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
12:55:57.0937 1596 ACPIEC - ok
12:55:58.0031 1596 [ 3A43C4CA0A1C451EF72CAACFF3323ACA ] AcrSch2Svc C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
12:55:58.0093 1596 AcrSch2Svc ( UnsignedFile.Multi.Generic ) - warning
12:55:58.0093 1596 AcrSch2Svc - detected UnsignedFile.Multi.Generic (1)
12:55:58.0140 1596 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
12:55:58.0187 1596 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
12:55:58.0187 1596 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
12:55:58.0328 1596 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:55:58.0406 1596 AdobeFlashPlayerUpdateSvc - ok
12:55:58.0406 1596 adpu160m - ok
12:55:58.0515 1596 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec C:\WINDOWS\system32\drivers\aec.sys
12:55:58.0609 1596 aec - ok
12:55:58.0671 1596 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
12:55:58.0734 1596 AFD - ok
12:55:58.0734 1596 Aha154x - ok
12:55:58.0750 1596 aic78u2 - ok
12:55:58.0765 1596 aic78xx - ok
12:55:58.0796 1596 [ 1AAB6C5F8376357CB9B16C38C42C4076 ] Alerter C:\WINDOWS\system32\alrsvc.dll
12:55:58.0875 1596 Alerter - ok
12:55:58.0906 1596 [ 6596DD260FFDE1BDC994C1DF236307BB ] ALG C:\WINDOWS\System32\alg.exe
12:55:58.0953 1596 ALG - ok
12:55:58.0953 1596 AliIde - ok
12:55:59.0437 1596 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
12:56:00.0250 1596 Ambfilt - ok
12:56:00.0265 1596 amsint - ok
12:56:00.0328 1596 [ 8D3A55F7B7BE6B374479E5195F477226 ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
12:56:00.0343 1596 AnyDVD - ok
12:56:00.0437 1596 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:56:00.0468 1596 Apple Mobile Device - ok
12:56:00.0562 1596 [ BECD5328E7869807D6557BE4FE60C72F ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
12:56:00.0640 1596 AppMgmt - ok
12:56:00.0703 1596 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:56:00.0750 1596 Arp1394 - ok
12:56:00.0750 1596 asc - ok
12:56:00.0765 1596 asc3350p - ok
12:56:00.0781 1596 asc3550 - ok
12:56:00.0953 1596 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:56:00.0984 1596 aspnet_state - ok
12:56:01.0000 1596 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:56:01.0062 1596 AsyncMac - ok
12:56:01.0125 1596 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
12:56:01.0187 1596 atapi - ok
12:56:01.0187 1596 Atdisk - ok
12:56:01.0375 1596 [ 4ADE3F07DE5F5376E6030E16B945A5EF ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
12:56:01.0906 1596 Ati HotKey Poller - ok
12:56:03.0328 1596 [ 3FFF73A29663EDA8EC7169A7CFDE29F4 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:56:06.0046 1596 ati2mtag - ok
12:56:06.0109 1596 [ 591A9EABB5EF5168E435C2F18B05DD76 ] AtiHdmiService C:\WINDOWS\system32\drivers\AtiHdmi.sys
12:56:06.0140 1596 AtiHdmiService - ok
12:56:06.0171 1596 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:56:06.0234 1596 Atmarpc - ok
12:56:06.0281 1596 [ E98B8250398F6637B335A76BA8DFB602 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
12:56:06.0343 1596 AudioSrv - ok
12:56:06.0375 1596 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
12:56:06.0421 1596 audstub - ok
12:56:06.0437 1596 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:56:06.0500 1596 Beep - ok
12:56:06.0656 1596 [ 3A5E54A9AB96EF2D273B58136FB58EFE ] BITS C:\WINDOWS\system32\qmgr.dll
12:56:06.0953 1596 BITS - ok
12:56:07.0109 1596 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Programme\Bonjour\mDNSResponder.exe
12:56:07.0281 1596 Bonjour Service - ok
12:56:07.0359 1596 [ D8653DCD80CF2EBB333FC4FCC43A7DEF ] Browser C:\WINDOWS\System32\browser.dll
12:56:07.0453 1596 Browser - ok
12:56:07.0484 1596 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
12:56:07.0546 1596 cbidf2k - ok
12:56:07.0578 1596 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:56:07.0640 1596 CCDECODE - ok
12:56:07.0640 1596 cd20xrnt - ok
12:56:07.0687 1596 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
12:56:07.0734 1596 Cdaudio - ok
12:56:07.0781 1596 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
12:56:07.0843 1596 Cdfs - ok
12:56:07.0875 1596 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:56:07.0921 1596 Cdrom - ok
12:56:07.0968 1596 [ 67B20DA4727F54AEA29FDDAD810C898D ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys
12:56:07.0984 1596 cfwids - ok
12:56:07.0984 1596 Changer - ok
12:56:08.0031 1596 [ 234D52C63C67A8CF4AF9BECCE43BFB4A ] CiSvc C:\WINDOWS\system32\cisvc.exe
12:56:08.0093 1596 CiSvc - ok
12:56:08.0125 1596 [ 0461868578D29DC18FB1C79933C5158A ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
12:56:08.0171 1596 ClipSrv - ok
12:56:08.0281 1596 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:56:08.0453 1596 clr_optimization_v2.0.50727_32 - ok
12:56:08.0515 1596 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:56:08.0687 1596 clr_optimization_v4.0.30319_32 - ok
12:56:08.0687 1596 CmdIde - ok
12:56:08.0703 1596 COMSysApp - ok
12:56:08.0734 1596 Cpqarray - ok
12:56:08.0796 1596 [ 1A5F9DB98DF7955B4C7CBDBF2C638238 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
12:56:08.0859 1596 CryptSvc - ok
12:56:08.0875 1596 dac2w2k - ok
12:56:08.0875 1596 dac960nt - ok
12:56:09.0031 1596 [ 9F28FF58D6D67B123272869D89D14004 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:56:09.0234 1596 DcomLaunch - ok
12:56:09.0296 1596 [ 69F986B2688BA95A0D9362B0E233D5FF ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
12:56:09.0375 1596 Dhcp - ok
12:56:09.0437 1596 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
12:56:09.0484 1596 Disk - ok
12:56:09.0500 1596 dmadmin - ok
12:56:09.0781 1596 [ 5789B83BA87FC84C3568CF86CACEF8CE ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
12:56:10.0156 1596 dmboot - ok
12:56:10.0218 1596 [ 084EB0A50A4F7B4705C8A57F234E5291 ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
12:56:10.0296 1596 dmio - ok
12:56:10.0328 1596 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
12:56:10.0375 1596 dmload - ok
12:56:10.0406 1596 [ FA2D9D1A9F6B5A88D01E1685CE2378BA ] dmserver C:\WINDOWS\System32\dmserver.dll
12:56:10.0468 1596 dmserver - ok
12:56:10.0515 1596 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
12:56:10.0578 1596 DMusic - ok
12:56:10.0609 1596 [ D1F5B71BBAEEE07B78980DBD878C0BC7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:56:10.0671 1596 Dnscache - ok
12:56:10.0734 1596 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
12:56:10.0781 1596 Dot3svc ( UnsignedFile.Multi.Generic ) - warning
12:56:10.0781 1596 Dot3svc - detected UnsignedFile.Multi.Generic (1)
12:56:10.0781 1596 dpti2o - ok
12:56:10.0796 1596 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:56:10.0859 1596 drmkaud - ok
12:56:10.0890 1596 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
12:56:10.0906 1596 EapHost ( UnsignedFile.Multi.Generic ) - warning
12:56:10.0906 1596 EapHost - detected UnsignedFile.Multi.Generic (1)
12:56:10.0953 1596 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
12:56:10.0968 1596 ElbyCDIO - ok
12:56:11.0000 1596 [ 877A4512CC9074D6954776AF47021766 ] ERSvc C:\WINDOWS\System32\ersvc.dll
12:56:11.0062 1596 ERSvc - ok
12:56:11.0109 1596 [ EDB6B81761BD60F32F740BBC40AFB676 ] Eventlog C:\WINDOWS\system32\services.exe
12:56:11.0187 1596 Eventlog - ok
12:56:11.0265 1596 [ 4E1A8645EE77CB9454FFE53C59620A25 ] EventSystem C:\WINDOWS\system32\es.dll
12:56:11.0375 1596 EventSystem - ok
12:56:11.0421 1596 Fabs - ok
12:56:11.0531 1596 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
12:56:11.0609 1596 Fastfat - ok
12:56:11.0671 1596 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:56:11.0765 1596 FastUserSwitchingCompatibility - ok
12:56:11.0796 1596 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
