| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: appround.net -Problem , nerviges Pop-Up welches wohl nicht ungefährlich ist?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
23.04.2013, 17:27
| #1 |
| |  appround.net -Problem , nerviges Pop-Up welches wohl nicht ungefährlich ist? Hallo. Während des Surfens öffnet sich immer wieder ein Fenster, laut Adresszeile hat es etwas mit appround.net zu tun. Es ist extrem nervig, habe es natürlich versucht zu googlen, bin aber nicht ganz schlau draus geworden. Möchte das Teil gerne loswerden. Habe mit Malwarebytes einen Scan gemacht, hatte vier Funde, die wurden gelöscht aber das Problem besteht weiterhin. Avast findet nichts. Bitte um Hilfe. Seit einigen Tage lässt sich mein Incredimail nicht mehr öffnen, vielleicht habe ich mir das Teil auf der Suche nach einer Lösung dafür eingefangen? Oder vorher, und vielleicht läuft IM deshalb nicht mehr. Aber das ist gerade zweitrangig. was soll ich tun? OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 23.04.2013 18:28:48 - Run 1;,k89666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666,1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Claudia\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,55% Memory free
5,99 Gb Paging File | 4,23 Gb Available in Paging File | 70,60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 288,32 Gb Total Space | 180,40 Gb Free Space | 62,57% Space Free | Partition Type: NTFS
Drive G: | 7,47 Gb Total Space | 4,52 Gb Free Space | 60,42% Space Free | Partition Type: FAT32
Computer Name: CLAUDIA-LAPTOP | User Name: Claudia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* 788888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////+++++++++++++++++++++++++++++++++++++++++++18:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:51 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.201318:52 23.04.2013
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06420033-8F08-4544-B674-8ABE6670E806}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{07B445CB-F6F8-4B48-A2D0-89ADE44E62F7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{09D785AB-36F8-49DC-A6FC-8F6C5BD4C4CF}" = rport=2869 | protocol=6 | dir=out | app=system |
"{14C79F2E-4D83-4A4D-B1CF-9939FB5BE2B7}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{179A1D2C-5ECF-4F28-8D31-3AFD055FD9F3}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{218BE70D-B8E0-4C85-8212-4FFF4CD4EC28}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2BBA7CF1-667F-47B0-95BA-41E156C9714E}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{30169153-94F9-455C-A9DA-B2A559735AD1}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{35189481-4051-4626-802E-87FE51D28EA6}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{388A9AE2-837C-40E1-AFFB-7CB809826967}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3986C511-106E-4152-BC6D-F0698A967078}" = rport=10243 | protocol=6 | dir=out | app=system |
"{3A1939E4-3B87-40B6-9D5A-36F38387D6AD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3ADA1CEC-8C3A-4860-9E07-D4103A2063F3}" = rport=139 | protocol=6 | dir=out | app=system |
"{3B4BF155-2F82-4A26-8927-F2566088AD94}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{462C432A-B17C-464A-A8B6-638F0FD3CD20}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{46DE1D74-5976-4207-8F62-457B37123E9E}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{48E81DA5-A987-4C38-B3FB-87837129BAFB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{50A02291-9080-4FD1-9095-146AF5A28962}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{519E0AD0-529A-4138-B037-6B247B686F43}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{543FD94C-4CA5-4128-B58C-D78D414B7122}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5CE69A95-AB0F-49D6-A9F6-BBC49856A181}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6D43651B-257E-4159-8201-847D0253A10B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{72EF7ADD-EA42-43D3-8099-E1A69B9F544C}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7839EA8B-58DE-414C-8AF9-E29696C6B3ED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7BE0073F-6DF2-453F-8B5A-0503D9EA9F23}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7CCC62DF-E6F4-430F-9EAB-DFB145B6F2AD}" = lport=138 | protocol=17 | dir=in | app=system |
"{7F766542-1DB7-4080-B3C0-2E4FB66AEAD8}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{83CE98DC-B2BC-4893-B7B0-D5FCD8BCB5AB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{87E8F68D-441E-4209-99A8-694B2B76EB45}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8D804EF8-057C-499F-9B04-5C27016660AC}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{9E66AC6A-9C42-440E-905C-5C2DEA5F79D1}" = rport=138 | protocol=17 | dir=out | app=system |
"{A1FFD53F-F024-4793-B91F-17AFB2156787}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A2DE6BCB-6EA0-43E0-A438-40A9BCA21EDA}" = lport=445 | protocol=6 | dir=in | app=system |
"{ABC040CC-7877-4D79-8D72-6A300E2A3D91}" = lport=139 | protocol=6 | dir=in | app=system |
"{BE306E7A-5757-4842-875C-F2085B0AC9C0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C964D3B2-F9D8-4928-913F-C2D5C5ADFA4E}" = rport=445 | protocol=6 | dir=out | app=system |
"{CCFE92A9-8DC2-4B0F-9D74-9624FE24FAC8}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D1355D6B-CF7D-4F8E-9DDB-34BD78A54223}" = lport=137 | protocol=17 | dir=in | app=system |
"{D6167E6C-67AA-4EC9-9933-F09C275536DE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{D7DE8068-B1E3-4807-B622-81A91E995021}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DA5C8687-5794-4FA4-82B1-4C2E7F9FE662}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E655B36A-91AC-40AB-9AB8-E433937E866F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EA04AA24-7CEE-43B9-B13D-451D10BFD2B3}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{ED709238-DE99-4B27-9AE6-043C17FD3AD5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F4154ACB-AFD1-4999-8543-7848F01BE7F7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F5418621-88C1-44C8-8413-0A202AB8B074}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{123797C9-B7B1-4406-B81C-6587192A6A76}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{18797D1A-D037-4259-8ADF-141A719B5F9F}" = protocol=6 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe |
"{1BBEC276-8908-4F59-A26B-80EB3D20295C}" = protocol=17 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe |
"{211CA27F-6AEF-4D70-BC43-1111E34C31F9}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{260A8C52-C375-494C-9291-466620861DA7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{2ED18E50-CB8E-4021-930A-8B1B0EEA34A1}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{45CE6A5C-4EA4-43A0-B7EF-00224228DAB2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5689B991-D77B-4734-8FC1-42A8755BBAA0}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{58BFCAE1-7735-4077-95F9-D6452F9D0BB9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{622DDB66-4E32-4B3F-A1A0-69012788CEE5}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{6C335133-EEF8-412D-BC05-AC99B7A7335F}" = protocol=17 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe |
"{71176B50-E218-42F6-A222-D71555443C8C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{73EE109F-1F63-4583-A9BF-3B50E94203AF}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{791D0A42-59B2-4B7E-9831-F70BBE7B0D90}" = protocol=6 | dir=in | app=c:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe |
"{7EFD4C91-845C-4B7B-BD70-37ED025F643E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{833F6D1E-5BC4-438D-AAA8-1E18F3165B7A}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{87DA4492-C040-4C7C-BC49-CC2EF719C75F}" = protocol=6 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe |
"{9E22922A-FD71-494F-8827-3FE35BA390A5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{9EE9CE57-62AF-4AE7-B200-3AA105EACC29}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{A0A31C37-30EA-4B32-95F0-712190DFC2C9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B2E5CAFB-3B94-4AA0-954C-824A690E1F1D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B4B2C73E-312E-40B9-8070-80EC903F43E8}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{B83A35C0-0E41-4A05-8D35-8ACFDDF1097C}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BD90D2AB-41BE-45C1-95A4-2366CFCE6F25}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{BF0F6E16-6B5F-47AE-9FAB-E71FA06C7A64}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C9E25C86-CFF9-470A-90CF-C52ED19D35C6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CFB37626-B555-4881-B9A8-DC4F0A121107}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D906B76A-739A-4D7B-96C7-ADDB6B41D7E9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E86D3209-8A7F-4699-BF47-3CAAFB23C3E9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{EAD6222E-F2AB-4286-9100-F9B1ACBBB2B9}" = protocol=17 | dir=in | app=c:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe |
"{EE92E7D3-428C-429D-9CD0-CD349D76E3EB}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{F1EC0833-EC96-4D14-9AB8-E9D2B116E4E6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F2DC71BD-4C36-4A7A-8471-84C721855BD6}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F2FE000E-E953-4F99-8551-A2871C968E76}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{F38BC767-1AE7-4BCB-A117-EF8AFD98D653}" = protocol=6 | dir=out | app=system |
