| |
| |||||||
Log-Analyse und Auswertung: win32.downloader.gen lässt sich mit spybot nicht eliminierenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
18.06.2013, 15:05
| #1 |
 |  win32.downloader.gen lässt sich mit spybot nicht eliminieren Hallo Trojaner-Experten! Nachdem mein Computer seit einigen Tage sehr viel langsamer ist, des öfteren einfriert und das Signal der W-Lan Verbindung schlechter ist, habe ich bei meinem obligatorischen Spybot-Suchlauf die Malware win32.downloader.gen gefunden. Beim Versuch dieses Problem zu beheben kam die Meldung "Unexpected error in fixing problems" (cannot create file C:\Windows\wininit.ini Zugriff verweigert) Die google-Recherche sagt zwar, dass es sich wahrscheinlich um einen gefährlichen Trojaner handelt, liefert aber keinen brauchbaren Hinweis wie er zu entfernen ist. Ich hoffe ich habe bei den benötigten Logfiles alles richtig gemacht! Vielen Dank schon mal im Voraus!!!!! OTL.txt Code:
ATTFilter OTL logfile created on: 6/18/2013 3:10:44 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Christina\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3.85 Gb Total Physical Memory | 1.64 Gb Available Physical Memory | 42.44% Memory free
7.71 Gb Paging File | 5.44 Gb Available in Paging File | 70.66% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 112.00 Gb Total Space | 3.76 Gb Free Space | 3.36% Space Free | Partition Type: NTFS
Drive D: | 165.99 Gb Total Space | 165.50 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
Computer Name: R247097 | User Name: Christina | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013/06/18 15:09:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Christina\Downloads\OTL(1).exe
PRC - [2013/06/11 10:40:51 | 001,105,408 | ---- | M] (Spotify Ltd) -- C:\Users\Christina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2013/05/13 11:29:31 | 000,345,312 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013/05/11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/23 06:48:20 | 000,844,144 | ---- | M] (Samsung) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2013/04/23 06:48:16 | 000,311,152 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
PRC - [2013/04/23 06:48:12 | 001,561,968 | ---- | M] (Samsung) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
PRC - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/03/31 09:35:12 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2013/03/31 09:34:47 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2013/03/12 09:05:50 | 029,106,336 | ---- | M] (Dropbox, Inc.) -- C:\Users\Christina.sich\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013/02/05 17:48:44 | 000,272,248 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
PRC - [2012/12/13 15:44:45 | 000,702,024 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
PRC - [2012/12/13 15:44:31 | 000,544,840 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
PRC - [2011/07/29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/05/06 08:44:44 | 001,749,504 | ---- | M] (SAMSUNG Electronics) -- C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
PRC - [2010/04/07 15:40:06 | 000,843,264 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
PRC - [2010/02/10 16:29:52 | 000,719,360 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
PRC - [2010/01/19 04:34:48 | 002,201,192 | ---- | M] (SEC) -- C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
PRC - [2009/12/03 07:00:00 | 005,724,472 | ---- | M] (WIBU-SYSTEMS AG) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
PRC - [2009/03/05 11:54:50 | 000,311,296 | ---- | M] () -- C:\Windows\SysWOW64\Rezip.exe
PRC - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2006/06/23 00:20:48 | 000,086,068 | ---- | M] (Thermo Electron Corporation) -- C:\Xcalibur\System\Programs\FinAutoLogOff.exe
PRC - [2006/06/23 00:20:42 | 000,065,536 | ---- | M] (Thermo Electron Corporation) -- C:\Xcalibur\System\Programs\finSS_Server.exe
PRC - [2006/06/23 00:02:46 | 000,335,923 | ---- | M] (Thermo Electron Corporation) -- C:\Xcalibur\System\Programs\CFRDBService.exe
========== Modules (No Company Name) ==========
MOD - [2013/05/19 13:47:02 | 018,022,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\1f0bb5336d1706c9b8ad2330f3642760\PresentationFramework.ni.dll
MOD - [2013/05/19 13:46:49 | 011,522,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\9b2940478ec555990b37af5448b8f509\PresentationCore.ni.dll
MOD - [2013/05/19 13:46:39 | 007,070,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\93a17ba6cb6753328f25466bc0bf1cb1\System.Core.ni.dll
MOD - [2013/05/19 13:46:34 | 003,883,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\a1949f57d2ec260e09768e98fecb0559\WindowsBase.ni.dll
MOD - [2013/05/19 13:46:31 | 000,982,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ddc3e8c2774eaec614d6775983652980\System.Configuration.ni.dll
MOD - [2013/02/16 10:56:56 | 000,221,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\7d8f6866864f78cf83d3701641c46178\System.ServiceProcess.ni.dll
MOD - [2013/01/10 11:26:25 | 001,812,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\40c7a89fe2cbf3c12a2c39e034da54cf\System.Xaml.ni.dll
MOD - [2013/01/10 09:38:20 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\fc476bbac36944e352c2f547352ffa64\System.Xml.ni.dll
MOD - [2013/01/10 09:38:06 | 009,095,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\f93dca0e4baa1dcb37cf75392b7c89da\System.ni.dll
MOD - [2013/01/10 09:37:59 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6a1ccc1e1a79ce267d3d1808af382cd6\mscorlib.ni.dll
MOD - [2011/07/29 01:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
MOD - [2006/08/12 05:48:40 | 000,049,152 | ---- | M] () -- C:\Program Files (x86)\Samsung\Easy Display Manager\HookDllPS2.dll
========== Services (SafeList) ==========
SRV:64bit: - [2010/05/05 08:15:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/06/17 09:55:14 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/24 10:58:25 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/05/11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/07 16:19:12 | 001,025,408 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE -- (SpyHunter 4 Service)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/03/31 09:35:12 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013/03/31 09:34:47 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/02/05 17:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/12/13 15:44:31 | 000,544,840 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/05 09:28:30 | 002,782,552 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/03/05 11:54:50 | 000,311,296 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\Rezip.exe -- (Rezip)
SRV - [2006/06/23 00:20:48 | 000,086,068 | ---- | M] (Thermo Electron Corporation) [Auto | Running] -- C:\Xcalibur\System\Programs\FinAutoLogOff.exe -- (FinAutoLogOff)
SRV - [2006/06/23 00:20:42 | 000,065,536 | ---- | M] (Thermo Electron Corporation) [Auto | Running] -- C:\Xcalibur\System\Programs\finSS_Server.exe -- (Finnigan Security Server)