12:56:11.0843 1596 Fdc - ok
12:56:11.0890 1596 [ 9E9AF89F9B14AA6249065C309CE73BD8 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
12:56:11.0937 1596 Fips - ok
12:56:12.0625 1596 [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Programme\Gemeinsame Dateien\MAGIX Services\Database\bin\fbserver.exe
12:56:14.0109 1596 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
12:56:14.0109 1596 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
12:56:14.0140 1596 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:56:14.0203 1596 Flpydisk - ok
12:56:14.0281 1596 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
12:56:14.0359 1596 FltMgr - ok
12:56:14.0437 1596 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:56:14.0453 1596 FontCache3.0.0.0 - ok
12:56:14.0468 1596 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:56:14.0531 1596 Fs_Rec - ok
12:56:14.0578 1596 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:56:14.0656 1596 Ftdisk - ok
12:56:14.0765 1596 [ DF91846BC81AB3B1FDFD3CDA06F5ABF2 ] G200 C:\WINDOWS\system32\DRIVERS\G200m.sys
12:56:14.0875 1596 G200 - ok
12:56:14.0906 1596 [ 5C230948DD6652228F88CA7AE6CB276C ] gdrv C:\WINDOWS\gdrv.sys
12:56:14.0937 1596 gdrv - ok
12:56:14.0968 1596 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:56:14.0968 1596 GEARAspiWDM - ok
12:56:15.0015 1596 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:56:15.0078 1596 Gpc - ok
12:56:15.0156 1596 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Programme\Google\Update\GoogleUpdate.exe
12:56:15.0187 1596 gupdate - ok
12:56:15.0234 1596 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Programme\Google\Update\GoogleUpdate.exe
12:56:15.0234 1596 gupdatem - ok
12:56:15.0296 1596 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
12:56:15.0343 1596 gusvc - ok
12:56:15.0421 1596 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:56:15.0453 1596 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
12:56:15.0453 1596 HDAudBus - detected UnsignedFile.Multi.Generic (1)
12:56:15.0562 1596 [ BA85BCF1A2BCF927C3600574173403E0 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:56:15.0640 1596 helpsvc - ok
12:56:15.0671 1596 [ B647CA198B9C73056ABFB0A9D8F4916D ] HidServ C:\WINDOWS\System32\hidserv.dll
12:56:15.0734 1596 HidServ - ok
12:56:15.0765 1596 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:56:15.0828 1596 HidUsb - ok
12:56:15.0906 1596 [ 8F72C4916A288485812745DC5AF873FC ] HipShieldK C:\WINDOWS\system32\drivers\HipShieldK.sys
12:56:15.0937 1596 HipShieldK - ok
12:56:15.0984 1596 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
12:56:16.0000 1596 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
12:56:16.0000 1596 hkmsvc - detected UnsignedFile.Multi.Generic (1)
12:56:16.0156 1596 [ 31FB9D7453C424D14A6C3927483E5E60 ] HomeNetSvc C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
12:56:16.0203 1596 HomeNetSvc - ok
12:56:16.0218 1596 hpn - ok
12:56:16.0250 1596 [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32 C:\WINDOWS\system32\Drivers\ANDROIDUSB.sys
12:56:16.0453 1596 HTCAND32 - ok
12:56:16.0484 1596 [ 04E3B3554076B8192A668EFE88A682A1 ] htcnprot C:\WINDOWS\system32\DRIVERS\htcnprot.sys
12:56:16.0531 1596 htcnprot - ok
12:56:16.0671 1596 [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
12:56:16.0781 1596 HTTP - ok
12:56:16.0812 1596 [ 9EC7E866BBDBF3ECC0E67F4E0A838EB2 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
12:56:16.0906 1596 HTTPFilter - ok
12:56:16.0906 1596 i2omgmt - ok
12:56:16.0921 1596 i2omp - ok
12:56:16.0984 1596 [ 7C575018D0413440D75432A78B88C899 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:56:17.0046 1596 i8042prt - ok
12:56:17.0328 1596 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:56:17.0796 1596 idsvc - ok
12:56:17.0812 1596 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
12:56:17.0875 1596 Imapi - ok
12:56:17.0937 1596 [ 57D7267A9ED91ECAF4336B08C9628FCA ] ImapiService C:\WINDOWS\system32\imapi.exe
12:56:18.0031 1596 ImapiService - ok
12:56:18.0046 1596 ini910u - ok
12:56:19.0687 1596 [ 4517FD80B6D734D99AC4B1578443D1D9 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
12:56:22.0750 1596 IntcAzAudAddService - ok
12:56:22.0765 1596 IntelIde - ok
12:56:22.0796 1596 [ C1C2CC1DA79C5EE10457EF0A3B8568C7 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:56:22.0843 1596 intelppm - ok
12:56:22.0890 1596 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
12:56:22.0937 1596 Ip6Fw - ok
12:56:22.0984 1596 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:56:23.0031 1596 IpFilterDriver - ok
12:56:23.0046 1596 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:56:23.0109 1596 IpInIp - ok
12:56:23.0187 1596 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:56:23.0250 1596 IpNat - ok
12:56:23.0421 1596 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Programme\iPod\bin\iPodService.exe
12:56:23.0656 1596 iPod Service - ok
12:56:23.0718 1596 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:56:23.0765 1596 IPSec - ok
12:56:23.0812 1596 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
12:56:23.0843 1596 IRENUM - ok
12:56:23.0890 1596 [ CE9B7AFDF0A3D7DD8D1487262316B959 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:56:23.0937 1596 isapnp - ok
12:56:24.0093 1596 [ 7FBFEEE245821925129C9F86470BF33C ] JavaQuickStarterService C:\Programme\Java\jre7\bin\jqs.exe
12:56:24.0140 1596 JavaQuickStarterService - ok
12:56:24.0171 1596 [ B128FC0A5CD83F669D5DE4B58F77C7D6 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:56:24.0234 1596 Kbdclass - ok
12:56:24.0250 1596 [ 7EC877AA899323B92874FE62C7DDCDE7 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:56:24.0312 1596 kbdhid - ok
12:56:24.0375 1596 [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
12:56:24.0468 1596 kmixer - ok
12:56:24.0546 1596 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
12:56:24.0609 1596 KSecDD - ok
12:56:24.0656 1596 [ 0C6E346CDE730CF1356DD69AD6E9BC42 ] L8042Kbd C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
12:56:24.0656 1596 L8042Kbd - ok
12:56:24.0687 1596 [ 8A5993705ADD14352C9A279FA8338334 ] L8042mou C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
12:56:24.0703 1596 L8042mou - ok
12:56:24.0765 1596 [ F8170AA51CD202BC062B8A0983F361B7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
12:56:24.0843 1596 lanmanserver - ok
12:56:24.0890 1596 [ 36D74668F5448D55887FA3958488DC06 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:56:25.0015 1596 lanmanworkstation - ok
12:56:25.0031 1596 lbrtfdc - ok
12:56:25.0078 1596 [ 86F4C6BB7E50E178DF08E747EC5C18C3 ] libusb0 C:\WINDOWS\system32\DRIVERS\libusb0.sys
12:56:25.0078 1596 libusb0 - ok
12:56:25.0125 1596 [ 4C25FADD7FE1D5BD779B20D3D0EB8D7C ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
12:56:25.0187 1596 LmHosts - ok
12:56:25.0218 1596 [ 9837E55673818ECD8FEBB47F7F77521A ] LMouKE C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
12:56:25.0234 1596 LMouKE - ok
12:56:25.0265 1596 [ 4A5FFDF0FE830C448830BD4B02B02B4B ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys
12:56:25.0281 1596 mbamchameleon - ok
12:56:25.0375 1596 [ ECAB006AC6136F1307E140B633CDB8C2 ] McAfee SiteAdvisor Service C:\Programme\Gemeinsame Dateien\Mcafee\McSvcHost\McSvHost.exe
12:56:25.0437 1596 McAfee SiteAdvisor Service - ok
12:56:25.0500 1596 [ 31FB9D7453C424D14A6C3927483E5E60 ] McMPFSvc C:\Programme\Gemeinsame Dateien\Mcafee\Platform\McSvcHost\McSvHost.exe
12:56:25.0515 1596 McMPFSvc - ok
12:56:25.0562 1596 [ 31FB9D7453C424D14A6C3927483E5E60 ] mcpltsvc C:\Programme\Gemeinsame Dateien\McAfee\Platform\McSvcHost\McSvHost.exe
12:56:25.0562 1596 mcpltsvc - ok