"{F679C0D0-D53F-4C4B-941B-9C43E7F55EB8}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{F8EF49E4-D8F2-4865-B4B2-DA4925EE0D7A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{FA10E2DE-692E-4C84-9D22-202E289E9D58}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{0C46328C-B2F8-4AAD-A2CB-5C83403922A8}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"TCP Query User{1F5D19EE-999A-4B22-8F63-D4AA60D72958}C:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe" = protocol=6 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe |
"TCP Query User{2219A2AB-D830-4269-A2D0-321971D11922}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{3884A16C-163D-47C1-9DB6-29BDF34F3FA8}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{4A14FE2B-5A0F-43C4-85EE-CEEEB8911ADF}C:\program files\iremote\iremote.exe" = protocol=6 | dir=in | app=c:\program files\iremote\iremote.exe |
"TCP Query User{590AEF80-E48E-4BA2-918F-190EEF4AA750}C:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe" = protocol=6 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe |
"TCP Query User{68A0C137-777A-4DB2-92E8-A492D4586A35}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{79866594-6910-41D6-BC94-83FE9A45808E}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{7D8D22A3-4271-4DD9-A14E-800A184FA3C7}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"TCP Query User{980BBB1E-8B12-4DD6-8D72-2863E1854758}C:\program files\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files\miranda im\miranda32.exe |
"TCP Query User{A4ADDE9F-07D3-433E-B789-BC44A56D7ED7}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{C2E2EEB8-E122-43A8-A0F9-D49E846B965A}G:\mirandaportable\app\miranda\miranda32.exe" = protocol=6 | dir=in | app=g:\mirandaportable\app\miranda\miranda32.exe |
"TCP Query User{D024A8B6-9065-4D21-86B5-91274F9B6D39}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{D97B2BF6-C442-45CB-8606-1B2E660296DD}C:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{DA7F7E29-C49E-46FC-AFDF-3AA61B3D9A7F}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{00823FF2-5D34-4172-926B-F323711C734A}C:\program files\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files\miranda im\miranda32.exe |
"UDP Query User{0982C19A-196E-4A26-BC75-2470097FA819}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{0CCA717D-AF60-4A8A-962D-243267F4D481}C:\program files\iremote\iremote.exe" = protocol=17 | dir=in | app=c:\program files\iremote\iremote.exe |
"UDP Query User{4AFE42A9-D0F8-4A7E-B165-FD188880EE21}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{54A557BF-6974-4AD5-9549-296EB9DDCA79}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{5813ED5D-3717-4909-A388-CEB6F9DA031B}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{76BFEC47-370C-4A47-B9AD-0ED0B2ECBE3D}C:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\claudia\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{8E53077F-FA78-4C57-9358-F45C9B5F6CBE}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{9970EBD2-6836-4B80-BE8A-D0EDD71331CC}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{AE008AEE-40E2-4031-8950-2B1269FA25E9}G:\mirandaportable\app\miranda\miranda32.exe" = protocol=17 | dir=in | app=g:\mirandaportable\app\miranda\miranda32.exe |
"UDP Query User{CC638F4D-68B6-43FD-BB3B-817536DE2C9D}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"UDP Query User{DA2C47E5-6BD3-4F21-88C0-9D7C7BC015F3}C:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe" = protocol=17 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0002_8541bf1f4a1c673d\fritzbox-usb-fernanschluss.exe |
"UDP Query User{DC037F23-F473-4887-96ED-1C5B7B7EAAD3}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{F053B19B-05C5-4374-A6A7-F4D1D2954DED}C:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe" = protocol=17 | dir=in | app=c:\users\claudia\appdata\local\apps\2.0\9rbh9ppk.8br\g68lqty6.b4t\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe |
"UDP Query User{FE3F4133-F47A-417C-98FF-5F7158939759}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{036D99DD-6C5E-444D-8C18-B034BB6E433D}" = Amazon Cloud Drive
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{0ABBF310-94E4-4AE8-A6BD-10345A3F6439}" = Google Drive
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}" = OpenOffice.org 3.4.1
"{26A24AE4-039D-4CA4-87B4-2F83216039FF}" = Java(TM) 6 Update 39
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{2EA870FA-585F-4187-903D-CB9FFD21E2E0}" = DHTML Editing Component
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{336D0C35-8A85-403a-B9D2-65C292C39087}_is1" = IB Updater 2.0.0.550
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F7A9E82-5A85-4119-A8A5-7D840A0F76DC}" = Photo Notifier and Animation Creator
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5482DCBE-D2D1-47B0-A621-DF8E2B0D174C}" = Windows Live Family Safety
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{75AE8014-1184-4BC0-B279-C879540719EE}" = PhotoMail Maker
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 2.051
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D318C86-AF4C-409F-A6AC-7183FF4CF424}" = Internet-TV für Windows Media Center
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR
"{A23AADDA-3DBF-11E2-A6F2-984BE15F174E}" = Evernote v. 4.6
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B4C40A0E-14C9-1E1F-2AEC-ABF96EA3FB51}" = simfy
"{BCCCA789-8858-8447-AAF8-E45BF87FBB80}" = Jägermeister Radio
"{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}" = Windows Live Family Safety
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C8842F80-0E07-4424-916D-9F6B6A9968E4}" = IncrediMail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.17
"AudibleManager" = AudibleManager
"autolyrics@man-soft.net" = Auto Lyrics
"avast" = avast! Free Antivirus
"conduitEngine" = Conduit Engine
"CutePDF Writer Installation" = CutePDF Writer 2.8
"DDA23392-9C73-4909-A221-BC12C6D2664D" = GmoteServer
"Free WMA MP3 Converter" = Free WMA MP3 Converter
"FreeCommander_is1" = FreeCommander 2009.02
"Image Analyzer" = Image Analyzer
"IncrediMail" = IncrediMail 2.5
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"JaegermeisterRadio" = Jägermeister Radio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300
"ManyCam" = ManyCam 2.6.55 (remove only)
"maxdome - Online Videothek" = maxdome - Online Videothek
"MediaMonkey_is1" = MediaMonkey 3.2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Miranda IM" = Miranda IM 0.8.11
"Mozilla Firefox (3.0.15)" = Mozilla Firefox (3.0.15)
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Photo Notifier and Animation Creator" = Photo Notifier and Animation Creator
"PhotoMail" = PhotoMail Maker
"Revo Uninstaller" = Revo Uninstaller 1.94
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Simfy" = simfy
"SoftwareUpdater" = SoftwareUpdater
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamViewer 7" = TeamViewer 7
"VLC media player" = VLC media player 2.0.0
"WinLiveSuite" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Amazon Kindle" = Amazon Kindle
"Dropbox" = Dropbox
"f018cf21c0452c64" = FRITZ!Box USB-Fernanschluss
"Google Chrome" = Google Chrome
"Kies Air Discovery Service" = Kies Air Discovery Service
"PagePlace" = PagePlace
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16.04.2013 03:29:52 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:31:14 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:31:14 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:33:16 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:33:16 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:35:17 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:35:17 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:37:19 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 16.04.2013 03:37:19 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\IncrediMail\Bin\MFC80U.DLL".
Die
abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 18.04.2013 03:03:29 | Computer Name = Claudia-Laptop | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files\freecommander\DelZip179.dll".
Fehler in Manifest- oder Richtliniendatei "c:\program files\freecommander\DelZip179.dll"
in Zeile 8. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist
ungültig.
Error - 22.04.2013 04:51:40 | Computer Name = Claudia-Laptop | Source = Windows Backup | ID = 4103
Description =
[ Media Center Events ]
Error - 24.01.2010 14:38:47 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 19:38:47 - Fehler beim Herstellen der Internetverbindung. 19:38:47
- Serververbindung konnte nicht hergestellt werden..
Error - 22.03.2010 04:19:16 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 09:19:16 - Fehler beim Herstellen der Internetverbindung. 09:19:16
- Serververbindung konnte nicht hergestellt werden..
Error - 22.03.2010 04:19:52 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 09:19:45 - Fehler beim Herstellen der Internetverbindung. 09:19:45
- Serververbindung konnte nicht hergestellt werden..