SRV - [2006/06/23 00:02:46 | 000,335,923 | ---- | M] (Thermo Electron Corporation) [Auto | Running] -- C:\Xcalibur\System\Programs\CFRDBService.exe -- (CFRDBService)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013/06/18 13:22:31 | 000,032,000 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hitmanpro37.sys -- (hitmanpro37)
DRV:64bit: - [2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2013/04/03 09:58:08 | 000,188,232 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2013/04/03 09:58:08 | 000,169,288 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2013/04/03 09:58:08 | 000,158,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2013/04/03 09:58:08 | 000,038,080 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2013/04/03 09:58:08 | 000,021,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2013/03/31 09:35:23 | 000,130,016 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2013/03/31 09:35:23 | 000,100,712 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2013/03/31 09:35:23 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2012/12/13 15:28:42 | 000,027,048 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpnva64.sys -- (vpnva)
DRV:64bit: - [2012/12/13 15:26:36 | 000,112,080 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acsock64.sys -- (acsock)
DRV:64bit: - [2012/06/22 12:01:32 | 000,022,704 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\EsgScanner.sys -- (EsgScanner)
DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/05/05 08:47:10 | 006,789,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010/05/05 08:47:10 | 006,789,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/05/05 07:23:26 | 000,221,184 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/04/27 09:57:04 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/04/01 02:25:14 | 000,136,192 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2010/03/31 02:35:26 | 000,013,824 | ---- | M] (SAMSUNG ELECTRONICS) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SABI.sys -- (SABI)
DRV:64bit: - [2010/02/27 02:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/01/29 09:33:38 | 000,116,736 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/12/14 22:46:56 | 001,573,888 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/12/03 07:00:00 | 000,103,224 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\WibuKey64.sys -- (WIBUKEY)
DRV:64bit: - [2009/09/28 11:22:00 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/08/07 09:59:18 | 000,016,896 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Wibukey2_64.sys -- (Wibukey2_64)
DRV:64bit: - [2009/08/05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 22:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013/04/18 12:09:20 | 000,037,344 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010/07/16 01:09:53 | 000,015,144 | ---- | M] (Windows (R) 2003 DDK 3790 provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\rtport.sys -- (rtport)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7SMSN_deDE397
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "https://www.google.de/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/02/19 13:51:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}: C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}: C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2013/02/07 13:25:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/06/17 11:31:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/06/17 11:31:56 | 000,000,000 | ---D | M]
[2013/05/21 21:23:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christina\AppData\Roaming\mozilla\Extensions
[2013/05/24 10:58:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2013/05/24 10:58:17 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/05/24 10:58:17 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013/05/24 10:58:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2013/05/24 10:58:26 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/09/27 21:04:22 | 000,170,080 | ---- | M] (Tracker Software Products Ltd.) -- C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
========== Chrome ==========
CHR - Extension: Docs = C:\Users\Christina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google-Suche = C:\Users\Christina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Skype Click to Call = C:\Users\Christina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\
CHR - Extension: Mehr Leistung und Videoformate f\u00FCr dein HTML5 \u003Cvideo\u003E = C:\Users\Christina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
O1 HOSTS File: ([2013/04/27 07:23:49 | 000,000,924 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 129.187.254.40 asa01.lrz.de
O1 - Hosts: 129.187.254.164 asa04.lrz.de
O1 - Hosts: 129.187.254.40 asa01.lrz.de
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SpywareTerminatorShield] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe File not found
O4:64bit: - HKLM..\Run: [SpywareTerminatorUpdater] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [NortonOnlineBackup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\Run: [Spotify] C:\Users\Christina\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Christina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - Startup: C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Christina.sich\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Free YouTube Download - Reg Error: Value error. File not found
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - Reg Error: Value error. File not found
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Free YouTube Download - Reg Error: Value error. File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - Reg Error: Value error. File not found
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found
O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found
O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.33.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B69961B9-4172-4A5F-A43A-7632BE495F3A}: DhcpNameServer = 192.168.33.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C60DE602-45B1-48F4-A158-C236BA4AC340}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2013/06/18 12:33:33 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2013/06/18 12:17:44 | 000,000,000 | ---D | C] -- C:\Users\Christina\Desktop\RK_Quarantine
[2013/06/18 11:45:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/06/18 11:45:41 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/06/18 09:56:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/06/17 11:22:55 | 000,051,496 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\stflt.sys
[2013/06/17 11:22:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Terminator
[2013/06/17 10:34:09 | 001,122,304 | ---- | C] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Windows\SysWow64\libeay32.dll
[2013/06/17 10:34:09 | 000,356,352 | ---- | C] (eSellerate Inc.) -- C:\Windows\eSellerateEngine.dll
[2013/06/17 10:34:09 | 000,274,432 | ---- | C] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Windows\SysWow64\ssleay32.dll
[2013/06/17 10:34:09 | 000,081,920 | ---- | C] (eSellerate Inc.) -- C:\Windows\eSellerateControl350.dll
[2013/06/17 10:34:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Win 32. Downloader . Gen Removal Tool