12:56:25.0625 1596 [ 31FB9D7453C424D14A6C3927483E5E60 ] McProxy C:\Programme\Gemeinsame Dateien\McAfee\Platform\McSvcHost\McSvHost.exe
12:56:25.0625 1596 McProxy - ok
12:56:25.0656 1596 [ E5215AB942C5AC5F7EB0E54871D7A27C ] Messenger C:\WINDOWS\System32\msgsvc.dll
12:56:25.0718 1596 Messenger - ok
12:56:25.0781 1596 [ BA3004F4C0A0CD19DB9C2C0AB3A84EFE ] mfeapfk C:\WINDOWS\system32\drivers\mfeapfk.sys
12:56:25.0796 1596 mfeapfk - ok
12:56:25.0890 1596 [ 39C20B7D9AC19BFE616CA09DD3A240AF ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
12:56:25.0937 1596 mfeavfk - ok
12:56:26.0000 1596 [ E3470DECDA0A4015A0CA00ED645F2EBE ] mfebopk C:\WINDOWS\system32\drivers\mfebopk.sys
12:56:26.0015 1596 mfebopk - ok
12:56:26.0203 1596 [ A687B3EEED3E8B305AC247DEC61EE362 ] mfecore C:\Programme\Gemeinsame Dateien\McAfee\AMCore\mcshield.exe
12:56:26.0531 1596 mfecore - ok
12:56:26.0609 1596 [ 4E13EA496E202BCB4FCC342D96FAF83A ] mfefire C:\Programme\Gemeinsame Dateien\McAfee\SystemCore\\mfefire.exe
12:56:26.0656 1596 mfefire - ok
12:56:26.0750 1596 [ C8AC8147E02ED8795E1FD946165BACCF ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys
12:56:26.0906 1596 mfefirek - ok
12:56:27.0062 1596 [ 7AAF92954D8D2801B17A1163C60ABFE9 ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
12:56:27.0265 1596 mfehidk - ok
12:56:27.0343 1596 [ 7401E85D5D4B5B0F6A3098EBEE0639AA ] mfencbdc C:\WINDOWS\system32\DRIVERS\mfencbdc.sys
12:56:27.0406 1596 mfencbdc - ok
12:56:27.0437 1596 [ 439B06E366643B32D549B939780742BE ] mfencrk C:\WINDOWS\system32\DRIVERS\mfencrk.sys
12:56:27.0453 1596 mfencrk - ok
12:56:27.0500 1596 [ 3474B9391903C0AB2E9987CB4DE943D8 ] mfendisk C:\WINDOWS\system32\DRIVERS\mfendisk.sys
12:56:27.0515 1596 mfendisk - ok
12:56:27.0546 1596 [ 3474B9391903C0AB2E9987CB4DE943D8 ] mfendiskmp C:\WINDOWS\system32\DRIVERS\mfendisk.sys
12:56:27.0546 1596 mfendiskmp - ok
12:56:27.0609 1596 [ FCFAB391E3736769FE5865F3ACB3DCCB ] mfetdi2k C:\WINDOWS\system32\drivers\mfetdi2k.sys
12:56:27.0609 1596 mfetdi2k - ok
12:56:27.0671 1596 [ 82B7415D5A8FB24D3F6736400F5E1600 ] mfevtp C:\WINDOWS\system32\mfevtps.exe
12:56:27.0718 1596 mfevtp - ok
12:56:27.0750 1596 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
12:56:27.0812 1596 mnmdd - ok
12:56:27.0859 1596 [ BB2470D20405B272EA47CA5E18F1C58E ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
12:56:27.0921 1596 mnmsrvc - ok
12:56:27.0968 1596 [ 91A3DA4B12F6F1D760463A7F7857F748 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
12:56:28.0046 1596 Modem - ok
12:56:28.0390 1596 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
12:56:29.0062 1596 Monfilt - ok
12:56:29.0093 1596 [ 71E15CA47FD947552054AFB28536268F ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:56:29.0156 1596 Mouclass - ok
12:56:29.0171 1596 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:56:29.0234 1596 mouhid - ok
12:56:29.0281 1596 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
12:56:29.0343 1596 MountMgr - ok
12:56:29.0406 1596 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
12:56:29.0468 1596 MozillaMaintenance - ok
12:56:29.0546 1596 [ 55A9A7E6BB297BF0F5B144029DCB79CC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
12:56:29.0593 1596 MPE - ok
12:56:29.0671 1596 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
12:56:29.0718 1596 MpFilter - ok
12:56:29.0718 1596 mraid35x - ok
12:56:29.0796 1596 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:56:29.0890 1596 MRxDAV - ok
12:56:30.0031 1596 [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:56:30.0250 1596 MRxSmb - ok
12:56:30.0281 1596 [ D059F9C7752EF461476E83180DAA5C62 ] MSDTC C:\WINDOWS\system32\msdtc.exe
12:56:30.0328 1596 MSDTC - ok
12:56:30.0359 1596 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:56:30.0406 1596 Msfs - ok
12:56:30.0421 1596 MSIServer - ok
12:56:30.0437 1596 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:56:30.0484 1596 MSKSSRV - ok
12:56:30.0546 1596 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Programme\Microsoft Security Client\MsMpEng.exe
12:56:30.0562 1596 MsMpSvc - ok
12:56:30.0578 1596 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:56:30.0625 1596 MSPCLOCK - ok
12:56:30.0640 1596 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:56:30.0687 1596 MSPQM - ok
12:56:30.0718 1596 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:56:30.0765 1596 mssmbios - ok
12:56:30.0796 1596 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
12:56:30.0859 1596 MSTEE - ok
12:56:30.0953 1596 [ 18936200FE720845D0099B0F70D51CBB ] MTSBDA C:\WINDOWS\system32\DRIVERS\MtsBda.sys
12:56:31.0015 1596 MTSBDA ( UnsignedFile.Multi.Generic ) - warning
12:56:31.0015 1596 MTSBDA - detected UnsignedFile.Multi.Generic (1)
12:56:31.0046 1596 [ 846E5E4B8F27DE86D19941E323A5608F ] MtsHID C:\WINDOWS\system32\DRIVERS\MtsHid.sys
12:56:31.0062 1596 MtsHID ( UnsignedFile.Multi.Generic ) - warning
12:56:31.0062 1596 MtsHID - detected UnsignedFile.Multi.Generic (1)
12:56:31.0125 1596 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
12:56:31.0203 1596 Mup - ok
12:56:31.0234 1596 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:56:31.0296 1596 NABTSFEC - ok
12:56:31.0390 1596 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
12:56:31.0484 1596 napagent ( UnsignedFile.Multi.Generic ) - warning
12:56:31.0484 1596 napagent - detected UnsignedFile.Multi.Generic (1)
12:56:31.0625 1596 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
12:56:31.0703 1596 NDIS - ok
12:56:31.0734 1596 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:56:31.0781 1596 NdisIP - ok
12:56:31.0812 1596 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:56:31.0859 1596 NdisTapi - ok
12:56:31.0890 1596 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:56:31.0953 1596 Ndisuio - ok
12:56:32.0000 1596 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:56:32.0062 1596 NdisWan - ok
12:56:32.0109 1596 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:56:32.0156 1596 NDProxy - ok
12:56:32.0187 1596 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:56:32.0234 1596 NetBIOS - ok
12:56:32.0328 1596 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:56:32.0390 1596 NetBT - ok
12:56:32.0468 1596 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDE C:\WINDOWS\system32\netdde.exe
12:56:32.0562 1596 NetDDE - ok
12:56:32.0593 1596 [ F4EFF57254F565F39B6029150414A0D5 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
12:56:32.0640 1596 NetDDEdsdm - ok
12:56:32.0671 1596 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] Netlogon C:\WINDOWS\system32\lsass.exe
12:56:32.0718 1596 Netlogon - ok
12:56:32.0796 1596 [ CDF4DA6B518105343FE9E8AFBBF8FBF4 ] Netman C:\WINDOWS\System32\netman.dll
12:56:32.0890 1596 Netman - ok
12:56:32.0953 1596 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:56:33.0031 1596 NetTcpPortSharing - ok
12:56:33.0062 1596 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:56:33.0125 1596 NIC1394 - ok
12:56:33.0234 1596 [ B36E08F680BAE4DFC5C24D00A2DFC9E7 ] Nla C:\WINDOWS\System32\mswsock.dll
12:56:33.0343 1596 Nla - ok
12:56:33.0359 1596 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:56:33.0406 1596 Npfs - ok
12:56:33.0671 1596 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:56:33.0921 1596 Ntfs - ok
12:56:33.0937 1596 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
12:56:33.0984 1596 NtLmSsp - ok
12:56:34.0109 1596 [ 428AA946A8D9F32DBB4260C8E6E13377 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
12:56:34.0343 1596 NtmsSvc - ok
12:56:34.0359 1596 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
12:56:34.0406 1596 Null - ok
12:56:34.0484 1596 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:56:34.0546 1596 NwlnkFlt - ok
12:56:34.0562 1596 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:56:34.0609 1596 NwlnkFwd - ok