Error - 30.03.2010 13:42:15 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 19:42:15 - Fehler beim Herstellen der Internetverbindung. 19:42:15
- Serververbindung konnte nicht hergestellt werden..
Error - 30.03.2010 13:42:49 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 19:42:44 - Fehler beim Herstellen der Internetverbindung. 19:42:44
- Serververbindung konnte nicht hergestellt werden..
Error - 17.01.2012 14:52:20 | Computer Name = Claudia-Laptop | Source = MCUpdate | ID = 0
Description = 19:52:18 - MCESpotlight konnte nicht abgerufen werden (Fehler: Die
Verbindung mit dem Remoteserver kann nicht hergestellt werden.)
[ System Events ]
Error - 23.04.2013 01:04:15 | Computer Name = Claudia-Laptop | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 23.04.2013 01:07:08 | Computer Name = Claudia-Laptop | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error - 23.04.2013 01:07:09 | Computer Name = Claudia-Laptop | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error - 23.04.2013 01:07:10 | Computer Name = Claudia-Laptop | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error - 23.04.2013 01:07:10 | Computer Name = Claudia-Laptop | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error - 23.04.2013 03:25:08 | Computer Name = Claudia-Laptop | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 23.04.2013 03:25:47 | Computer Name = Claudia-Laptop | Source = DCOM | ID = 10010
Description =
Error - 23.04.2013 04:50:15 | Computer Name = Claudia-Laptop | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 23.04.2013 04:50:15 | Computer Name = Claudia-Laptop | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 23.04.2013 11:44:22 | Computer Name = Claudia-Laptop | Source = atikmdag | ID = 43029
Description = Display is not active
< End of report >
|
|
24.04.2013, 07:57
| #2 |
| | appround.net -Problem , nerviges Pop-Up welches wohl nicht ungefährlich ist? OTL Logfile:
__________________Code:
ATTFilter OTL logfile created on: 23.04.2013 18:28:48 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Claudia\Downloads Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,55% Memory free 5,99 Gb Paging File | 4,23 Gb Available in Paging File | 70,60% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 288,32 Gb Total Space | 180,40 Gb Free Space | 62,57% Space Free | Partition Type: NTFS Drive G: | 7,47 Gb Total Space | 4,52 Gb Free Space | 60,42% Space Free | Partition Type: FAT32 Computer Name: CLAUDIA-LAPTOP | User Name: Claudia | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.04.23 18:13:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Claudia\Downloads\OTL.exe PRC - [2013.04.16 09:05:49 | 001,855,880 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe PRC - [2013.04.10 08:56:41 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2013.03.23 03:56:36 | 000,042,784 | ---- | M] (Yontoo LLC) -- C:\Users\Claudia\AppData\Roaming\Yontoo\YontooDesktop.exe PRC - [2013.03.23 03:56:36 | 000,023,552 | ---- | M] (Microsoft) -- C:\Programme\Yontoo\Y2Desktop.Updater.exe PRC - [2013.03.12 09:05:50 | 029,106,336 | ---- | M] (Dropbox, Inc.) -- C:\Users\Claudia\AppData\Roaming\Dropbox\bin\Dropbox.exe PRC - [2013.03.07 16:31:48 | 019,357,112 | ---- | M] (Google) -- C:\Programme\Google\Drive\googledrivesync.exe PRC - [2013.03.07 01:32:44 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Programme\Alwil Software\Avast5\AvastUI.exe PRC - [2013.03.07 01:32:44 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Programme\Alwil Software\Avast5\AvastSvc.exe PRC - [2013.02.18 09:52:54 | 000,031,744 | ---- | M] () -- C:\Programme\SoftwareUpdater\UpdaterService.exe PRC - [2013.02.16 10:47:06 | 000,149,936 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Java\jre6\bin\javaw.exe PRC - [2012.12.24 07:51:45 | 000,322,032 | ---- | M] (AVM Berlin) -- C:\Users\Claudia\AppData\Local\Apps\2.0\9RBH9PPK.8BR\G68LQTY6.B4T\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\fritzbox-usb-fernanschluss.exe PRC - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012.12.03 20:35:00 | 001,044,320 | ---- | M] (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) -- C:\Programme\Evernote\Evernote\EvernoteClipper.exe PRC - [2012.11.23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2012.11.20 16:09:00 | 000,188,760 | ---- | M] () -- C:\Programme\Web Assistant\ExtensionUpdaterService.exe PRC - [2012.11.12 23:36:44 | 000,646,528 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Amazon\Cloud Drive\AmazonCloudDrive.exe PRC - [2012.10.23 19:25:27 | 000,149,488 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Claudia\AppData\Local\Amazon\Cloud Drive\jre\bin\javaw.exe PRC - [2012.08.13 12:08:08 | 010,376,704 | ---- | M] (OpenOffice.org) -- C:\Programme\program\soffice.exe PRC - [2012.08.13 12:08:08 | 010,368,512 | ---- | M] (OpenOffice.org) -- C:\Programme\program\soffice.bin PRC - [2012.07.16 16:31:32 | 007,445,416 | ---- | M] (TeamViewer GmbH) -- C:\Programme\TeamViewer\Version7\TeamViewer.exe PRC - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) -- C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012.07.16 16:22:42 | 000,106,408 | ---- | M] (TeamViewer GmbH) -- C:\Programme\TeamViewer\Version7\tv_w32.exe PRC - [2012.06.08 13:02:10 | 000,021,432 | ---- | M] () -- C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe PRC - [2012.06.08 13:02:02 | 003,521,464 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Programme\Samsung\Kies\KiesTrayAgent.exe PRC - [2011.03.28 21:31:16 | 000,193,920 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE PRC - [2011.03.28 21:31:14 | 001,713,536 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2010.11.20 14:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe PRC - [2010.11.20 14:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe PRC - [2009.08.18 03:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe PRC - [2009.08.18 03:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe PRC - [2008.12.15 04:54:52 | 000,451,584 | ---- | M] () -- C:\Programme\GmoteServer\GmoteServer.exe ========== Modules (No Company Name) ========== MOD - [2013.04.23 10:51:42 | 000,128,512 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\_elementtree.pyd MOD - [2013.04.23 10:51:42 | 000,098,816 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32api.pyd MOD - [2013.04.23 10:51:42 | 000,044,032 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\_socket.pyd MOD - [2013.04.23 10:51:42 | 000,022,528 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32ts.pyd MOD - [2013.04.23 10:51:41 | 000,557,056 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\pysqlite2._sqlite.pyd MOD - [2013.04.23 10:51:41 | 000,320,512 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32com.shell.shell.pyd MOD - [2013.04.23 10:51:40 | 001,022,416 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\windows._cacheinvalidation.pyd MOD - [2013.04.23 10:51:40 | 000,805,888 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._gdi_.pyd MOD - [2013.04.23 10:51:40 | 000,070,656 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._html2.pyd MOD - [2013.04.23 10:51:40 | 000,011,264 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32crypt.pyd MOD - [2013.04.23 10:51:39 | 000,735,232 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._misc_.pyd MOD - [2013.04.23 10:51:39 | 000,364,544 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\pythoncom27.dll MOD - [2013.04.23 10:51:39 | 000,087,040 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\_ctypes.pyd MOD - [2013.04.23 10:51:39 | 000,017,408 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32profile.pyd MOD - [2013.04.23 10:51:38 | 001,175,040 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._core_.pyd MOD - [2013.04.23 10:51:38 | 001,153,024 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\_ssl.pyd MOD - [2013.04.23 10:51:38 | 000,110,080 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\pywintypes27.dll MOD - [2013.04.23 10:51:38 | 000,108,544 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32security.pyd MOD - [2013.04.23 10:51:37 | 000,711,680 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\_hashlib.pyd MOD - [2013.04.23 10:51:37 | 000,035,840 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32process.pyd MOD - [2013.04.23 10:51:37 | 000,025,600 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32pdh.pyd MOD - [2013.04.23 10:51:36 | 000,811,008 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._windows_.pyd MOD - [2013.04.23 10:51:36 | 000,122,368 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._wizard.pyd MOD - [2013.04.23 10:51:36 | 000,119,808 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32file.pyd MOD - [2013.04.23 10:51:35 | 000,038,912 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32inet.pyd MOD - [2013.04.23 10:51:33 | 001,062,400 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\wx._controls_.pyd MOD - [2013.04.23 10:51:33 | 000,018,432 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\win32event.pyd MOD - [2013.04.23 10:51:32 | 000,127,488 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\pyexpat.pyd MOD - [2013.04.23 10:51:31 | 000,686,080 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\unicodedata.pyd MOD - [2013.04.23 10:51:31 | 000,010,240 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\_MEI26162\select.pyd MOD - [2013.04.16 09:05:48 | 016,032,648 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_169.dll MOD - [2013.04.10 08:56:55 | 003,133,336 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll MOD - [2013.02.15 21:44:27 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll MOD - [2013.02.15 08:50:07 | 013,199,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\e963e9f51746f8e23837be7760e187c6\System.Windows.Forms.ni.dll MOD - [2013.01.17 12:55:12 | 001,218,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\5d5b1b0c6e8a714de39a06e3b61f35fe\System.Management.ni.dll MOD - [2013.01.17 12:53:30 | 000,762,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\b454f5723ec86048063fe19d4267d9e8\System.Runtime.Remoting.ni.dll MOD - [2013.01.17 12:23:54 | 001,812,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\40c7a89fe2cbf3c12a2c39e034da54cf\System.Xaml.ni.dll MOD - [2013.01.14 09:55:07 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll MOD - [2013.01.14 09:54:06 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll MOD - [2013.01.14 09:53:57 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll MOD - [2013.01.14 09:53:51 