[2013/06/17 09:35:40 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Diagnostics
[2013/06/11 19:33:23 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Skype
[2013/06/11 10:40:55 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Spotify
[2013/06/11 10:39:37 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Spotify
[2013/06/09 20:53:34 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump
[2013/06/09 13:13:52 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\NativeFus_Log
[2013/06/09 13:09:38 | 000,188,232 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadmdm.sys
[2013/06/09 13:09:38 | 000,169,288 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadbus.sys
[2013/06/09 13:09:38 | 000,158,024 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadserd.sys
[2013/06/09 13:09:38 | 000,021,320 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadmdfl.sys
[2013/06/09 13:09:38 | 000,017,736 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadwhnt.sys
[2013/06/09 13:09:38 | 000,017,736 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadwh.sys
[2013/06/09 13:09:38 | 000,017,224 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadcmnt.sys
[2013/06/09 13:09:38 | 000,017,224 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ssadcm.sys
[2013/06/09 13:07:13 | 000,233,472 | ---- | C] (Teruten) -- C:\Windows\SysWow64\FsUsbExService.Exe
[2013/06/09 12:55:02 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Samsung
[2013/06/09 12:53:37 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Samsung
[2013/06/07 19:40:58 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\DivX
[2013/06/07 19:40:05 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Google
[2013/05/24 10:58:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/05/24 10:27:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2013/05/24 10:27:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
[2013/05/24 10:18:43 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\DVDVideoSoft
[2013/05/22 17:32:50 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\EndNote
[2013/05/22 10:52:07 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Adobe
[2013/05/21 23:42:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/05/21 23:32:26 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Dropbox
[2013/05/21 22:44:08 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Google
[2013/05/21 22:38:12 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Malwarebytes
[2013/05/21 22:37:17 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Programs
[2013/05/21 21:26:01 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Macromedia
[2013/05/21 21:26:01 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Macromedia
[2013/05/21 21:26:01 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Adobe
[2013/05/21 21:23:47 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Mozilla
[2013/05/21 21:23:47 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Mozilla
[2013/05/21 21:22:44 | 000,000,000 | ---D | C] -- C:\Users\Christina\Desktop\Word
[2013/05/21 21:18:40 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Avira
[2013/05/21 21:13:34 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\ATI
[2013/05/21 21:13:34 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\ATI
[2013/05/21 21:12:38 | 000,000,000 | R--D | C] -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/05/21 21:12:38 | 000,000,000 | R--D | C] -- C:\Users\Christina\Searches
[2013/05/21 21:12:38 | 000,000,000 | R--D | C] -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/05/21 21:12:36 | 000,000,000 | R--D | C] -- C:\Users\Christina\Contacts
[2013/05/21 21:12:36 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Identities
[2013/05/21 21:12:34 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\VirtualStore
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Vorlagen
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\AppData\Local\Verlauf
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\AppData\Local\Temporary Internet Files
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Startmenü
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\SendTo
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Recent
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Netzwerkumgebung
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Lokale Einstellungen
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Documents\Eigene Videos
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Documents\Eigene Musik
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Eigene Dateien
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Documents\Eigene Bilder
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Druckumgebung
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Cookies
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\AppData\Local\Anwendungsdaten
[2013/05/21 21:12:03 | 000,000,000 | -HSD | C] -- C:\Users\Christina\Anwendungsdaten
[2013/05/21 21:12:03 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Temp
[2013/05/21 21:12:03 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Microsoft Help
[2013/05/21 21:12:03 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Local\Microsoft
[2013/05/21 21:12:03 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Media Center Programs
[2013/05/21 21:12:02 | 000,000,000 | --SD | C] -- C:\Users\Christina\AppData\Roaming\Microsoft
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Videos
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Saved Games
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Pictures
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Music
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Links
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Favorites
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Downloads
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Documents
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\Desktop
[2013/05/21 21:12:02 | 000,000,000 | R--D | C] -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/05/21 21:12:02 | 000,000,000 | -H-D | C] -- C:\Users\Christina\AppData
[2013/05/21 21:12:02 | 000,000,000 | ---D | C] -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
[2013/05/21 20:48:25 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\Youcam
[2013/05/21 20:48:25 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\SelfMV
[2013/05/21 20:47:45 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\samsung
[2013/05/21 20:47:44 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\OneNote-Notizbücher
[2013/05/21 20:47:44 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\My Pictures
[2013/05/21 20:47:44 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\DVDVideoSoft
[2013/05/21 20:47:40 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\Citavi 3
[2013/05/21 20:47:30 | 000,000,000 | ---D | C] -- C:\Users\Christina\Documents\capella
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013/06/18 15:07:34 | 000,000,000 | ---- | M] () -- C:\Users\Christina\defogger_reenable