12:56:34.0671 1596 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:56:34.0718 1596 ohci1394 - ok
12:56:34.0812 1596 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
12:56:34.0859 1596 ose - ok
12:56:36.0078 1596 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:56:38.0390 1596 osppsvc - ok
12:56:38.0468 1596 [ B2F17A2EDB5450E61973A037F63A595B ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
12:56:38.0531 1596 Parport - ok
12:56:38.0546 1596 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
12:56:38.0593 1596 PartMgr - ok
12:56:38.0625 1596 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
12:56:38.0671 1596 ParVdm - ok
12:56:38.0765 1596 [ 39B9DCD7040654C2E57D7396736C718E ] PassThru Service C:\Programme\HTC\Internet Pass-Through\PassThruSvr.exe
12:56:38.0796 1596 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
12:56:38.0796 1596 PassThru Service - detected UnsignedFile.Multi.Generic (1)
12:56:38.0843 1596 [ 6FB463E5B243FBD6F3D3C83F914D94FB ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
12:56:38.0906 1596 PCI - ok
12:56:38.0906 1596 PCIDump - ok
12:56:38.0921 1596 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
12:56:38.0984 1596 PCIIde - ok
12:56:39.0062 1596 [ E2363F4C1DAFF89ABEE5F593E13D8A05 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
12:56:39.0125 1596 Pcmcia - ok
12:56:39.0125 1596 PDCOMP - ok
12:56:39.0140 1596 PDFRAME - ok
12:56:39.0156 1596 PDRELI - ok
12:56:39.0171 1596 PDRFRAME - ok
12:56:39.0171 1596 perc2 - ok
12:56:39.0187 1596 perc2hib - ok
12:56:39.0265 1596 [ EDB6B81761BD60F32F740BBC40AFB676 ] PlugPlay C:\WINDOWS\system32\services.exe
12:56:39.0328 1596 PlugPlay - ok
12:56:39.0343 1596 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
12:56:39.0390 1596 PolicyAgent - ok
12:56:39.0421 1596 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:56:39.0500 1596 PptpMiniport - ok
12:56:39.0531 1596 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:56:39.0578 1596 ProtectedStorage - ok
12:56:39.0625 1596 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
12:56:39.0687 1596 PSched - ok
12:56:39.0703 1596 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:56:39.0765 1596 Ptilink - ok
12:56:39.0796 1596 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
12:56:39.0812 1596 PxHelp20 - ok
12:56:39.0828 1596 ql1080 - ok
12:56:39.0828 1596 Ql10wnt - ok
12:56:39.0843 1596 ql12160 - ok
12:56:39.0859 1596 ql1240 - ok
12:56:39.0859 1596 ql1280 - ok
12:56:39.0906 1596 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:56:39.0953 1596 RasAcd - ok
12:56:40.0015 1596 [ E3C6E87C1F84584A773D7C3DD205DBFF ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:56:40.0078 1596 RasAuto - ok
12:56:40.0109 1596 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:56:40.0156 1596 Rasl2tp - ok
12:56:40.0234 1596 [ A5D2D745A2AEFA327DCA6DA317B5FD70 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:56:40.0328 1596 RasMan - ok
12:56:40.0359 1596 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:56:40.0406 1596 RasPppoe - ok
12:56:40.0421 1596 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
12:56:40.0468 1596 Raspti - ok
12:56:40.0578 1596 [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:56:40.0656 1596 Rdbss - ok
12:56:40.0671 1596 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:56:40.0718 1596 RDPCDD - ok
12:56:40.0796 1596 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:56:40.0875 1596 rdpdr - ok
12:56:40.0953 1596 [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
12:56:41.0031 1596 RDPWD - ok
12:56:41.0109 1596 [ AEC159942DF64A9890072D7BB1797762 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
12:56:41.0218 1596 RDSessMgr - ok
12:56:41.0250 1596 [ AA56702E230860565CB8D43680F57F33 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
12:56:41.0312 1596 redbook - ok
12:56:41.0343 1596 [ EBA80CDF25E02084857957E820004934 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:56:41.0406 1596 RemoteAccess - ok
12:56:41.0453 1596 [ AE81CF7D7CFA79CD03E8FB99788A7E09 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:56:41.0531 1596 RemoteRegistry - ok
12:56:41.0578 1596 [ DA23F9F3F1B1871120F980A6879581AC ] RpcLocator C:\WINDOWS\system32\locator.exe
12:56:41.0656 1596 RpcLocator - ok
12:56:41.0781 1596 [ 9F28FF58D6D67B123272869D89D14004 ] RpcSs C:\WINDOWS\system32\rpcss.dll
12:56:41.0921 1596 RpcSs - ok
12:56:41.0984 1596 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
12:56:42.0078 1596 RSVP - ok
12:56:42.0171 1596 [ A492CEE016B50FBA6A127589A525BF96 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
12:56:42.0234 1596 RTLE8023xp - ok
12:56:42.0265 1596 [ 183805EB05BCA5A1E4AAAED4D2BE3690 ] SamSs C:\WINDOWS\system32\lsass.exe
12:56:42.0312 1596 SamSs - ok
12:56:42.0390 1596 [ B4CF7B42DE6CFA6FDE7D6AF4DAA55F57 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
12:56:42.0468 1596 SCardSvr - ok
12:56:42.0593 1596 [ D5E73842F38E24457C63FEF8CEFFBE19 ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:56:42.0703 1596 Schedule - ok
12:56:42.0734 1596 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:56:42.0765 1596 Secdrv - ok
12:56:42.0796 1596 [ FED544B43903FB801B106F062110358A ] seclogon C:\WINDOWS\System32\seclogon.dll
12:56:42.0859 1596 seclogon - ok
12:56:42.0875 1596 [ AB74D986C1DD0D0C95B6AD37EC1E9F4F ] SENS C:\WINDOWS\system32\sens.dll
12:56:42.0937 1596 SENS - ok
12:56:42.0968 1596 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
12:56:43.0015 1596 serenum - ok
12:56:43.0062 1596 [ CD5B9995AFCDB466C9EFC048D167E3BE ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
12:56:43.0125 1596 Serial - ok
12:56:43.0171 1596 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
12:56:43.0218 1596 Sfloppy - ok
12:56:43.0359 1596 [ 9245420422E409A25C1410ACB4244060 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:56:43.0593 1596 SharedAccess - ok
12:56:43.0656 1596 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:56:43.0718 1596 ShellHWDetection - ok
12:56:43.0718 1596 Simbad - ok
12:56:43.0750 1596 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:56:43.0812 1596 SLIP - ok
12:56:43.0875 1596 [ C8D4ED84C564A19FD2E7FB688C2C1E24 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
12:56:43.0906 1596 snapman ( UnsignedFile.Multi.Generic ) - warning
12:56:43.0906 1596 snapman - detected UnsignedFile.Multi.Generic (1)
12:56:43.0906 1596 Sparrow - ok
12:56:43.0937 1596 [ 8E186B8F23295D1E42C573B82B80D548 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
12:56:44.0000 1596 splitter - ok
12:56:44.0046 1596 [ 54E7113A4BD696E430919BCAF5C65E06 ] Spooler C:\WINDOWS\system32\spoolsv.exe
12:56:44.0093 1596 Spooler - ok
12:56:44.0156 1596 [ E4200CB2F418D8FC4ACDD7E38C419D6A ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
12:56:44.0187 1596 sr - ok
12:56:44.0265 1596 [ 015F302C4CF961F20C3F98F3A7CA7917 ] srservice C:\WINDOWS\system32\srsvc.dll
12:56:44.0328 1596 srservice - ok
12:56:44.0453 1596 [ 20B7E396720353E4117D64D9DCB926CA ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:56:44.0703 1596 Srv - ok
12:56:44.0750 1596 [ 6FA03B462B2FFFE2627171B7FE73EE29 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:56:44.0796 1596 SSDPSRV - ok
12:56:44.0921 1596 [ 7E751068ADA60FC77638622E86A7CD9E ] stisvc C:\WINDOWS\system32\wiaservc.dll
12:56:45.0125 1596 stisvc - ok
12:56:45.0140 1596 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:56:45.0203 1596 streamip - ok
12:56:45.0218 1596 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
12:56:45.0265 1596 swenum - ok
12:56:45.0312 1596 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
12:56:45.0375 1596 swmidi - ok
12:56:45.0375 1596 SwPrv - ok
12:56:45.0390 1596 symc810 - ok
12:56:45.0406 1596 symc8xx - ok