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll MOD - [2013.01.14 09:53:24 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll MOD - [2013.01.12 09:27:35 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\60674dde4b56087c189f576f36f6720f\PresentationFramework.Aero.ni.dll MOD - [2013.01.12 09:27:31 | 001,667,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\78ecbee4a7444353dce52afb9d9d795c\System.Drawing.ni.dll MOD - [2013.01.12 09:27:24 | 018,022,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\b8e60f81fd56934c9f9da7b15bee3376\PresentationFramework.ni.dll MOD - [2013.01.12 09:26:57 | 011,522,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\932901ff0ad5e365ffbe705d7459a37e\PresentationCore.ni.dll MOD - [2013.01.12 09:26:51 | 000,982,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\7cd4aa51f6e6b9330b8f50bba8bb62c6\System.Configuration.ni.dll MOD - [2013.01.12 09:26:39 | 003,883,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\8abaedf6aecb073b22f8801aa0b8babf\WindowsBase.ni.dll MOD - [2013.01.12 09:26:37 | 007,070,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b519f42484e1d488662a9a8a87cb8849\System.Core.ni.dll MOD - [2013.01.12 09:26:31 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\fc476bbac36944e352c2f547352ffa64\System.Xml.ni.dll MOD - [2013.01.12 09:26:22 | 009,095,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\f93dca0e4baa1dcb37cf75392b7c89da\System.ni.dll MOD - [2013.01.12 09:26:11 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6a1ccc1e1a79ce267d3d1808af382cd6\mscorlib.ni.dll MOD - [2012.11.12 23:36:44 | 000,646,528 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Amazon\Cloud Drive\AmazonCloudDrive.exe MOD - [2012.10.05 12:53:24 | 003,198,976 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll MOD - [2012.09.20 09:54:50 | 000,541,696 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll MOD - [2012.09.08 13:16:30 | 000,433,664 | ---- | M] () -- C:\Programme\Evernote\Evernote\libxml2.dll MOD - [2012.09.08 13:16:20 | 000,315,392 | ---- | M] () -- C:\Programme\Evernote\Evernote\libtidy.dll MOD - [2012.08.10 17:51:32 | 000,985,088 | ---- | M] () -- C:\Programme\program\libxml2.dll MOD - [2012.07.02 08:44:02 | 000,115,137 | ---- | M] () -- C:\Users\Claudia\AppData\Local\Temp\26b4a1dd-e07b-48af-be4e-9642b273284b\CliSecureRT.dll MOD - [2012.06.08 13:02:10 | 000,021,432 | ---- | M] () -- C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe MOD - [2010.11.13 01:19:04 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2010.11.05 03:58:14 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll MOD - [2010.11.05 03:58:04 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll MOD - [2008.12.15 04:54:52 | 000,451,584 | ---- | M] () -- C:\Programme\GmoteServer\GmoteServer.exe MOD - [2008.11.13 13:43:40 | 000,735,744 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libx264_plugin.dll MOD - [2008.11.13 13:43:10 | 004,688,384 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\avcodec-51.dll MOD - [2008.11.13 13:43:10 | 001,278,464 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libxml2-2.dll MOD - [2008.11.13 13:43:10 | 000,892,928 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libiconv-2.dll MOD - [2008.11.13 13:43:10 | 000,546,304 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libfreetype-6.dll MOD - [2008.11.13 13:43:10 | 000,278,016 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libgcrypt-11.dll MOD - [2008.11.13 13:43:10 | 000,160,256 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libfontconfig-1.dll MOD - [2008.11.13 13:43:10 | 000,075,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libz-1-2.dll MOD - [2008.11.13 13:43:10 | 000,043,008 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libgpg-error-0.dll MOD - [2008.11.13 13:34:28 | 001,168,384 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvorbis_plugin.dll MOD - [2008.11.13 13:34:28 | 000,992,768 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtaglib_plugin.dll MOD - [2008.11.13 13:34:28 | 000,281,600 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtheora_plugin.dll MOD - [2008.11.13 13:34:28 | 000,119,808 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtwolame_plugin.dll MOD - [2008.11.13 13:34:28 | 000,103,424 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libts_plugin.dll MOD - [2008.11.13 13:34:28 | 000,054,272 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvod_rtsp_plugin.dll MOD - [2008.11.13 13:34:28 | 000,037,888 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvout_directx_plugin.dll MOD - [2008.11.13 13:34:28 | 000,035,840 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvisual_plugin.dll MOD - [2008.11.13 13:34:28 | 000,035,328 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libty_plugin.dll MOD - [2008.11.13 13:34:28 | 000,034,816 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvobsub_plugin.dll MOD - [2008.11.13 13:34:28 | 000,024,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libwaveout_plugin.dll MOD - [2008.11.13 13:34:28 | 000,024,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvcd_plugin.dll MOD - [2008.11.13 13:34:28 | 000,023,552 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libwingdi_plugin.dll MOD - [2008.11.13 13:34:28 | 000,016,384 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtransform_plugin.dll MOD - [2008.11.13 13:34:28 | 000,015,360 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libyuy2_i420_plugin.dll MOD - [2008.11.13 13:34:28 | 000,015,360 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtelnet_plugin.dll MOD - [2008.11.13 13:34:28 | 000,014,848 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libwall_plugin.dll MOD - [2008.11.13 13:34:28 | 000,012,288 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libxtag_plugin.dll MOD - [2008.11.13 13:34:28 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libyuy2_i422_plugin.dll MOD - [2008.11.13 13:34:28 | 000,010,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libwav_plugin.dll MOD - [2008.11.13 13:34:28 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvoc_plugin.dll MOD - [2008.11.13 13:34:28 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtta_plugin.dll MOD - [2008.11.13 13:34:28 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvmem_plugin.dll MOD - [2008.11.13 13:34:28 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libvc1_plugin.dll MOD - [2008.11.13 13:34:28 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libwave_plugin.dll MOD - [2008.11.13 13:34:28 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libxa_plugin.dll MOD - [2008.11.13 13:34:28 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtrivial_channel_mixer_plugin.dll MOD - [2008.11.13 13:34:28 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libugly_resampler_plugin.dll MOD - [2008.11.13 13:34:28 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtrivial_resampler_plugin.dll MOD - [2008.11.13 13:34:28 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libtrivial_mixer_plugin.dll MOD - [2008.11.13 13:34:26 | 009,172,480 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libqt4_plugin.dll MOD - [2008.11.13 13:34:26 | 001,888,768 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libskins2_plugin.dll MOD - [2008.11.13 13:34:26 | 001,261,568 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmkv_plugin.dll MOD - [2008.11.13 13:34:26 | 000,701,440 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libschroedinger_plugin.dll MOD - [2008.11.13 13:34:26 | 000,283,136 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsdl_image_plugin.dll MOD - [2008.11.13 13:34:26 | 000,278,016 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libswscale_plugin.dll MOD - [2008.11.13 13:34:26 | 000,262,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmod_plugin.dll MOD - [2008.11.13 13:34:26 | 000,173,568 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpng_plugin.dll MOD - [2008.11.13 13:34:26 | 000,165,376 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmp4_plugin.dll MOD - [2008.11.13 13:34:26 | 000,151,040 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpostproc_plugin.dll MOD - [2008.11.13 13:34:26 | 000,107,008 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmpgatofixed32_plugin.dll MOD - [2008.11.13 13:34:26 | 000,101,888 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_ts_plugin.dll MOD - [2008.11.13 13:34:26 | 000,094,208 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libspeex_plugin.dll MOD - [2008.11.13 13:34:26 | 000,087,040 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libplaylist_plugin.dll MOD - [2008.11.13 13:34:26 | 000,075,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_rtp_plugin.dll MOD - [2008.11.13 13:34:26 | 000,074,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libspatializer_plugin.dll MOD - [2008.11.13 13:34:26 | 000,064,000 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_ps_plugin.dll MOD - [2008.11.13 13:34:26 | 000,063,488 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libportaudio_plugin.dll MOD - [2008.11.13 13:34:26 | 000,061,952 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_mp4_plugin.dll MOD - [2008.11.13 13:34:26 | 000,057,344 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libogg_plugin.dll MOD - [2008.11.13 13:34:26 | 000,049,152 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpanoramix_plugin.dll MOD - [2008.11.13 13:34:26 | 000,047,104 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsap_plugin.dll MOD - [2008.11.13 13:34:26 | 000,042,496 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_mpeg4audio_plugin.dll MOD - [2008.11.13 13:34:26 | 000,041,472 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librc_plugin.dll MOD - [2008.11.13 13:34:26 | 000,040,448 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_asf_plugin.dll MOD - [2008.11.13 13:34:26 | 000,037,888 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_h264_plugin.dll MOD - [2008.11.13 13:34:26 | 000,036,864 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_transcode_plugin.dll MOD - [2008.11.13 13:34:26 | 000,032,768 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_standard_plugin.dll MOD - [2008.11.13 13:34:26 | 000,029,184 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libremoteosd_plugin.dll MOD - [2008.11.13 13:34:26 | 000,028,160 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librealaudio_plugin.dll MOD - [2008.11.13 13:34:26 | 000,027,136 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libps_plugin.dll