[2013/06/18 15:04:32 | 000,014,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/18 15:04:32 | 000,014,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/18 14:53:15 | 000,001,112 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/18 14:52:13 | 000,000,272 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2013/06/18 14:52:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/06/18 14:51:55 | 4137,803,776 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/18 14:51:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/06/18 14:36:00 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/18 13:22:31 | 000,032,000 | ---- | M] () -- C:\Windows\SysNative\drivers\hitmanpro37.sys
[2013/06/18 13:19:56 | 000,000,550 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2013/06/18 11:45:48 | 000,000,956 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013/06/17 17:15:48 | 001,527,722 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/06/17 11:22:55 | 000,051,496 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\stflt.sys
[2013/06/17 09:47:37 | 000,654,400 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013/06/17 09:47:37 | 000,616,242 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/06/17 09:47:37 | 000,130,240 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013/06/17 09:47:37 | 000,106,622 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/06/11 19:33:00 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/06/11 10:40:53 | 000,001,787 | ---- | M] () -- C:\Users\Christina\Desktop\Spotify.lnk
[2013/06/09 13:10:55 | 000,002,006 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/06/07 10:02:37 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/06/07 10:02:33 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/06/07 09:50:39 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/05/24 10:28:05 | 000,001,402 | ---- | M] () -- C:\Users\Christina\Desktop\Free YouTube to MP3 Converter.lnk
[2013/05/21 23:32:29 | 000,001,440 | ---- | M] () -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/05/21 23:32:18 | 000,001,398 | ---- | M] () -- C:\Users\Christina\Desktop\Dropbox.lnk
[2013/05/20 18:12:28 | 000,437,632 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013/06/18 15:07:34 | 000,000,000 | ---- | C] () -- C:\Users\Christina\defogger_reenable
[2013/06/18 13:22:31 | 000,032,000 | ---- | C] () -- C:\Windows\SysNative\drivers\hitmanpro37.sys
[2013/06/18 13:19:56 | 000,000,550 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2013/06/18 11:45:48 | 000,000,956 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013/06/11 10:40:53 | 000,001,787 | ---- | C] () -- C:\Users\Christina\Desktop\Spotify.lnk
[2013/06/11 10:40:53 | 000,001,773 | ---- | C] () -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2013/06/09 13:10:55 | 000,002,006 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/06/09 13:07:13 | 000,110,592 | ---- | C] () -- C:\Windows\SysWow64\FsUsbExDevice.Dll
[2013/06/09 13:07:13 | 000,037,344 | ---- | C] () -- C:\Windows\SysWow64\FsUsbExDisk.Sys
[2013/06/07 10:02:37 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/06/07 10:02:33 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/05/21 23:32:29 | 000,001,440 | ---- | C] () -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/05/21 21:12:48 | 000,001,413 | ---- | C] () -- C:\Users\Christina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/05/21 20:47:30 | 002,662,246 | ---- | C] () -- C:\Users\Christina\Documents\Vorlesung%205%20Kanzerogenese.pdf
[2013/05/21 20:47:30 | 002,088,659 | ---- | C] () -- C:\Users\Christina\Documents\Wiederfindung_1%202.pdf
[2013/05/21 20:47:30 | 000,623,832 | ---- | C] () -- C:\Users\Christina\Documents\Wiederfindung%201.pdf
[2013/05/21 20:47:30 | 000,439,288 | ---- | C] () -- C:\Users\Christina\Documents\wasserloesliche_vitamine01[1].pdf
[2013/05/21 20:47:30 | 000,439,288 | ---- | C] () -- C:\Users\Christina\Documents\wasserloesliche_vitamine01.pdf
[2013/05/21 20:47:30 | 000,128,128 | ---- | C] () -- C:\Users\Christina\Documents\Zusatzstoffe.pdf
[2013/05/21 20:47:30 | 000,035,177 | ---- | C] () -- C:\Users\Christina\Documents\Walnuss%201%2B29.pdf
[2013/05/21 20:47:29 | 002,841,930 | ---- | C] () -- C:\Users\Christina\Documents\Vorlesung%2010%20Lebensmittel[1].pdf
[2013/05/21 20:47:29 | 002,841,930 | ---- | C] () -- C:\Users\Christina\Documents\Vorlesung%2010%20Lebensmittel.pdf
[2013/05/21 20:47:29 | 002,372,319 | ---- | C] () -- C:\Users\Christina\Documents\Vitamine-Speifefette-Speisef6le-LMC20SS20201020SI.pdf
[2013/05/21 20:47:29 | 001,069,424 | ---- | C] () -- C:\Users\Christina\Documents\Versuchsanleitung%20Antioxidantien%20und%20Schalenbehandlungsmittel.pdf
[2013/05/21 20:47:29 | 000,120,897 | ---- | C] () -- C:\Users\Christina\Documents\VO%20178-2002%2C%20Mitteilungspflichten.pdf
[2013/05/21 20:47:28 | 000,915,877 | ---- | C] () -- C:\Users\Christina\Documents\Tryptamin[1].pdf
[2013/05/21 20:47:28 | 000,320,664 | ---- | C] () -- C:\Users\Christina\Documents\ToxikologieTeil8PAK.pdf
[2013/05/21 20:47:28 | 000,103,749 | ---- | C] () -- C:\Users\Christina\Documents\Toxikologie_SS2011_Staatsexamensklausur.pdf
[2013/05/21 20:47:28 | 000,040,858 | ---- | C] () -- C:\Users\Christina\Documents\Tyramin.pdf
[2013/05/21 20:47:28 | 000,039,926 | ---- | C] () -- C:\Users\Christina\Documents\Tryptamin.pdf
[2013/05/21 20:47:28 | 000,034,529 | ---- | C] () -- C:\Users\Christina\Documents\Tween60FSME.pdf
[2013/05/21 20:47:28 | 000,033,926 | ---- | C] () -- C:\Users\Christina\Documents\Tween20FSME[1].pdf
[2013/05/21 20:47:28 | 000,033,926 | ---- | C] () -- C:\Users\Christina\Documents\Tween20FSME.pdf
[2013/05/21 20:47:28 | 000,000,328 | ---- | C] () -- C:\Users\Christina\Documents\UserStl.sk
[2013/05/21 20:47:28 | 000,000,000 | ---- | C] () -- C:\Users\Christina\Documents\UserLab.sk
[2013/05/21 20:47:27 | 001,041,833 | ---- | C] () -- C:\Users\Christina\Documents\ToxikologieTeil6Nitrosamine.pdf
[2013/05/21 20:47:27 | 000,923,804 | ---- | C] () -- C:\Users\Christina\Documents\ToxikologieTeil10Chlor[1].pdf
[2013/05/21 20:47:27 | 000,923,804 | ---- | C] () -- C:\Users\Christina\Documents\ToxikologieTeil10Chlor.pdf
[2013/05/21 20:47:27 | 000,363,899 | ---- | C] () -- C:\Users\Christina\Documents\ToxikologieTeil7Aromastoffe.pdf
[2013/05/21 20:47:26 | 022,510,632 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20tagliatelle%20mit%20gem%C3%BCsebolognese[2].pdf
[2013/05/21 20:47:18 | 022,510,632 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20tagliatelle%20mit%20gem%C3%BCsebolognese[1].pdf
[2013/05/21 20:47:17 | 022,510,632 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20tagliatelle%20mit%20gem%C3%BCsebolognese.pdf
[2013/05/21 20:47:16 | 001,833,727 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20Bio%20Penne%20mit%20Bio%20Tomaten-Gem%C3%BCsesauce[2].pdf
[2013/05/21 20:47:16 | 001,833,727 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20Bio%20Penne%20mit%20Bio%20Tomaten-Gem%C3%BCsesauce[1].pdf
[2013/05/21 20:47:15 | 002,115,459 | ---- | C] () -- C:\Users\Christina\Documents\System%201%20Konservierungsstoffe.pdf
[2013/05/21 20:47:15 | 002,098,833 | ---- | C] () -- C:\Users\Christina\Documents\System%202%20Konservierungsstoffe.pdf