12:56:45.0421 1596 sym_hi - ok
12:56:45.0437 1596 sym_u3 - ok
12:56:45.0484 1596 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
12:56:45.0546 1596 sysaudio - ok
12:56:45.0609 1596 [ 6D0C43DF9D3A7C5A9B4F94772CBD5DDC ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
12:56:45.0687 1596 SysmonLog - ok
12:56:45.0781 1596 [ 4584E2A5FE662AB3E7C32936E1449043 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:56:45.0906 1596 TapiSrv - ok
12:56:46.0031 1596 [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:56:46.0218 1596 Tcpip - ok
12:56:46.0250 1596 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
12:56:46.0296 1596 TDPIPE - ok
12:56:46.0328 1596 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
12:56:46.0375 1596 TDTCP - ok
12:56:46.0390 1596 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
12:56:46.0453 1596 TermDD - ok
12:56:46.0593 1596 [ 1850BC10DE5DCCCEDE063FC2D0F2CEDA ] TermService C:\WINDOWS\System32\termsrv.dll
12:56:46.0718 1596 TermService - ok
12:56:46.0796 1596 [ BAC5F7F0C2B8C1B9832594851E0F9914 ] Themes C:\WINDOWS\System32\shsvcs.dll
12:56:46.0843 1596 Themes - ok
12:56:46.0875 1596 [ B0FE76203C05E85C719DA23FC3FFF4EB ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
12:56:46.0875 1596 tifsfilter ( UnsignedFile.Multi.Generic ) - warning
12:56:46.0875 1596 tifsfilter - detected UnsignedFile.Multi.Generic (1)
12:56:46.0937 1596 [ A549151C0B957E152641F22B3924A083 ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
12:56:47.0000 1596 timounter ( UnsignedFile.Multi.Generic ) - warning
12:56:47.0000 1596 timounter - detected UnsignedFile.Multi.Generic (1)
12:56:47.0046 1596 [ 58708746B8267033E5CF2B29659E7F74 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
12:56:47.0093 1596 TlntSvr - ok
12:56:47.0187 1596 [ 3199A477F0F06EEDE41BD55179F8EB05 ] TomTomHOMEService C:\Programme\TomTom HOME 2\TomTomHOMEService.exe
12:56:47.0218 1596 TomTomHOMEService - ok
12:56:47.0218 1596 TosIde - ok
12:56:47.0281 1596 [ A34E894201D66E380E1FA96FE11B587E ] TrkWks C:\WINDOWS\system32\trkwks.dll
12:56:47.0359 1596 TrkWks - ok
12:56:47.0390 1596 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
12:56:47.0468 1596 Udfs - ok
12:56:47.0484 1596 ultra - ok
12:56:47.0593 1596 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
12:56:47.0687 1596 Update - ok
12:56:47.0765 1596 [ 09D4A2D7C5A8ABEC227D118765FAADDF ] upnphost C:\WINDOWS\System32\upnphost.dll
12:56:47.0843 1596 upnphost - ok
12:56:47.0859 1596 [ A99F867E76CFDAA28EE305B93F70E84F ] UPS C:\WINDOWS\System32\ups.exe
12:56:47.0921 1596 UPS - ok
12:56:47.0953 1596 [ 5C2BDC152BBAB34F36473DEAF7713F22 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
12:56:47.0968 1596 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
12:56:47.0968 1596 USBAAPL - detected UnsignedFile.Multi.Generic (1)
12:56:48.0015 1596 [ 45A0D14B26C35497AD93BCE7E15C9941 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
12:56:48.0062 1596 usbaudio - ok
12:56:48.0078 1596 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:56:48.0140 1596 usbccgp - ok
12:56:48.0171 1596 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:56:48.0218 1596 usbehci - ok
12:56:48.0250 1596 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:56:48.0296 1596 usbhub - ok
12:56:48.0328 1596 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:56:48.0375 1596 usbprint - ok
12:56:48.0390 1596 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:56:48.0453 1596 usbscan - ok
12:56:48.0484 1596 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:56:48.0531 1596 USBSTOR - ok
12:56:48.0546 1596 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:56:48.0593 1596 usbuhci - ok
12:56:48.0625 1596 [ EE37E5C79D6C788711296075B2BC95F4 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
12:56:48.0671 1596 usb_rndisx - ok
12:56:48.0703 1596 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
12:56:48.0750 1596 VgaSave - ok
12:56:48.0750 1596 ViaIde - ok
12:56:48.0796 1596 [ D6888520FF56D72A50437E371CA25FC9 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
12:56:48.0843 1596 VolSnap - ok
12:56:48.0953 1596 [ 6635ECBF0D8090DC3A452D0D072B5D5B ] VSS C:\WINDOWS\System32\vssvc.exe
12:56:49.0062 1596 VSS - ok
12:56:49.0156 1596 [ C6D874CD2A5B83CD11CDEBD28A638584 ] W32Time C:\WINDOWS\system32\w32time.dll
12:56:49.0250 1596 W32Time - ok
12:56:49.0296 1596 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:56:49.0359 1596 Wanarp - ok
12:56:49.0515 1596 [ 4769596D7CC0F5FA447D2BABC239672A ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
12:56:49.0734 1596 Wdf01000 - ok
12:56:49.0750 1596 WDICA - ok
12:56:49.0812 1596 [ 2797F33EBF50466020C430EE4F037933 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
12:56:49.0859 1596 wdmaud - ok
12:56:49.0906 1596 [ 1EB51FEEA9D3208EAE60604F4346C02E ] WebClient C:\WINDOWS\System32\webclnt.dll
12:56:49.0984 1596 WebClient - ok
12:56:50.0109 1596 [ DA2DADB42916E59C6E4BBA593BCCDA73 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:56:50.0187 1596 winmgmt - ok
12:56:50.0250 1596 [ D68CC4EBF7B03FD770D5962295AD814E ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
12:56:50.0312 1596 WmdmPmSN - ok
12:56:50.0546 1596 [ 9CBB06E4438D6A0D52A46E0B44796D37 ] Wmi C:\WINDOWS\System32\advapi32.dll
12:56:50.0890 1596 Wmi - ok
12:56:50.0968 1596 [ 042A78FCD1ADFB0FBA9865D55C6F5CC1 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:56:51.0062 1596 WmiApSrv - ok
12:56:51.0343 1596 [ BF05650BB7DF5E9EBDD25974E22403BB ] WMPNetworkSvc C:\Programme\Windows Media Player\WMPNetwk.exe
12:56:51.0859 1596 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
12:56:51.0859 1596 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
12:56:51.0906 1596 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
12:56:51.0937 1596 WpdUsb ( UnsignedFile.Multi.Generic ) - warning
12:56:51.0937 1596 WpdUsb - detected UnsignedFile.Multi.Generic (1)
12:56:52.0234 1596 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:56:52.0609 1596 WPFFontCache_v0400 - ok
12:56:52.0656 1596 [ BD3561AAE748150CF51C2CA876449EA7 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
12:56:52.0734 1596 wscsvc - ok
12:56:52.0750 1596 WSearch - ok
12:56:52.0796 1596 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:56:52.0843 1596 WSTCODEC - ok
12:56:52.0875 1596 [ 1EDDD5C0ECF3FA6EDFD8A25B2B4E7DF6 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
12:56:52.0921 1596 wuauserv - ok
12:56:52.0953 1596 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:56:53.0000 1596 WudfPf - ok
12:56:53.0046 1596 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:56:53.0062 1596 WudfRd - ok
12:56:53.0093 1596 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
12:56:53.0140 1596 WudfSvc - ok
12:56:53.0281 1596 [ AE83ADA96575DACF533C2BCB1FC163DC ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
12:56:53.0484 1596 WZCSVC - ok
12:56:53.0546 1596 [ 8302DE1C64618D72346DD0034DBC5D9B ] xmlprov C:\WINDOWS\System32\xmlprov.dll
12:56:53.0640 1596 xmlprov - ok
12:56:53.0671 1596 ================ Scan global ===============================
12:56:53.0703 1596 [ 1B91BAC6996731EE8925F58205DCB016 ] C:\WINDOWS\system32\basesrv.dll
12:56:53.0812 1596 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
12:56:53.0968 1596 [ 6D4006EF6E45030BCA14CBFE8893E9B9 ] C:\WINDOWS\system32\winsrv.dll
12:56:54.0015 1596 [ EDB6B81761BD60F32F740BBC40AFB676 ] C:\WINDOWS\system32\services.exe
12:56:54.0015 1596 [Global] - ok
12:56:54.0015 1596 ================ Scan MBR ==================================
12:56:54.0031 1596 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
12:56:54.0343 1596 \Device\Harddisk0\DR0 - ok
12:56:54.0343 1596 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:56:54.0468 1596 \Device\Harddisk1\DR1 - ok