MOD - [2008.11.13 13:34:26 | 000,025,600 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmosaic_plugin.dll MOD - [2008.11.13 13:34:26 | 000,025,088 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libreal_plugin.dll MOD - [2008.11.13 13:34:26 | 000,024,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsubtitle_plugin.dll MOD - [2008.11.13 13:34:26 | 000,024,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_ogg_plugin.dll MOD - [2008.11.13 13:34:26 | 000,023,040 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librtp_plugin.dll MOD - [2008.11.13 13:34:26 | 000,020,480 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsubsdec_plugin.dll MOD - [2008.11.13 13:34:26 | 000,019,968 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_avi_plugin.dll MOD - [2008.11.13 13:34:26 | 000,019,456 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librss_plugin.dll MOD - [2008.11.13 13:34:26 | 000,019,456 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_vc1_plugin.dll MOD - [2008.11.13 13:34:26 | 000,017,920 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsubsusf_plugin.dll MOD - [2008.11.13 13:34:26 | 000,017,920 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_mpeg4video_plugin.dll MOD - [2008.11.13 13:34:26 | 000,017,920 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libopengl_plugin.dll MOD - [2008.11.13 13:34:26 | 000,016,384 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_mosaic_bridge_plugin.dll MOD - [2008.11.13 13:34:26 | 000,016,384 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmotiondetect_plugin.dll MOD - [2008.11.13 13:34:26 | 000,015,872 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpuzzle_plugin.dll MOD - [2008.11.13 13:34:26 | 000,014,336 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libnuv_plugin.dll MOD - [2008.11.13 13:34:26 | 000,013,824 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libosd_parser_plugin.dll MOD - [2008.11.13 13:34:26 | 000,013,312 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpva_plugin.dll MOD - [2008.11.13 13:34:26 | 000,013,312 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_mpegvideo_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libspudec_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsmf_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librotate_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libosdmenu_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmono_plugin.dll MOD - [2008.11.13 13:34:26 | 000,012,288 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmpeg_audio_plugin.dll MOD - [2008.11.13 13:34:26 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libscreen_plugin.dll MOD - [2008.11.13 13:34:26 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsvcdsub_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librawvid_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpsychedelic_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_duplicate_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_bridge_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstats_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libscaletempo_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libparam_eq_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libntservice_plugin.dll MOD - [2008.11.13 13:34:26 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libnsv_plugin.dll MOD - [2008.11.13 13:34:26 | 000,009,728 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_es_plugin.dll MOD - [2008.11.13 13:34:26 | 000,009,728 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libquicktime_plugin.dll MOD - [2008.11.13 13:34:26 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmpga_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsimple_channel_mixer_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libshout_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librealvideo_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librawdv_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libripple_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpodcast_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libnsc_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libnormvol_plugin.dll MOD - [2008.11.13 13:34:26 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmsn_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_gather_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_display_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libsharpen_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libscale_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librawvideo_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_wav_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libpacketizer_copy_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libnoise_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_mpjpeg_plugin.dll MOD - [2008.11.13 13:34:26 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmotionblur_plugin.dll MOD - [2008.11.13 13:34:26 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_autodel_plugin.dll MOD - [2008.11.13 13:34:26 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libshowintf_plugin.dll MOD - [2008.11.13 13:34:26 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmux_dummy_plugin.dll MOD - [2008.11.13 13:34:26 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmpgv_plugin.dll MOD - [2008.11.13 13:34:26 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_description_plugin.dll MOD - [2008.11.13 13:34:26 | 000,005,632 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libt140_plugin.dll MOD - [2008.11.13 13:34:26 | 000,005,632 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\librv32_plugin.dll MOD - [2008.11.13 13:34:26 | 000,005,120 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libstream_out_dummy_plugin.dll MOD - [2008.11.13 13:34:26 | 000,005,120 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libspdif_mixer_plugin.dll MOD - [2008.11.13 13:34:24 | 001,061,888 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblive555_plugin.dll MOD - [2008.11.13 13:34:24 | 000,844,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libvlccore.dll MOD - [2008.11.13 13:34:24 | 000,699,904 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libavformat_plugin.dll MOD - [2008.11.13 13:34:24 | 000,612,864 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcaca_plugin.dll MOD - [2008.11.13 13:34:24 | 000,429,056 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgnutls_plugin.dll MOD - [2008.11.13 13:34:24 | 000,373,248 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_output_shout_plugin.dll MOD - [2008.11.13 13:34:24 | 000,303,616 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libfaad_plugin.dll MOD - [2008.11.13 13:34:24 | 000,255,488 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblua_plugin.dll MOD - [2008.11.13 13:34:24 | 000,249,344 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libflac_plugin.dll MOD - [2008.11.13 13:34:24 | 000,212,992 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdvdnav_plugin.dll MOD - [2008.11.13 13:34:24 | 000,199,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgoom_plugin.dll MOD - [2008.11.13 13:34:24 | 000,158,208 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdshow_plugin.dll MOD - [2008.11.13 13:34:24 | 000,152,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdtstofloat32_plugin.dll MOD - [2008.11.13 13:34:24 | 000,149,504 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libbda_plugin.dll MOD - [2008.11.13 13:34:24 | 000,125,952 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblibmpeg2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,124,416 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdvdread_plugin.dll MOD - [2008.11.13 13:34:24 | 000,121,344 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdvbsub_plugin.dll MOD - [2008.11.13 13:34:24 | 000,120,320 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libatmo_plugin.dll MOD - [2008.11.13 13:34:24 | 000,119,296 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libfreetype_plugin.dll MOD - [2008.11.13 13:34:24 | 000,116,224 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_rgb_sse2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,104,448 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\libvlc.dll MOD - [2008.11.13 13:34:24 | 000,102,912 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libhttp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,091,648 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libkate_plugin.dll MOD - [2008.11.13 13:34:24 | 000,075,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblibass_plugin.dll MOD - [2008.11.13 13:34:24 | 000,075,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libasf_plugin.dll MOD - [2008.11.13 13:34:24 | 000,073,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libavcodec_plugin.dll MOD - [2008.11.13 13:34:24 | 000,070,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_mms_plugin.dll MOD - [2008.11.13 13:34:24 | 000,065,024 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libavi_plugin.dll MOD - [2008.11.13 13:34:24 | 000,062,464 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libid3tag_plugin.dll MOD - [2008.11.13 13:34:24 | 000,057,344 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_http_plugin.dll MOD - [2008.11.13 13:34:24 | 000,053,248 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_rgb_mmx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,047,104 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libflacsys_plugin.dll MOD - [2008.11.13 13:34:24 | 000,043,520 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcmml_plugin.dll MOD - [2008.11.13 13:34:24 | 000,041,984 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_rtmp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,041,984 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liba52tofloat32_plugin.dll MOD - [2008.11.13 13:34:24 | 000,041,472 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_realrtsp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,039,936 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdeinterlace_plugin.dll MOD - [2008.11.13 13:34:24 | 000,038,912 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcdda_plugin.dll MOD - [2008.11.13 13:34:24 | 000,035,328 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libblend_plugin.dll MOD - [2008.11.13 13:34:24 | 000,035,328 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaudioscrobbler_plugin.dll MOD - [2008.11.13 13:34:24 | 000,034,816 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaudio_format_plugin.dll MOD - [2008.11.13 13:34:24 | 000,034,304 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_ftp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,032,256 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdirect3d_plugin.dll MOD - [2008.11.13 13:34:24 | 000,030,720 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_rgb_plugin.dll MOD - [2008.11.13 13:34:24 | 000,030,208 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libequalizer_plugin.dll MOD - [2008.11.13 13:34:24 | 000,029,184 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_filter_timeshift_plugin.dll MOD - [2008.11.13 13:34:24 | 000,028,160 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_smb_plugin.dll MOD - [2008.11.13 13:34:24 | 000,027,648 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_filter_record_plugin.dll MOD - [2008.11.13 13:34:24 | 000,024,064 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_yuy2_sse2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,023,040 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libbandlimited_resampler_plugin.dll MOD - [2008.11.13 13:34:24 | 000,022,016 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libhotkeys_plugin.dll MOD - [2008.11.13 13:34:24 | 000,022,016 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libadjust_plugin.dll MOD - [2008.11.13 13:34:24 | 000,021,504 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi422_yuy2_sse2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,021,504 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdmo_plugin.dll MOD - [2008.11.13 13:34:24 | 000,020,992 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libglwin32_plugin.dll MOD - [2008.11.13 13:34:24 | 000,020,992 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaraw_plugin.dll MOD - [2008.11.13 13:34:24 | 000,019,968 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libconverter_float_plugin.dll MOD - [2008.11.13 13:34:24 | 000,019,456 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgradient_plugin.dll MOD - [2008.11.13 13:34:24 | 000,018,944 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblogo_plugin.dll MOD - [2008.11.13 13:34:24 | 000,017,920 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaout_directx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,017,408 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcrop_plugin.dll MOD - [2008.11.13 13:34:24 | 000,017,408 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcc_plugin.dll MOD - [2008.11.13 13:34:24 | 000,016,896 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libadpcm_plugin.dll MOD - [2008.11.13 13:34:24 | 000,015,872 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libextract_plugin.dll MOD - [2008.11.13 13:34:24 | 000,013,824 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_yuy2_mmx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,013,824 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdolby_surround_decoder_plugin.dll MOD - [2008.11.13 13:34:24 | 000,013,312 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmagnify_plugin.dll MOD - [2008.11.13 13:34:24 | 000,013,312 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdummy_plugin.dll MOD - [2008.11.13 13:34:24 | 000,013,312 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_directory_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmarq_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi422_yuy2_mmx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcinepak_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,800 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_output_udp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,288 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi422_yuy2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,288 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_yuy2_plugin.dll MOD - [2008.11.13 13:34:24 | 000,012,288 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdts_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblogger_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libheadphone_channel_mixer_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libexport_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,776 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcroppadd_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgaussianblur_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libfake_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liberase_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcvdsub_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libclone_plugin.dll MOD - [2008.11.13 13:34:24 | 000,011,264 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libbluescreen_plugin.dll MOD - [2008.11.13 13:34:24 | 000,010,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmjpeg_plugin.dll MOD - [2008.11.13 13:34:24 | 000,010,752 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgestures_plugin.dll MOD - [2008.11.13 13:34:24 | 000,010,240 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liba52_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,728 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libimage_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,728 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_output_http_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblinear_resampler_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcolorthres_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcdg_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libblendbench_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaout_file_plugin.dll MOD - [2008.11.13 13:34:24 | 000,009,216 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaiff_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdtssys_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,704 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_filter_dump_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmemcpymmxext_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmemcpymmx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmemcpy3dn_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi422_i420_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libcanvas_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_file_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_fake_plugin.dll MOD - [2008.11.13 13:34:24 | 000,008,192 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liba52sys_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libm4a_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liblpcm_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgrey_yuv_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libgrain_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libfloat32_mixer_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdtstospdif_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libau_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libalphamask_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_udp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,680 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_filter_bandwidth_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libm4v_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_ymga_mmx_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libh264_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdemuxdump_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libconverter_fixed_plugin.dll MOD - [2008.11.13 13:34:24 | 000,007,168 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_output_file_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libchain_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,656 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_tcp_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libinvert_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libfolder_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libdemux_cdg_plugin.dll MOD - [2008.11.13 13:34:24 | 000,006,144 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\liba52tospdif_plugin.dll MOD - [2008.11.13 13:34:24 | 000,005,632 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libi420_ymga_plugin.dll MOD - [2008.11.13 13:34:24 | 000,005,120 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libmemcpy_plugin.dll MOD - [2008.11.13 13:34:24 | 000,005,120 | ---- | M] () -- C:\Programme\GmoteServer\bin\VLC\plugins\libaccess_output_dummy_plugin.dll ========== Services (SafeList) ========== SRV - File not found [Auto | Running] -- C:\Program Files\Yontoo\Y2Desktop.Updater.exe C:\Users\Claudia\AppData\Roaming\Yontoo\YontooDesktop.exe -- (Yontoo Desktop Updater) SRV - [2013.04.16 09:05:49 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013.04.10 08:56:49 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2013.03.07 01:32:44 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programme\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2013.02.18 09:52:54 | 000,031,744 | ---- | M] () [Auto | Running] -- C:\Programme\SoftwareUpdater\UpdaterService.exe -- (SrvUpdater) SRV - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012.11.20 16:09:00 | 000,188,760 | ---- | M] () [Auto | Running] -- C:\Programme\Web Assistant\ExtensionUpdaterService.exe -- (IB Updater) SRV - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Programme\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2011.05.13 16:27:02 | 001,492,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV - [2011.03.28 21:31:14 | 001,713,536 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2010.11.20 14:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV - [2010.09.22 17:33:04 | 000,051,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2009.08.18 03:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc) DRV - [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector) DRV - [2013.03.07 01:33:24 | 000,765,736 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2013.03.07 01:33:24 | 000,368,176 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2013.03.07 01:33:24 | 000,164,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm) DRV - [2013.03.07 01:33:24 | 000,062,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2013.03.07 01:33:24 | 000,049,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt) DRV - [2013.03.07 01:33:23 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2013.03.07 01:33:23 | 000,060,656 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr) DRV - [2013.03.07 01:33:22 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012.12.24 07:51:40 | 000,105,728 | ---- | M] (AVM Berlin) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avmaudio.sys -- (avmaudio) DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus) DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt) DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc) DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID) DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap) DRV - [2009.08.18 04:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2009.07.14 00:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2009.07.14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) DRV - [2009.07.14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x) DRV - [2009.06.12 22:38:30 | 000,103,424 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hwusbser.sys -- (qcusbser) DRV - [2008.01.14 12:06:32 | 000,021,632 | ---- | M] (ManyCam LLC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ManyCam.sys -- (ManyCam) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.chatzum.com/ IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.chatzum.com/?q={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = 04 00 7D 02 0B 00 00 00 78 D6 31 10 01 00 00 80 06 00 7D 02 00 00 00 00 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www1.delta-search.com/?affID=119403&babsrc=HP_ss&mntrId=DE21001F16CC54AF IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\..