[2013/05/21 20:47:15 | 001,833,727 | ---- | C] () -- C:\Users\Christina\Documents\TOX%20-%20Bio%20Penne%20mit%20Bio%20Tomaten-Gem%C3%BCsesauce.pdf
[2013/05/21 20:47:15 | 000,261,032 | ---- | C] () -- C:\Users\Christina\Documents\SPIELZ~1.pdf
[2013/05/21 20:47:15 | 000,075,899 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20Platzanleitung[1].pdf
[2013/05/21 20:47:15 | 000,075,899 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20Platzanleitung.pdf
[2013/05/21 20:47:15 | 000,070,237 | ---- | C] () -- C:\Users\Christina\Documents\Sulfadiazin%20einzel.pdf
[2013/05/21 20:47:15 | 000,070,198 | ---- | C] () -- C:\Users\Christina\Documents\Sulfadiazin%20gesamt.pdf
[2013/05/21 20:47:15 | 000,063,159 | ---- | C] () -- C:\Users\Christina\Documents\Tam%20Matrix.pdf
[2013/05/21 20:47:15 | 000,062,207 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20NWG1.pdf
[2013/05/21 20:47:15 | 000,056,346 | ---- | C] () -- C:\Users\Christina\Documents\Sulfadiazin.pdf
[2013/05/21 20:47:15 | 000,042,747 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20Matrix1[1].pdf
[2013/05/21 20:47:15 | 000,042,747 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20Matrix1.pdf
[2013/05/21 20:47:15 | 000,026,555 | ---- | C] () -- C:\Users\Christina\Documents\TAM%20Matrix2.pdf
[2013/05/21 20:47:15 | 000,001,921 | ---- | C] () -- C:\Users\Christina\Documents\template.cfg
[2013/05/21 20:47:14 | 008,303,398 | ---- | C] () -- C:\Users\Christina\Documents\Spezielle_LMCH_2_Milch_Teil_C.pdf
[2013/05/21 20:47:14 | 002,141,347 | ---- | C] () -- C:\Users\Christina\Documents\Sorbins%C3%A4ure[4].pdf
[2013/05/21 20:47:14 | 002,141,347 | ---- | C] () -- C:\Users\Christina\Documents\Sorbins%C3%A4ure[3].pdf
[2013/05/21 20:47:14 | 000,059,367 | ---- | C] () -- C:\Users\Christina\Documents\sorbins%C3%A4ure[5].pdf
[2013/05/21 20:47:14 | 000,059,367 | ---- | C] () -- C:\Users\Christina\Documents\sorbins%C3%A4ure[2].pdf
[2013/05/21 20:47:14 | 000,059,367 | ---- | C] () -- C:\Users\Christina\Documents\sorbins%C3%A4ure[1].pdf
[2013/05/21 20:47:14 | 000,031,804 | ---- | C] () -- C:\Users\Christina\Documents\spezielle%20lc%20und%20bedarfsgegenst%C3%A4nde%20WS2010[1].pdf
[2013/05/21 20:47:14 | 000,031,804 | ---- | C] () -- C:\Users\Christina\Documents\spezielle%20lc%20und%20bedarfsgegenst%C3%A4nde%20WS2010.pdf
[2013/05/21 20:47:13 | 002,755,743 | ---- | C] () -- C:\Users\Christina\Documents\SLC%20II_Mitschrift[1].pdf
[2013/05/21 20:47:13 | 002,755,743 | ---- | C] () -- C:\Users\Christina\Documents\SLC%20II_Mitschrift.pdf
[2013/05/21 20:47:13 | 002,174,193 | ---- | C] () -- C:\Users\Christina\Documents\Salicyls%C3%A4ure%201.pdf
[2013/05/21 20:47:13 | 001,187,918 | ---- | C] () -- C:\Users\Christina\Documents\Saccharin-Nachweisgrenze_Syst.I.pdf
[2013/05/21 20:47:13 | 000,064,921 | ---- | C] () -- C:\Users\Christina\Documents\salicyls%C3%A4ure.pdf
[2013/05/21 20:47:13 | 000,059,367 | ---- | C] () -- C:\Users\Christina\Documents\sorbins%C3%A4ure.pdf
[2013/05/21 20:47:13 | 000,049,248 | ---- | C] () -- C:\Users\Christina\Documents\ser%20his%201[3].pdf
[2013/05/21 20:47:13 | 000,049,248 | ---- | C] () -- C:\Users\Christina\Documents\ser%20his%201[2].pdf
[2013/05/21 20:47:13 | 000,049,248 | ---- | C] () -- C:\Users\Christina\Documents\ser%20his%201[1].pdf
[2013/05/21 20:47:13 | 000,049,248 | ---- | C] () -- C:\Users\Christina\Documents\ser%20his%201.pdf
[2013/05/21 20:47:13 | 000,035,107 | ---- | C] () -- C:\Users\Christina\Documents\Sojaoel_1%2B29.pdf
[2013/05/21 20:47:13 | 000,033,138 | ---- | C] () -- C:\Users\Christina\Documents\Serotonin.pdf
[2013/05/21 20:47:12 | 008,976,569 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe-DC.pdf
[2013/05/21 20:47:10 | 000,145,709 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20HPLC%20Anleitung[1].pdf
[2013/05/21 20:47:10 | 000,090,390 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20HPLC[1].pdf
[2013/05/21 20:47:10 | 000,090,390 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20HPLC.pdf
[2013/05/21 20:47:09 | 000,229,850 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20DC%20mit%20St%C3%B6rsubstanzen[1].pdf
[2013/05/21 20:47:09 | 000,145,709 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20HPLC%20Anleitung.pdf
[2013/05/21 20:47:08 | 000,229,850 | ---- | C] () -- C:\Users\Christina\Documents\S%C3%BC%C3%9Fstoffe%20DC%20mit%20St%C3%B6rsubstanzen.pdf
[2013/05/21 20:47:07 | 002,107,365 | ---- | C] () -- C:\Users\Christina\Documents\Responselauf_3%201.pdf
[2013/05/21 20:47:07 | 000,050,339 | ---- | C] () -- C:\Users\Christina\Documents\s%C3%BC%C3%9F%2Bbio.pdf
[2013/05/21 20:47:06 | 002,159,081 | ---- | C] () -- C:\Users\Christina\Documents\Responselauf_1%201[1].pdf
[2013/05/21 20:47:05 | 002,159,081 | ---- | C] () -- C:\Users\Christina\Documents\Responselauf_1%201.pdf
[2013/05/21 20:47:04 | 007,638,311 | ---- | C] () -- C:\Users\Christina\Documents\pestizide%20MD[1].pdf
[2013/05/21 20:47:04 | 003,976,537 | ---- | C] () -- C:\Users\Christina\Documents\Psychophysik_und_experimentelle_Sensorik_Teil_1.pdf
[2013/05/21 20:47:04 | 000,050,993 | ---- | C] () -- C:\Users\Christina\Documents\phe%20tyr%20tryp%201[1].pdf
[2013/05/21 20:47:04 | 000,050,993 | ---- | C] () -- C:\Users\Christina\Documents\phe%20tyr%20tryp%201.pdf
[2013/05/21 20:47:04 | 000,050,109 | ---- | C] () -- C:\Users\Christina\Documents\Phenylethylamin.pdf
[2013/05/21 20:47:04 | 000,048,075 | ---- | C] () -- C:\Users\Christina\Documents\phe%20tyr%20tryp%205.pdf
[2013/05/21 20:47:04 | 000,017,034 | ---- | C] () -- C:\Users\Christina\Documents\PG.pdf
[2013/05/21 20:47:03 | 007,638,311 | ---- | C] () -- C:\Users\Christina\Documents\pestizide%20MD.pdf
[2013/05/21 20:47:02 | 002,182,707 | ---- | C] () -- C:\Users\Christina\Documents\NWG_1%20System_1%201.pdf
[2013/05/21 20:47:02 | 002,106,769 | ---- | C] () -- C:\Users\Christina\Documents\NWG_1%20System_2%201.pdf
[2013/05/21 20:47:02 | 002,091,735 | ---- | C] () -- C:\Users\Christina\Documents\NWG_4%201.pdf
[2013/05/21 20:47:02 | 000,755,666 | ---- | C] () -- C:\Users\Christina\Documents\Patentblau%20V[1].pdf
[2013/05/21 20:47:02 | 000,755,666 | ---- | C] () -- C:\Users\Christina\Documents\Patentblau%20V.pdf
[2013/05/21 20:47:02 | 000,080,006 | ---- | C] () -- C:\Users\Christina\Documents\NWG1[3].pdf
[2013/05/21 20:47:02 | 000,048,861 | ---- | C] () -- C:\Users\Christina\Documents\NWG4%201.pdf
[2013/05/21 20:47:02 | 000,046,108 | ---- | C] () -- C:\Users\Christina\Documents\nwg1[4].pdf
[2013/05/21 20:47:02 | 000,016,987 | ---- | C] () -- C:\Users\Christina\Documents\OG.pdf
[2013/05/21 20:47:01 | 001,660,570 | ---- | C] () -- C:\Users\Christina\Documents\NWG.pdf
[2013/05/21 20:47:01 | 001,217,612 | ---- | C] () -- C:\Users\Christina\Documents\Nuss-Nougat-Creme.pdf
[2013/05/21 20:47:01 | 001,037,280 | ---- | C] () -- C:\Users\Christina\Documents\NWG%201_1.pdf
[2013/05/21 20:47:01 | 001,017,064 | ---- | C] () -- C:\Users\Christina\Documents\NWG%202_1.pdf
[2013/05/21 20:47:01 | 000,080,006 | ---- | C] () -- C:\Users\Christina\Documents\NWG1[1].pdf
[2013/05/21 20:47:01 | 000,070,205 | ---- | C] () -- C:\Users\Christina\Documents\Nitrofurantoin%20gesamt.pdf
[2013/05/21 20:47:01 | 000,054,197 | ---- | C] () -- C:\Users\Christina\Documents\Nitrofurantoin[1].pdf