12:56:54.0468 1596 [ D6A795CF6A07FFBA21E6ACBAE37E21AD ] \Device\Harddisk2\DR4
12:56:54.0703 1596 \Device\Harddisk2\DR4 - ok
12:56:54.0703 1596 ================ Scan VBR ==================================
12:56:54.0718 1596 [ 59CBACFEB229F685BCCFDE5ED8600798 ] \Device\Harddisk0\DR0\Partition1
12:56:54.0718 1596 \Device\Harddisk0\DR0\Partition1 - ok
12:56:54.0734 1596 [ FACA1D6418F0D722BF88298E5024AE73 ] \Device\Harddisk1\DR1\Partition1
12:56:54.0750 1596 \Device\Harddisk1\DR1\Partition1 - ok
12:56:54.0750 1596 ============================================================
12:56:54.0750 1596 Scan finished
12:56:54.0750 1596 ============================================================
12:56:54.0859 1588 Detected object count: 17
12:56:54.0859 1588 Actual detected object count: 17
12:59:05.0718 1588 AcrSch2Svc ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0718 1588 AcrSch2Svc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0718 1588 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0718 1588 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0718 1588 Dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0718 1588 Dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0718 1588 EapHost ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0718 1588 EapHost ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0734 1588 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0734 1588 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0734 1588 HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0734 1588 HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0734 1588 hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0734 1588 hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0750 1588 MTSBDA ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0750 1588 MTSBDA ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0750 1588 MtsHID ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0750 1588 MtsHID ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0750 1588 napagent ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0750 1588 napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0765 1588 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0765 1588 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0765 1588 snapman ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0765 1588 snapman ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0781 1588 tifsfilter ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0781 1588 tifsfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0781 1588 timounter ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0781 1588 timounter ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0781 1588 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0781 1588 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0796 1588 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0796 1588 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:59:05.0796 1588 WpdUsb ( UnsignedFile.Multi.Generic ) - skipped by user
12:59:05.0796 1588 WpdUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
30.01.2013, 14:20
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion adwCleaner - Toolbars und ungewollte Start-/Suchseiten aufspüren Downloade Dir bitte AdwCleaner auf deinen Desktop. Falls der adwCleaner schon mal in der runtergeladen wurde, bitte die alte adwcleaner.exe löschen und neu runterladen!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
30.01.2013, 14:32
| #15 |
| | Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion Hier das Ergebnis: Code:
ATTFilter # AdwCleaner v2.109 - Datei am 30/01/2013 um 14:28:31 erstellt
# Aktualisiert am 26/01/2013 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 2 (32 bits)
# Benutzer : Gerhard - GERFRUEH-9EFD7D
# Bootmodus : Abgesicherter Modus
# Ausgeführt unter : C:\Dokumente und Einstellungen\Gerhard\Desktop\adwcleaner.exe
# Option [Suche]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\Askcom.xml
Datei Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\Conduit.xml
Datei Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\searchplugins\SweetIm.xml
Datei Gefunden : C:\END
Datei Gefunden : C:\Programme\Mozilla Firefox\searchplugins\babylon.xml
Datei Gefunden : C:\user.js
Datei Gefunden : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Babylon
Ordner Gefunden : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SweetIM
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Babylon
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Media Finder
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\Conduit
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\ConduitEngine
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\CT2269050
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\extensions\toolbar@ask.com
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\Smartbar
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\OpenCandy
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\PriceGong
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\AskToolbar
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Babylon
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Conduit
Ordner Gefunden : C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\DVDVideoSoftTB
Ordner Gefunden : C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\DVDVideoSoftTB
Ordner Gefunden : C:\Programme\Ask.com
Ordner Gefunden : C:\Programme\Conduit
Ordner Gefunden : C:\Programme\DVDVideoSoftTB
Ordner Gefunden : C:\Programme\SweetIM
Ordner Gefunden : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Ordner Gefunden : C:\WINDOWS\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
***** [Registrierungsdatenbank] *****
Schlüssel Gefunden : HKCU\Software\APN
Schlüssel Gefunden : HKCU\Software\AppDataLow\HavingFunOnline
Schlüssel Gefunden : HKCU\Software\Ask.com
Schlüssel Gefunden : HKCU\Software\AskToolbar
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\DVDVideoSoftTB
Schlüssel Gefunden : HKCU\Software\MediaFinder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden : HKCU\Software\PriceGong
Schlüssel Gefunden : HKCU\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : HKCU\Toolbar
Schlüssel Gefunden : HKLM\Software\APN
Schlüssel Gefunden : HKLM\Software\AskToolbar
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Conduit.Engine
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DVDVideoSoftTB
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99401241-1D12-4F60-A99E-815A8336D637}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB94258E-9713-421F-9252-8C95457DF5A7}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Schlüssel Gefunden : HKU\S-1-5-21-1390067357-1035525444-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : HKU\S-1-5-21-1390067357-1035525444-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EEE6C35D-6118-11DC-9C72-001320C79847}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
***** [Internet Browser] *****
-\\ Internet Explorer v6.0.2900.2180
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050
[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?babsrc=NT_ss&affID=101067&mntrId=78d03c29000000000000001fd02e3b2d
-\\ Mozilla Firefox v18.0.1 (de)
Datei : C:\Dokumente und Einstellungen\Gerhard\Anwendungsdaten\Mozilla\Firefox\Profiles\low7kq6d.default\prefs.js
Gefunden : user_pref("CT2269050..clientLogIsEnabled", true);
Gefunden : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Gefunden : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Gefunden : user_pref("CT2269050.1000082.isPlayDisplay", "true");
Gefunden : user_pref("CT2269050.1000082.state", "{\"state\":\"stopped\",\"text\":\"Hotmix 108\",\"description\"[...]