\URLSearchHook: - No CLSID value found IE - HKCU\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119403&babsrc=SP_ss&mntrId=DE21001F16CC54AF IE - HKCU\..\SearchScopes\{5B12514A-789C-4EFA-9092-EFB2508D9B95}: "URL" = hxxp://www.google.de/search?q={searchTerms} IE - HKCU\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = hxxp://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = hxxp://search.chatzum.com/?q={SearchTerms} IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825 IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = hxxp://search.chatzum.com/?q={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultthis.engineName: "Winload Customized Web Search" FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/ig|www.t-online.de" FF - prefs.js..extensions.enabledAddons: amznUWL2%40amazon.com:1.10 FF - prefs.js..extensions.enabledAddons: finder%40meingutscheincode.de:3.0.3 FF - prefs.js..extensions.enabledAddons: toolbar-ff%40payback.de:1.1.9.99 FF - prefs.js..extensions.enabledAddons: fb_add_on%40avm.de:1.7.0 FF - prefs.js..extensions.enabledAddons: autolyrics%40man-soft.net:1.110 FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0039-ABCDEFFEDCBA%7D:6.0.39 FF - prefs.js..extensions.enabledAddons: personas%40christopher.beard:1.7.2 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll () FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_39: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@protectdisc.com/NPMPDRM: C:\Program Files\Common Files\mpDRM\NPMPDRM.dll ( ) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Claudia\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Claudia\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll (Amazon.com, Inc.) FF - HKCU\Software\MozillaPlugins\telekom.com/PagePlaceStarter: C:\Users\Claudia\AppData\Local\PagePlace\npPagePlaceStarter.dll (Deutsche Telekom AG) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\Web Assistant\Firefox [2012.12.20 11:15:39 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013.04.15 23:18:29 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.04.18 08:02:12 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.04.17 08:10:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: G:\System\Apps\3C9F7B3F-D55C-42cd-8537-B878518B73AF\Exec\firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: G:\System\Apps\3C9F7B3F-D55C-42cd-8537-B878518B73AF\Exec\firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.0\extensions\\Components: G:\System\Apps\FEFECB84-0E05-42d8-B044-F2D0FCFF8C15\Exec\thunderbird\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.0\extensions\\Plugins: G:\System\Apps\FEFECB84-0E05-42d8-B044-F2D0FCFF8C15\Exec\thunderbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\autolyrics@man-soft.net: C:\Program Files\AutoLyrics\FF\ [2013.04.16 08:50:05 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Components: G:\System\Apps\FEFECB84-0E05-42d8-B044-F2D0FCFF8C15\Exec\thunderbird\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Plugins: G:\System\Apps\FEFECB84-0E05-42d8-B044-F2D0FCFF8C15\Exec\thunderbird\plugins [2010.01.21 11:48:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\Extensions [2010.01.21 11:48:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2013.04.22 11:42:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\Firefox\Profiles\9nf3vsqu.default\extensions [2013.04.15 23:14:58 | 000,000,000 | ---D | M] ("FRITZ!Box AddOn") -- C:\Users\Claudia\AppData\Roaming\mozilla\Firefox\Profiles\9nf3vsqu.default\extensions\fb_add_on@avm.de [2012.09.20 14:21:57 | 000,243,287 | ---- | M] () (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\extensions\amznUWL2@amazon.com.xpi [2011.11.01 12:07:44 | 000,105,020 | ---- | M] () (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\extensions\finder@meingutscheincode.de.xpi [2013.04.19 13:19:11 | 000,340,614 | ---- | M] () (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\extensions\personas@christopher.beard.xpi [2012.03.16 08:35:11 | 000,128,837 | ---- | M] () (No name found) -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\extensions\toolbar-ff@payback.de.xpi [2013.04.16 08:49:41 | 000,006,470 | ---- | M] () -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\searchplugins\BrowserProtect.xml [2013.04.16 08:49:54 | 000,001,294 | ---- | M] () -- C:\Users\Claudia\AppData\Roaming\mozilla\firefox\profiles\9nf3vsqu.default\searchplugins\delta.xml [2013.04.18 08:02:12 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2013.04.15 23:14:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2013.04.16 08:50:05 | 000,000,000 | ---D | M] ("Auto Lyrics") -- C:\PROGRAM FILES\AUTOLYRICS\FF [2013.04.15 23:14:46 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2013.04.10 08:57:39 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2013.04.10 10:18:46 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2013.04.16 08:49:41 | 000,006,470 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2013.04.10 10:18:46 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2013.04.10 10:18:46 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2013.04.10 10:18:46 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2013.04.10 10:18:46 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2013.04.10 10:18:46 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - default_search_provider: Delta Search (Enabled) CHR - default_search_provider: search_url = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119403&babsrc=SP_ss&mntrId=DE21001F16CC54AF CHR - default_search_provider: suggest_url = hxxp://suggestqueries.google.com/complete/search?q={searchTerms} CHR - homepage: CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Claudia\AppData\Local\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Claudia\AppData\Local\Google\Chrome\Application\26.0.1410.64\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Claudia\AppData\Local\Google\Chrome\Application\26.0.1410.64\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft\u00C2\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll CHR - plugin: fluxDVD Browser Plugin (Enabled) = C:\Program Files\Common Files\mpDRM\NPMPDRM.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: PagePlace Starter plugin (Enabled) = C:\Program Files\PagePlace\npPagePlaceStarter.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Live\u00C2\u2122 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll CHR - Extension: Google Drive = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: New Tab = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpmlnedpdikbgdghljdepnljfpkhccn\1.0.0_0\ CHR - Extension: avast! WebRep = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\ CHR - Extension: avast! WebRep = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1483_0\ CHR - Extension: Auto Lyrics = C:\Users\Claudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkcdkfohdadbjmlfejhncigcbfkiaamf\1.110_0\ O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O2 - BHO: (IB Updater) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Programme\Web Assistant\Extension32.dll () O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O2 - BHO: (Auto Lyrics) - {DAEB9E85-4694-4F9B-85CB-2F28987872D7} - C:\Programme\AutoLyrics\autolrcs.dll (Mansoft Union) O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programme\Yontoo\YontooIEClient.dll (Yontoo LLC) O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - No CLSID value found. O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [KiesTrayAgent] C:\Programme\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKCU..\Run: [Amazon Cloud Drive] C:\Users\Claudia\AppData\Local\Amazon\Cloud Drive\AmazonCloudDrive.exe () O4 - HKCU..\Run: [AVMUSBFernanschluss] C:\Users\Claudia\AppData\Local\Apps\2.0\9RBH9PPK.8BR\G68LQTY6.B4T\frit..tion_8488884cfbcefd60_0002.0003_f406d43803d5433d\AVMAutoStart.exe (AVM Berlin) O4 - HKCU..\Run: [GoogleDriveSync] C:\Program Files\Google\Drive\googledrivesync.exe (Google) O4 - HKCU..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s File not found O4 - HKCU..\Run: [KiesPDLR] C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe () O4 - HKCU..