[2013/05/21 20:47:01 | 000,054,197 | ---- | C] () -- C:\Users\Christina\Documents\Nitrofurantoin.pdf
[2013/05/21 20:47:01 | 000,048,237 | ---- | C] () -- C:\Users\Christina\Documents\NWG1%201[1].pdf
[2013/05/21 20:47:01 | 000,048,237 | ---- | C] () -- C:\Users\Christina\Documents\NWG1%201.pdf
[2013/05/21 20:47:01 | 000,046,108 | ---- | C] () -- C:\Users\Christina\Documents\nwg1[2].pdf
[2013/05/21 20:47:01 | 000,044,969 | ---- | C] () -- C:\Users\Christina\Documents\NWG1.pdf
[2013/05/21 20:47:01 | 000,040,959 | ---- | C] () -- C:\Users\Christina\Documents\NitrofurazonEinzel1.pdf
[2013/05/21 20:47:01 | 000,039,251 | ---- | C] () -- C:\Users\Christina\Documents\NitrofurantoinEinzel1.pdf
[2013/05/21 20:47:01 | 000,039,199 | ---- | C] () -- C:\Users\Christina\Documents\NWG1%203.pdf
[2013/05/21 20:47:00 | 003,636,653 | ---- | C] () -- C:\Users\Christina\Documents\Nebenfach_Lipide_2.pdf
[2013/05/21 20:47:00 | 000,552,134 | ---- | C] () -- C:\Users\Christina\Documents\Nitrat.pdf
[2013/05/21 20:47:00 | 000,073,759 | ---- | C] () -- C:\Users\Christina\Documents\Nitrofurantoin%20einzel.pdf
[2013/05/21 20:46:59 | 001,651,003 | ---- | C] () -- C:\Users\Christina\Documents\milch02.pdf
[2013/05/21 20:46:59 | 000,087,951 | ---- | C] () -- C:\Users\Christina\Documents\Nachweisgrenzen%20Zusammenfassung.pdf
[2013/05/21 20:46:59 | 000,054,264 | ---- | C] () -- C:\Users\Christina\Documents\Nachweisgrenzen%20Pestizide[3].pdf
[2013/05/21 20:46:59 | 000,054,264 | ---- | C] () -- C:\Users\Christina\Documents\Nachweisgrenzen%20Pestizide[2].pdf
[2013/05/21 20:46:59 | 000,054,264 | ---- | C] () -- C:\Users\Christina\Documents\Nachweisgrenzen%20Pestizide[1].pdf
[2013/05/21 20:46:59 | 000,054,264 | ---- | C] () -- C:\Users\Christina\Documents\Nachweisgrenzen%20Pestizide.pdf
[2013/05/21 20:46:58 | 000,600,151 | ---- | C] () -- C:\Users\Christina\Documents\milch01[1].pdf
[2013/05/21 20:46:57 | 002,090,251 | ---- | C] () -- C:\Users\Christina\Documents\Matrix%201.pdf
[2013/05/21 20:46:57 | 001,709,065 | ---- | C] () -- C:\Users\Christina\Documents\Lipide_Teil%207_SS10.pdf
[2013/05/21 20:46:57 | 000,600,151 | ---- | C] () -- C:\Users\Christina\Documents\milch01.pdf
[2013/05/21 20:46:56 | 001,698,494 | ---- | C] () -- C:\Users\Christina\Documents\Lipide_Teil%206_SS10[1].pdf
[2013/05/21 20:46:55 | 001,698,494 | ---- | C] () -- C:\Users\Christina\Documents\Lipide_Teil%206_SS10.pdf
[2013/05/21 20:46:53 | 007,802,374 | ---- | C] () -- C:\Users\Christina\Documents\Lindenm_Ana1.pdf
[2013/05/21 20:46:53 | 000,201,034 | ---- | C] () -- C:\Users\Christina\Documents\Lebensmittel%20Arzneimittel.pdf
[2013/05/21 20:46:52 | 001,473,291 | ---- | C] () -- C:\Users\Christina\Documents\KONSERVIERUNGSSTOFFE[1].pdf
[2013/05/21 20:46:52 | 001,036,467 | ---- | C] () -- C:\Users\Christina\Documents\kosmetik_analytik_beispiele.pdf
[2013/05/21 20:46:52 | 000,034,202 | ---- | C] () -- C:\Users\Christina\Documents\LactemFSME.pdf
[2013/05/21 20:46:52 | 000,000,009 | ---- | C] () -- C:\Users\Christina\Documents\LastLab.sk
[2013/05/21 20:46:51 | 001,473,291 | ---- | C] () -- C:\Users\Christina\Documents\KONSERVIERUNGSSTOFFE.pdf
[2013/05/21 20:46:50 | 002,091,201 | ---- | C] () -- C:\Users\Christina\Documents\Kali%20(1%2B3)%201.pdf
[2013/05/21 20:46:49 | 001,912,327 | ---- | C] () -- C:\Users\Christina\Documents\Kaffee-nusssouffle2011.pdf
[2013/05/21 20:46:49 | 001,141,436 | ---- | C] () -- C:\Users\Christina\Documents\Identification, formation and analytical methodology.pdf
[2013/05/21 20:46:48 | 000,181,803 | ---- | C] () -- C:\Users\Christina\Documents\Hygienepaket%20-%20neu[1].pdf
[2013/05/21 20:46:47 | 000,734,258 | ---- | C] () -- C:\Users\Christina\Documents\Himbeerpudding.pdf
[2013/05/21 20:46:47 | 000,476,982 | ---- | C] () -- C:\Users\Christina\Documents\Hydroxyprolin%20Kalibriergerade%202.pdf
[2013/05/21 20:46:47 | 000,181,803 | ---- | C] () -- C:\Users\Christina\Documents\Hygienepaket%20-%20neu.pdf
[2013/05/21 20:46:47 | 000,071,634 | ---- | C] () -- C:\Users\Christina\Documents\HPLC%20Bedingungen%20zum%20aufkleben.pdf
[2013/05/21 20:46:47 | 000,070,627 | ---- | C] () -- C:\Users\Christina\Documents\HPLC%20Bedingungen%20zum%20aufkleben[4].pdf
[2013/05/21 20:46:47 | 000,070,627 | ---- | C] () -- C:\Users\Christina\Documents\HPLC%20Bedingungen%20zum%20aufkleben[3].pdf
[2013/05/21 20:46:47 | 000,070,627 | ---- | C] () -- C:\Users\Christina\Documents\HPLC%20Bedingungen%20zum%20aufkleben[2].pdf
[2013/05/21 20:46:47 | 000,070,627 | ---- | C] () -- C:\Users\Christina\Documents\HPLC%20Bedingungen%20zum%20aufkleben[1].pdf
[2013/05/21 20:46:47 | 000,043,020 | ---- | C] () -- C:\Users\Christina\Documents\Histamin.pdf
[2013/05/21 20:46:45 | 002,294,161 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf_S%C3%BC%C3%9Fstoffe[1].pdf
[2013/05/21 20:46:45 | 002,294,161 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf_S%C3%BC%C3%9Fstoffe.pdf
[2013/05/21 20:46:45 | 000,000,619 | ---- | C] () -- C:\Users\Christina\Documents\grstyles.stl
[2013/05/21 20:46:44 | 000,055,531 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[9].pdf
[2013/05/21 20:46:43 | 000,066,066 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[8].pdf
[2013/05/21 20:46:42 | 002,161,095 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[6].pdf
[2013/05/21 20:46:42 | 002,161,095 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[5].pdf
[2013/05/21 20:46:42 | 000,066,066 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[7].pdf
[2013/05/21 20:46:42 | 000,066,066 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[2].pdf
[2013/05/21 20:46:42 | 000,055,531 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[4].pdf
[2013/05/21 20:46:42 | 000,023,179 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[3].pdf
[2013/05/21 20:46:41 | 002,160,037 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale[2].pdf
[2013/05/21 20:46:41 | 000,066,066 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf[1].pdf
[2013/05/21 20:46:41 | 000,057,964 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20TAM.pdf
[2013/05/21 20:46:41 | 000,055,531 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf.pdf
[2013/05/21 20:46:39 | 002,160,037 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale[1].pdf
[2013/05/21 20:46:38 | 002,160,037 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale.pdf
[2013/05/21 20:46:37 | 002,165,687 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale%201[4].pdf
[2013/05/21 20:46:37 | 002,165,687 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale%201[3].pdf
[2013/05/21 20:46:36 | 002,174,205 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%202[2].pdf
[2013/05/21 20:46:36 | 002,165,687 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale%201[2].pdf
[2013/05/21 20:46:36 | 002,165,687 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale%201[1].pdf
[2013/05/21 20:46:36 | 002,165,687 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%20Konsi%2BAntiox%2BSchale%201.pdf
[2013/05/21 20:46:35 | 002,171,047 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201[4].pdf
[2013/05/21 20:46:35 | 002,162,183 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201[5].pdf