Gefunden : user_pref("CT2269050.1000234.TWC_TMP_city", "SANKT POLTEN");
Gefunden : user_pref("CT2269050.1000234.TWC_TMP_country", "AT");
Gefunden : user_pref("CT2269050.1000234.TWC_locId", "AUXX0303");
Gefunden : user_pref("CT2269050.1000234.TWC_location", "Sankt Polten, Austria");
Gefunden : user_pref("CT2269050.1000234.TWC_region", "OT");
Gefunden : user_pref("CT2269050.1000234.TWC_temp_dis", "c");
Gefunden : user_pref("CT2269050.1000234.TWC_wind_dis", "kmh");
Gefunden : user_pref("CT2269050.1000234.weatherData", "{\"icon\":\"30.png\",\"temperature\":\"17°C\",\"temperat[...]
Gefunden : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Gefunden : user_pref("CT2269050.CT2269050", "CT2269050");
Gefunden : user_pref("CT2269050.CurrentServerDate", "27-3-2011");
Gefunden : user_pref("CT2269050.DialogsAlignMode", "LTR");
Gefunden : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.DownloadReferralCookieData", "");
Gefunden : user_pref("CT2269050.EMailNotifierPollDate", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gefunden : user_pref("CT2269050.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Gefunden : user_pref("CT2269050.FirstServerDate", "27-3-2011");
Gefunden : user_pref("CT2269050.FirstTime", true);
Gefunden : user_pref("CT2269050.FirstTimeFF3", true);
Gefunden : user_pref("CT2269050.FixPageNotFoundErrors", true);
Gefunden : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Gefunden : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Gefunden : user_pref("CT2269050.HasUserGlobalKeys", true);
Gefunden : user_pref("CT2269050.Initialize", true);
Gefunden : user_pref("CT2269050.InitializeCommonPrefs", true);
Gefunden : user_pref("CT2269050.InstallationAndCookieDataSentCount", 1);
Gefunden : user_pref("CT2269050.InstalledDate", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.InvalidateCache", false);
Gefunden : user_pref("CT2269050.IsGrouping", false);
Gefunden : user_pref("CT2269050.IsMulticommunity", false);
Gefunden : user_pref("CT2269050.IsOpenThankYouPage", true);
Gefunden : user_pref("CT2269050.IsOpenUninstallPage", true);
Gefunden : user_pref("CT2269050.LanguagePackLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Gefunden : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Gefunden : user_pref("CT2269050.LastLogin_3.3.3.2", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.LatestVersion", "3.2.5.2");
Gefunden : user_pref("CT2269050.Locale", "en");
Gefunden : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Gefunden : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Gefunden : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Gefunden : user_pref("CT2269050.RadioIsPodcast", false);
Gefunden : user_pref("CT2269050.RadioLastCheckTime", "Sun Mar 27 2011 13:31:39 GMT+0200");
Gefunden : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Gefunden : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Gefunden : user_pref("CT2269050.RadioMediaID", "12473383");
Gefunden : user_pref("CT2269050.RadioMediaType", "Media Player");
Gefunden : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Gefunden : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Gefunden : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Gefunden : user_pref("CT2269050.SavedHomepage", "hxxp://www.google.at/");
Gefunden : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Gefunden : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT226[...]
Gefunden : user_pref("CT2269050.SearchInNewTabEnabled", true);
Gefunden : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Gefunden : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Gefunden : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Gefunden : user_pref("CT2269050.ServiceMapLastCheckTime", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.SettingsLastCheckTime", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.SettingsLastUpdate", "1300785496");
Gefunden : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Gefunden : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Gefunden : user_pref("CT2269050.UserID", "UN82542349505496867");
Gefunden : user_pref("CT2269050.ValidationData_Toolbar", 2);
Gefunden : user_pref("CT2269050.WeatherNetwork", "");
Gefunden : user_pref("CT2269050.WeatherPollDate", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.WeatherUnit", "C");
Gefunden : user_pref("CT2269050.addressBarTakeOverEnabledInHidden", "true");
Gefunden : user_pref("CT2269050.alertChannelId", "666138");
Gefunden : user_pref("CT2269050.approveUntrustedApps", true);
Gefunden : user_pref("CT2269050.autoDisableScopes", -1);
Gefunden : user_pref("CT2269050.cb_experience_000", "34");
Gefunden : user_pref("CT2269050.cb_firstuse0100", "1");
Gefunden : user_pref("CT2269050.cbcountry_001", "AT");
Gefunden : user_pref("CT2269050.cbfirsttime", "Sun Sep 16 2012 11:54:20 GMT+0200");
Gefunden : user_pref("CT2269050.defaultSearch", "false");
Gefunden : user_pref("CT2269050.embeddedsData", "[{\"appId\":\"128834881989343895\",\"apiPermissions\":{\"cross[...]
Gefunden : user_pref("CT2269050.enableAlerts", "false");
Gefunden : user_pref("CT2269050.enableSearchFromAddressBar", "true");
Gefunden : user_pref("CT2269050.firstTimeDialogOpened", true);
Gefunden : user_pref("CT2269050.fixPageNotFoundError", "true");
Gefunden : user_pref("CT2269050.fixPageNotFoundErrorInHidden", "true");
Gefunden : user_pref("CT2269050.fixUrls", true);
Gefunden : user_pref("CT2269050.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.[...]
Gefunden : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES", "op[...]