\Run: [Yontoo Desktop] C:\Users\Claudia\AppData\Roaming\Yontoo\YontooDesktop.exe (Yontoo LLC) O4 - Startup: C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Claudia\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk = C:\Programme\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O4 - Startup: C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GmoteServer.lnk = C:\Programme\GmoteServer\GmoteServer.exe () O4 - Startup: C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Programme\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8 - Extra context menu item: Add to Evernote 4.0 - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O9 - Extra 'Tools' menuitem : @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: fritz.repeater ([]* in Lokales Intranet) O15 - HKCU\..Trusted Ranges: Range1 ([*] in Lokales Intranet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{14690A73-6257-4F78-BC3B-11F8628F609C}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C7398D1B-2D9A-409C-896E-11056E1FA8B0}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\fluxhttp {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Programme\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax () O18 - Protocol\Handler\fluxhttp\0x00000007 {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Programme\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax () O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{ec256862-36e5-11e0-9529-001f16cc54af}\Shell - "" = AutoRun O33 - MountPoints2\{ec256862-36e5-11e0-9529-001f16cc54af}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a O33 - MountPoints2\E\Shell - "" = AutoRun O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.04.23 09:39:32 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Roaming\Malwarebytes [2013.04.23 09:39:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.04.23 09:39:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.04.23 09:39:06 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2013.04.23 09:39:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.04.23 07:08:47 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{7404F499-6811-4EB7-9864-A112FDAFEFB7} [2013.04.23 06:41:28 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{0241FAA9-1B95-4652-9A4E-307A028E923D} [2013.04.22 10:55:27 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{CE867DDE-8D03-4320-89E9-2F4472833F1B} [2013.04.19 07:21:10 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{7F0A89B9-A56D-4EFA-8734-8C8BE455D217} [2013.04.18 07:53:25 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{C87D6E01-D1F4-46ED-AFBD-26F6D5062C75} [2013.04.17 07:46:08 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{F41D4FD0-CE2F-4653-80BD-DD9C4E164D45} [2013.04.16 09:22:12 | 000,000,000 | ---D | C] -- C:\Program Files\IncrediMail [2013.04.16 09:05:40 | 000,000,000 | --SD | C] -- C:\Users\Claudia\Google Drive [2013.04.16 08:50:33 | 000,000,000 | ---D | C] -- C:\Users\Claudia\Documents\35306-1257-incredimail-to-eml-converter.zip [2013.04.16 08:50:08 | 000,000,000 | ---D | C] -- C:\Program Files\SoftwareUpdater [2013.04.16 08:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\AutoLyrics [2013.04.16 08:30:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive [2013.04.16 08:29:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus [2013.04.16 08:24:59 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{ED1DD789-80F7-440A-BCE1-60543127CAF8} [2013.04.15 23:38:05 | 000,000,000 | ---D | C] -- C:\Users\Claudia\Qtrax [2013.04.15 23:37:15 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Roaming\Yontoo [2013.04.15 23:37:14 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo [2013.04.15 23:37:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer [2013.04.15 23:37:06 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Roaming\Babylon [2013.04.15 23:37:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon [2013.04.15 07:35:30 | 000,000,000 | -HSD | C] -- C:\found.000 [2013.03.28 09:57:28 | 000,000,000 | ---D | C] -- C:\Users\Claudia\AppData\Local\{882354ED-4B5C-45F5-B42A-3FB845F51F56} [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.04.23 18:22:01 | 000,001,128 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2062147547-2206111255-719622810-1000UA.job [2013.04.23 18:12:16 | 000,000,000 | ---- | M] () -- C:\Users\Claudia\defogger_reenable [2013.04.23 18:02:01 | 000,001,100 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.04.23 17:44:38 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.04.23 17:44:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.04.23 10:58:01 | 000,014,912 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.04.23 10:58:01 | 000,014,912 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.04.23 10:51:15 | 000,000,380 | ---- | M] () -- C:\Windows\tasks\Auto Lyrics Update.job [2013.04.23 10:50:59 | 000,000,374 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics [2013.04.23 10:50:47 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.04.23 10:50:10 | 2411,925,504 | -HS- | M] () -- C:\hiberfil.sys [2013.04.23 09:39:13 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.04.23 09:34:17 | 000,001,076 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2062147547-2206111255-719622810-1000Core.job [2013.04.23 07:10:29 | 000,654,400 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2013.04.23 07:10:29 | 000,616,242 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013.04.23 07:10:29 | 000,130,240 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2013.04.23 07:10:29 | 000,106,622 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013.04.22 11:21:48 | 000,091,257 | ---- | M] () -- C:\Users\Claudia\Documents\Gutschein SportScheck.pdf [2013.04.18 08:02:16 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013.04.17 08:10:25 | 000,001,993 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2013.04.16 09:22:18 | 000,001,987 | ---- | M] () -- C:\Users\Public\Desktop\IncrediMail.lnk [2013.04.16 09:00:12 | 000,000,862 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog [2013.04.16 08:29:15 | 000,002,090 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2013.04.16 08:29:13 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2013.04.16 08:23:31 | 000,002,384 | ---- | M] () -- C:\Users\Claudia\Desktop\Google Chrome.lnk [2013.04.16 08:18:12 | 000,352,552 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013.04.15 22:49:17 | 000,166,095 | ---- | M] () -- C:\Users\Claudia\Desktop\IMData.cab [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2013.03.31 11:21:07 | 000,001,061 | ---- | M] () -- C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013.03.31 11:20:20 | 000,001,033 | ---- | M] () -- C:\Users\Claudia\Desktop\Dropbox.lnk [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.04.23 18:12:16 | 000,000,000 | ---- | C] () -- C:\Users\Claudia\defogger_reenable [2013.04.23 09:39:13 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.04.22 11:22:00 | 000,091,257 | ---- | C] () -- C:\Users\Claudia\Documents\Gutschein SportScheck.pdf [2013.04.17 08:10:25 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk [2013.04.17 08:10:25 | 000,001,993 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2013.04.16 09:22:18 | 000,001,999 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail.lnk [2013.04.16 09:22:18 | 000,001,987 | ---- | C] () -- C:\Users\Public\Desktop\IncrediMail.lnk [2013.04.16 08:51:14 | 000,000,862 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog [2013.04.16 08:50:07 | 000,000,380 | ---- | C] () -- C:\Windows\tasks\Auto Lyrics Update.job [2013.04.15 20:24:55 | 000,166,095 | ---- | C] () -- C:\Users\Claudia\Desktop\IMData.cab [2013.03.31 11:21:07 | 000,001,061 | ---- | C] () -- C:\Users\Claudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013.03.22 08:37:28 | 000,164,736 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys [2013.03.22 08:37:26 | 000,049,248 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys [2012.10.03 14:01:18 | 000,002,740 | ---- | C] () -- C:\Users\Claudia\AppData\Local\recently-used.xbel [2012.08.13 12:08:08 | 000,014,217 | ---- | C] () -- C:\Program Files\readme.html [2012.05.08 15:15:36 | 000,000,005 | ---- | C] () -- C:\Program Files\basis-link [2012.01.24 12:57:57 | 000,000,032 | ---- | C] () -- C:\Users\Claudia\.simfy [2011.12.23 21:58:28 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2011.12.23 21:58:24 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll [2011.12.23 21:58:24 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll [2011.12.23 21:58:24 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll [2011.12.23 21:58:24 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll [2011.05.14 09:10:41 | 000,087,552 | ---- | C] () -- C:\Windows\System32\cpwmon2k.dll [2010.03.29 09:09:34 | 000,005,120 | ---- | C] () -- C:\Users\Claudia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ========== ZeroAccess Check ========== [2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2010.05.22 08:08:50 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Amazon [2013.04.15 23:37:06 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Babylon [2013.04.23 10:51:51 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Dropbox [2011.02.16 21:37:47 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\DVDVideoSoftIEHelpers [2013.04.15 23:14:57 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\FreeCommander [2011.01.23 16:10:09 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Imaxel [2012.02.13 10:11:13 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\iRemote for iTunes [2012.04.02 09:06:22 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\JaegermeisterRadio [2010.11.12 22:01:52 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\ManyCam [2009.01.27 00:04:27 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Miranda [2010.10.07 09:18:16 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\mresreg [2009.01.26 23:08:42 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\OpenOffice.org [2009.01.26 19:05:12 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Opera [2012.01.12 22:14:45 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Samsung [2011.03.02 09:35:36 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Simfy [2009.01.26 22:16:31 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Thunderbird [2011.12.22 23:29:56 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\WinBatch [2013.04.22 10:58:04 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Windows Live Writer [2013.04.23 17:44:44 | 000,000,000 | ---D | M] -- C:\Users\Claudia\AppData\Roaming\Yontoo ========== Purity Check ========== < End of report > |
|
24.04.2013, 08:13
| #3 |
| | appround.net -Problem , nerviges Pop-Up welches wohl nicht ungefährlich ist? ich hoffe das funktioniert hier wie ich es mir vorstelle
__________________ bin nicht sicher wegen der logfiles und anhänge,etc.... |
|
| Themen zu appround.net -Problem , nerviges Pop-Up welches wohl nicht ungefährlich ist? |
| 7-zip, adobe reader xi, adresszeile, avast, cloud, eingefangen, fenster, funde, gefangen, gefährlich, gelöscht, google, googlen, incredimail, install.exe, lösung, malwarebytes, natürlich, nervig, nerviges, nicht mehr, problem, revo uninstaller, richtlinie, scan, schlau, softwareupdater, suche, surfe, versucht, öffnen, öffnet |
Linear-Darstellung