[2013/05/21 20:46:35 | 002,162,183 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201[3].pdf
[2013/05/21 20:46:35 | 002,162,183 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201[2].pdf
[2013/05/21 20:46:35 | 002,086,101 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%202[1].pdf
[2013/05/21 20:46:35 | 002,086,101 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%202.pdf
[2013/05/21 20:46:34 | 002,171,047 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201[1].pdf
[2013/05/21 20:46:30 | 002,162,183 | ---- | C] () -- C:\Users\Christina\Documents\Gesamtlauf%201.pdf
[2013/05/21 20:46:25 | 000,040,525 | ---- | C] () -- C:\Users\Christina\Documents\Gesamt%20S%C3%BC%C3%9F2.pdf
[2013/05/21 20:46:24 | 000,256,767 | ---- | C] () -- C:\Users\Christina\Documents\Gentechnisch%20ver%C3%A4ndert[1].pdf
[2013/05/21 20:46:16 | 000,256,767 | ---- | C] () -- C:\Users\Christina\Documents\Gentechnisch%20ver%C3%A4ndert.pdf
[2013/05/21 20:46:11 | 019,986,951 | ---- | C] () -- C:\Users\Christina\Documents\GC-FSME_Referenzl%C3%A4ufe.pdf
[2013/05/21 20:46:03 | 015,309,704 | ---- | C] () -- C:\Users\Christina\Documents\gc%20ms.pdf
[2013/05/21 20:46:00 | 000,011,086 | ---- | C] () -- C:\Users\Christina\Documents\Fragensammlung%20Sensorik-Klausur%2015.4.11.pdf
[2013/05/21 20:45:59 | 005,763,365 | ---- | C] () -- C:\Users\Christina\Documents\farbstoffe%20kalibriergeraden.pdf
[2013/05/21 20:45:59 | 000,123,568 | ---- | C] () -- C:\Users\Christina\Documents\FIAP%20-%20Zusatzstoffe.pdf
[2013/05/21 20:45:59 | 000,107,066 | ---- | C] () -- C:\Users\Christina\Documents\FIAP%2C%20Aromen.pdf
[2013/05/21 20:45:59 | 000,092,411 | ---- | C] () -- C:\Users\Christina\Documents\FIAP%20-%20Zulassungsverfahren.pdf
[2013/05/21 20:45:57 | 002,153,200 | ---- | C] () -- C:\Users\Christina\Documents\Ernaehrung_Teil_10.pdf
[2013/05/21 20:45:57 | 000,510,723 | ---- | C] () -- C:\Users\Christina\Documents\Ernaehrung_Teil_9.pdf
[2013/05/21 20:45:57 | 000,160,717 | ---- | C] () -- C:\Users\Christina\Documents\EU-Kosmetik-VO[1].pdf
[2013/05/21 20:45:57 | 000,160,717 | ---- | C] () -- C:\Users\Christina\Documents\EU-Kosmetik-VO.pdf
[2013/05/21 20:45:54 | 002,175,318 | ---- | C] () -- C:\Users\Christina\Documents\Dulcin[2].pdf
[2013/05/21 20:45:53 | 002,175,318 | ---- | C] () -- C:\Users\Christina\Documents\Dulcin[1].pdf
[2013/05/21 20:45:53 | 002,175,318 | ---- | C] () -- C:\Users\Christina\Documents\Dulcin.pdf
[2013/05/21 20:45:52 | 000,180,807 | ---- | C] () -- C:\Users\Christina\Documents\Diatverordnung%202.pdf
[2013/05/21 20:45:52 | 000,177,120 | ---- | C] () -- C:\Users\Christina\Documents\Diatverordnung.pdf
[2013/05/21 20:45:52 | 000,078,232 | ---- | C] () -- C:\Users\Christina\Documents\Diatverordnung%203.pdf
[2013/05/21 20:45:52 | 000,052,386 | ---- | C] () -- C:\Users\Christina\Documents\Chloramphenicol.pdf
[2013/05/21 20:45:52 | 000,034,537 | ---- | C] () -- C:\Users\Christina\Documents\Citrem.referenzFSME.pdf
[2013/05/21 20:45:51 | 001,007,968 | ---- | C] () -- C:\Users\Christina\Documents\Catechin_mit%20Zuordnung[1].pdf
[2013/05/21 20:45:51 | 001,007,968 | ---- | C] () -- C:\Users\Christina\Documents\Catechin_mit%20Zuordnung.pdf
[2013/05/21 20:45:51 | 000,766,076 | ---- | C] () -- C:\Users\Christina\Documents\Chinolingelb.pdf
[2013/05/21 20:45:50 | 001,507,408 | ---- | C] () -- C:\Users\Christina\Documents\Brausepulver_JS.pdf
[2013/05/21 20:45:50 | 000,035,929 | ---- | C] () -- C:\Users\Christina\Documents\Carnaubawachs_unverduennt.pdf
[2013/05/21 20:45:48 | 006,608,069 | ---- | C] () -- C:\Users\Christina\Documents\Biotechnologie_BioanalytikIWS0910.pdf
[2013/05/21 20:45:47 | 002,056,525 | ---- | C] () -- C:\Users\Christina\Documents\BHT[1].pdf
[2013/05/21 20:45:46 | 000,062,177 | ---- | C] () -- C:\Users\Christina\Documents\benzoes%C3%A4ure[2].pdf
[2013/05/21 20:45:46 | 000,061,493 | ---- | C] () -- C:\Users\Christina\Documents\bht.pdf
[2013/05/21 20:45:46 | 000,016,567 | ---- | C] () -- C:\Users\Christina\Documents\BHA.pdf
[2013/05/21 20:45:45 | 002,150,449 | ---- | C] () -- C:\Users\Christina\Documents\Benzoes%C3%A4ure%2BSorbins%C3%A4ure.pdf
[2013/05/21 20:45:45 | 000,232,883 | ---- | C] () -- C:\Users\Christina\Documents\Bedienungsanleitung%20HPLC.pdf
[2013/05/21 20:45:45 | 000,062,177 | ---- | C] () -- C:\Users\Christina\Documents\benzoes%C3%A4ure[1].pdf
[2013/05/21 20:45:45 | 000,062,177 | ---- | C] () -- C:\Users\Christina\Documents\benzoes%C3%A4ure.pdf
[2013/05/21 20:45:44 | 004,875,098 | ---- | C] () -- C:\Users\Christina\Documents\Auswertung%20DC_fertig.pdf
[2013/05/21 20:45:44 | 000,713,363 | ---- | C] () -- C:\Users\Christina\Documents\BEDARF~1[1].pdf
[2013/05/21 20:45:44 | 000,713,363 | ---- | C] () -- C:\Users\Christina\Documents\BEDARF~1(2).pdf
[2013/05/21 20:45:44 | 000,000,203 | ---- | C] () -- C:\Users\Christina\Documents\BasicLab.sk
[2013/05/21 20:45:43 | 001,034,059 | ---- | C] () -- C:\Users\Christina\Documents\Auswertung%20DC[2].pdf
[2013/05/21 20:45:43 | 001,034,059 | ---- | C] () -- C:\Users\Christina\Documents\Auswertung%20DC[1].pdf
[2013/05/21 20:45:43 | 001,034,059 | ---- | C] () -- C:\Users\Christina\Documents\Auswertung%20DC.pdf
[2013/05/21 20:45:42 | 002,177,226 | ---- | C] () -- C:\Users\Christina\Documents\Aspartam.pdf
[2013/05/21 20:45:42 | 001,110,984 | ---- | C] () -- C:\Users\Christina\Documents\AR-M236_20100708_164508.pdf
[2013/05/21 20:45:42 | 000,281,741 | ---- | C] () -- C:\Users\Christina\Documents\Anleitung%20Pestizide[3].pdf
[2013/05/21 20:45:42 | 000,077,024 | ---- | C] () -- C:\Users\Christina\Documents\Auswertung%20Chromatogramme.pdf
[2013/05/21 20:45:41 | 000,283,920 | ---- | C] () -- C:\Users\Christina\Documents\Anleitung%20Pestizide[1].pdf
[2013/05/21 20:45:41 | 000,283,920 | ---- | C] () -- C:\Users\Christina\Documents\Anleitung%20Pestizide.pdf
[2013/05/21 20:45:41 | 000,281,741 | ---- | C] () -- C:\Users\Christina\Documents\Anleitung%20Pestizide[2].pdf
[2013/05/21 20:45:41 | 000,184,761 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%203.pdf
[2013/05/21 20:45:41 | 000,184,633 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%202[1].pdf
[2013/05/21 20:45:40 | 002,221,663 | ---- | C] () -- C:\Users\Christina\Documents\Acesulfam%20K.pdf
[2013/05/21 20:45:40 | 000,418,254 | ---- | C] () -- C:\Users\Christina\Documents\alle%20einzel.pdf
[2013/05/21 20:45:40 | 000,191,496 | ---- | C] () -- C:\Users\Christina\Documents\Allergene[1].pdf
[2013/05/21 20:45:40 | 000,191,496 | ---- | C] () -- C:\Users\Christina\Documents\Allergene.pdf
[2013/05/21 20:45:40 | 000,185,453 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%201[2].pdf
[2013/05/21 20:45:40 | 000,185,453 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%201[1].pdf
[2013/05/21 20:45:40 | 000,185,453 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%201.pdf
[2013/05/21 20:45:40 | 000,184,633 | ---- | C] () -- C:\Users\Christina\Documents\Anlage%202.pdf
[2013/05/21 20:45:40 | 000,019,718 | ---- | C] () -- C:\Users\Christina\Documents\altklausur%20biochemie%20ern%C3%A4hrungslehre%20WS2010.pdf
[2013/05/21 20:45:39 | 001,273,466 | ---- | C] () -- C:\Users\Christina\Documents\Acesulfam%20K-Nachweisgrenze_Syst.III.pdf