Gefunden : user_pref("CT2269050.installId", "ConduitNSISIntegration");
Gefunden : user_pref("CT2269050.installType", "ConduitNSISIntegration");
Gefunden : user_pref("CT2269050.isAppTrackingManagerOn", true);
Gefunden : user_pref("CT2269050.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gefunden : user_pref("CT2269050.isNewTabEnabled", true);
Gefunden : user_pref("CT2269050.isPerformedSmartBarTransition", "true");
Gefunden : user_pref("CT2269050.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Gefunden : user_pref("CT2269050.myStuffEnabled", true);
Gefunden : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Gefunden : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Gefunden : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Gefunden : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Gefunden : user_pref("CT2269050.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Gefunden : user_pref("CT2269050.openThankYouPage", "false");
Gefunden : user_pref("CT2269050.openUninstallPage", "true");
Gefunden : user_pref("CT2269050.search.searchAppId", "128834881989343895");
Gefunden : user_pref("CT2269050.search.searchCount", "0");
Gefunden : user_pref("CT2269050.searchInNewTabEnabledInHidden", "true");
Gefunden : user_pref("CT2269050.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gefunden : user_pref("CT2269050.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Gefunden : user_pref("CT2269050.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Gefunden : user_pref("CT2269050.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1347789258123");
Gefunden : user_pref("CT2269050.serviceLayer_services_appsMetadata_lastUpdate", "1347789258340");
Gefunden : user_pref("CT2269050.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1347789258219");
Gefunden : user_pref("CT2269050.serviceLayer_services_login_10.10.28.11_lastUpdate", "1348584401433");
Gefunden : user_pref("CT2269050.serviceLayer_services_optimizer_lastUpdate", "1347789258615");
Gefunden : user_pref("CT2269050.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1347789258179");
Gefunden : user_pref("CT2269050.serviceLayer_services_searchAPI_lastUpdate", "1347789258054");
Gefunden : user_pref("CT2269050.serviceLayer_services_serviceMap_lastUpdate", "1348588436304");
Gefunden : user_pref("CT2269050.serviceLayer_services_toolbarContextMenu_lastUpdate", "1347789258280");
Gefunden : user_pref("CT2269050.serviceLayer_services_toolbarSettings_lastUpdate", "1348584400968");
Gefunden : user_pref("CT2269050.serviceLayer_services_translation_lastUpdate", "1348588436371");
Gefunden : user_pref("CT2269050.settingsINI", true);
Gefunden : user_pref("CT2269050.shouldFirstTimeDialog", "false");
Gefunden : user_pref("CT2269050.smartbar.CTID", "CT2269050");
Gefunden : user_pref("CT2269050.smartbar.Uninstall", "0");
Gefunden : user_pref("CT2269050.smartbar.isHidden", true);
Gefunden : user_pref("CT2269050.smartbar.toolbarName", "DVDVideoSoftTB ");
Gefunden : user_pref("CT2269050.startPage", "false");
Gefunden : user_pref("CT2269050.testingCtid", "");
Gefunden : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("CT2269050.toolbarBornServerTime", "27-3-2011");
Gefunden : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("CT2269050.toolbarCurrentServerTime", "25-9-2012");
Gefunden : user_pref("CT2269050.toolbarDisabled", "true");
Gefunden : user_pref("CT2269050.url_history0001", "hxxp://www.google.at/search?q=einfache+innennaht+bei+true+re[...]
Gefunden : user_pref("CT2269050.usagesFlag", 2);
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/AT", "\"0\"")[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/AT", "\"0\"")[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", [...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050",[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2269050/CT2269050[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/equalizer[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/minimize.[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/play.gif"[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/stop.gif"[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/vol.gif",[...]
Gefunden : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"634[...]
Gefunden : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Gefunden : user_pref("CommunityToolbar.EngineOwner", "CT2269050");
Gefunden : user_pref("CommunityToolbar.EngineOwnerGuid", "{872b5b88-9db5-4310-bdd0-ac189557e5f5}");
Gefunden : user_pref("CommunityToolbar.EngineOwnerToolbarId", "dvdvideosofttb");
Gefunden : user_pref("CommunityToolbar.IsEngineShown", false);
Gefunden : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Gefunden : user_pref("CommunityToolbar.OriginalEngineOwner", "CT2269050");
Gefunden : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{872b5b88-9db5-4310-bdd0-ac189557e5f5}");
Gefunden : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "dvdvideosofttb");
Gefunden : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=mcafee[...]
Gefunden : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Gefunden : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Gefunden : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+02[...]
Gefunden : user_pref("CommunityToolbar.alert.alertEnabled", true);
Gefunden : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Gefunden : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Apr 03 2011 16:46:11 GMT+0200");
Gefunden : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Gefunden : user_pref("CommunityToolbar.alert.locale", "en");
Gefunden : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Gefunden : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Apr 04 2011 08:40:08 GMT+0200");
Gefunden : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291048634");
Gefunden : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Gefunden : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Gefunden : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Gefunden : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Gefunden : user_pref("CommunityToolbar.alert.userId", "6d07cf85-1dfb-4614-a2f7-c3bdff503f41");
Gefunden : user_pref("CommunityToolbar.globalUserId", "4c787324-e46d-4bbd-afe2-87d184b00c8f");
Gefunden : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Gefunden : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Gefunden : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Gefunden : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("ConduitEngine.FirstServerDate", "03/27/2011 14");
Gefunden : user_pref("ConduitEngine.FirstTime", true);
Gefunden : user_pref("ConduitEngine.FirstTimeFF3", true);
Gefunden : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Gefunden : user_pref("ConduitEngine.HideEngineAfterRestart", true);
Gefunden : user_pref("ConduitEngine.Initialize", true);
Gefunden : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Gefunden : user_pref("ConduitEngine.InstalledDate", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("ConduitEngine.IsMulticommunity", false);
Gefunden : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Gefunden : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Gefunden : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("ConduitEngine.PublisherContainerWidth", 0);
Gefunden : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Gefunden : user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Mar 27 2011 13:31:33 GMT+0200");
Gefunden : user_pref("ConduitEngine.UserID", "UN44971090005129775");
Gefunden : user_pref("ConduitEngine.engineLocale", "de");
Gefunden : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Mar 27 2011 13:31:34 GMT+0200");
Gefunden : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Mar 27 2011 13:31:35 GMT+0200");
Gefunden : user_pref("ConduitEngine.initDone", true);
Gefunden : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Gefunden : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=mcafee&p=");
Gefunden : user_pref("Smartbar.keywordURLSelectedCTID", "CT2269050");
Gefunden : user_pref("browser.search.defaultengine", "Ask.com");
Gefunden : user_pref("browser.search.defaultenginename", "Ask.com");
Gefunden : user_pref("browser.search.defaultthis.engineName", "DVDVideoSoftTB Customized Web Search");
Gefunden : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&Sea[...]
Gefunden : user_pref("browser.search.order.1", "Ask.com");
Gefunden : user_pref("browser.search.selectedEngine", "Ask.com");
Gefunden : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Gefunden : user_pref("extensions.BabylonToolbar_i.babExt", "");
Gefunden : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101067");
Gefunden : user_pref("extensions.BabylonToolbar_i.hardId", "78d03c29000000000000001fd02e3b2d");
Gefunden : user_pref("extensions.BabylonToolbar_i.id", "78d03c29000000000000001fd02e3b2d");
Gefunden : user_pref("extensions.BabylonToolbar_i.instlDay", "15351");
Gefunden : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Gefunden : user_pref("extensions.BabylonToolbar_i.newTab", false);
Gefunden : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Gefunden : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Gefunden : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Gefunden : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Gefunden : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1719:07:04");
Gefunden : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Gefunden : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.yahoo.com/search?fr=mcafee&p=")[...]
Gefunden : user_pref("keyword.URL", "hxxp://search.sweetim.com/search.asp?src=2&q=");
-\\ Google Chrome v [Version kann nicht ermittelt werden]
Datei : C:\Dokumente und Einstellungen\Gerhard\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [41495 octets] - [30/01/2013 14:28:31]
########## EOF - C:\AdwCleaner[R1].txt - [41556 octets] ##########
|
|
| Themen zu Win XP keine Icons kein Taskmanager und Leiste sowie keine Maustastenfunktion |
| abgesicherten, aktivierung, anhang, aufrufe, aufrufen, bla, desktop, frage, funktion, icons, log, maus, mcafee firewall, modus, plug-in, problem, sache, sachen, schädling, sweetpacks, taskmanager, trojaner, trotz, verschwunden, viren, viren trojaner, vorhanden, win, win xp |
Linear-Darstellung