[2013/05/21 20:45:39 | 000,663,706 | ---- | C] () -- C:\Users\Christina\Documents\20110125gesamtlaufHPLC1.pdf
[2013/05/21 20:45:39 | 000,056,578 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Dulcin_auf_Konsi.pdf
[2013/05/21 20:45:39 | 000,020,222 | ---- | C] () -- C:\Users\Christina\Documents\26_06_2012_Serotonin_auf_Antiox.pdf
[2013/05/21 20:45:39 | 000,017,187 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Aspartam_auf_Antiox[1].pdf
[2013/05/21 20:45:39 | 000,017,187 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Aspartam_auf_Antiox.pdf
[2013/05/21 20:45:39 | 000,016,601 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Dulcin_auf_Antiox[2].pdf
[2013/05/21 20:45:39 | 000,016,601 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Dulcin_auf_Antiox[1].pdf
[2013/05/21 20:45:39 | 000,016,601 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Dulcin_auf_Antiox.pdf
[2013/05/21 20:45:39 | 000,016,554 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_AcesulfamK_auf_antiox.pdf
[2013/05/21 20:45:39 | 000,016,462 | ---- | C] () -- C:\Users\Christina\Documents\27_06_12_Saccharin_auf_Antiox.pdf
[2013/05/21 20:45:38 | 000,501,069 | ---- | C] () -- C:\Users\Christina\Documents\1%2B1%20S.1.pdf
[2013/05/21 20:45:38 | 000,272,854 | ---- | C] () -- C:\Users\Christina\Documents\%EF%BF%BDBERWA~4.pdf
[2013/05/21 20:45:38 | 000,154,397 | ---- | C] () -- C:\Users\Christina\Documents\2011%20wrp%20Heft%204%2C%20BGH%20Glucosamin%20%26%20Co.pdf
[2013/05/21 20:45:38 | 000,128,100 | ---- | C] () -- C:\Users\Christina\Documents\%EF%BF%BDBERWA~2[2].pdf
[2013/05/21 20:45:38 | 000,128,100 | ---- | C] () -- C:\Users\Christina\Documents\%EF%BF%BDBERWA~2[1].pdf
[2013/05/21 20:45:38 | 000,128,100 | ---- | C] () -- C:\Users\Christina\Documents\%EF%BF%BDBERWA~2.pdf
[2013/05/21 20:45:38 | 000,078,083 | ---- | C] () -- C:\Users\Christina\Documents\%EF%BF%BDBERWA~3.pdf
[2013/05/21 20:45:37 | 001,076,627 | ---- | C] () -- C:\Users\Christina\Documents\%C3%96ko-LMs.pdf
[2013/05/15 18:10:23 | 000,000,151 | ---- | C] () -- C:\ProgramData\qlinf.reg
[2013/05/15 18:10:23 | 000,000,055 | ---- | C] () -- C:\ProgramData\qlinf.bat
[2013/05/15 18:10:22 | 095,023,320 | ---- | C] () -- C:\ProgramData\qlinf.pad
[2011/12/23 21:58:28 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011/12/23 21:58:24 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2011/12/23 21:58:24 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2011/12/23 21:58:24 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2011/12/23 21:58:24 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2010/09/16 21:46:51 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/09/16 14:02:55 | 000,131,368 | ---- | C] () -- C:\ProgramData\FullRemove.exe
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013/06/18 15:33:33 | 000,000,000 | ---D | M] -- C:\Users\Christina\AppData\Roaming\Dropbox
[2013/05/24 10:28:02 | 000,000,000 | ---D | M] -- C:\Users\Christina\AppData\Roaming\DVDVideoSoft
[2013/05/22 17:32:50 | 000,000,000 | ---D | M] -- C:\Users\Christina\AppData\Roaming\EndNote
[2013/06/09 12:53:37 | 000,000,000 | ---D | M] -- C:\Users\Christina\AppData\Roaming\Samsung
[2013/06/18 14:54:26 | 000,000,000 | ---D | M] -- C:\Users\Christina\AppData\Roaming\Spotify
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:2430E4FC
< End of report >
Extra.txt Code:
ATTFilter OTL Extras logfile created on: 6/18/2013 3:10:44 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Christina\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3.85 Gb Total Physical Memory | 1.64 Gb Available Physical Memory | 42.44% Memory free
7.71 Gb Paging File | 5.44 Gb Available in Paging File | 70.66% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 112.00 Gb Total Space | 3.76 Gb Free Space | 3.36% Space Free | Partition Type: NTFS
Drive D: | 165.99 Gb Total Space | 165.50 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
Computer Name: R247097 | User Name: Christina | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05653917-6364-4E03-AD6F-0334F55BD3C0}" = lport=137 | protocol=17 | dir=in | app=system |
"{2AF358EE-954A-46D0-9940-6D8A23EAE1E1}" = rport=445 | protocol=6 | dir=out | app=system |
"{65DE1AC9-37E6-483D-BA3D-B733528D31DD}" = rport=139 | protocol=6 | dir=out | app=system |
"{6891CF6B-224D-451F-B616-5D77FEB8AB6A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{82A0184D-800F-46A7-B99C-6C549BD56318}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{8A612414-687B-4FD2-B2CF-6C6E75957F55}" = lport=139 | protocol=6 | dir=in | app=system |
"{AD281432-B033-44C1-A697-359D437BBDE7}" = lport=138 | protocol=17 | dir=in | app=system |
"{B39F758F-3FB2-4949-91F2-8610E3B5DDFF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D313AE16-7F22-488F-8CBD-8176B979E8F8}" = lport=445 | protocol=6 | dir=in | app=system |
"{D3A3F214-E31B-47B9-8C15-90A796BD63DF}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E0EDBD07-4E94-419A-92BD-E1E562FC7A9D}" = rport=138 | protocol=17 | dir=out | app=system |
"{E411663B-BC3E-42E4-AD9B-FE3EDE68237E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F0FA784F-B08F-4F4C-B535-7B728982C46F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F81C95E5-80AB-4A5F-AC6D-25E9036EA5C2}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{127AF4DD-6000-4B3B-A37D-F2B6B4E0006F}" = protocol=17 | dir=in | app=c:\users\christina\appdata\roaming\dropbox\bin\dropbox.exe |
"{22986735-1EDB-444E-90E5-0199F349FF75}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{3059F974-4A92-4F5B-92DE-77213E97B4CD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3E954C78-9DA9-4CE2-8F37-6FC27D929BCD}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{5D4AAD98-DE6E-4E09-863D-420723D2DB4E}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{5D5EAA7E-B982-4FD7-839D-0B46F85522C3}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{6ACCF8C0-AB4A-42B0-92E8-D8377B530334}" = protocol=6 | dir=in | app=c:\users\christina\appdata\roaming\dropbox\bin\dropbox.exe |
"{7A379C36-ACDE-4FDB-8133-CC531960A4F5}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{8C298F23-1440-4517-A974-825695302B3B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E0E4F26E-F444-47B2-A177-D50D0B2624AE}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{E4DD74AB-5A20-413E-8ED5-EA086E62866C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F829CFB1-6AAE-4E77-8257-E0822E4EAEDB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"TCP Query User{10D2CC54-14E3-4939-AB62-B178E7B4E42B}C:\users\christina\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\christina\appdata\roaming\spotify\spotify.exe |
"TCP Query User{7CDC784F-F449-46D9-898E-A1D7893FD1E1}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{28C6488C-0206-4E22-9C01-B748878CCC05}C:\users\christina\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\christina\appdata\roaming\spotify\spotify.exe |
"UDP Query User{774F29F8-9D37-4A7C-B8EF-5139E47FADA1}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00060000-0000-1004-8002-0000C06B5161}" = WibuKey Setup (WibuKey Remove)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{3013A793-10A7-4D1F-B8B4-2FAA82F4D259}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{98782D5D-A9EE-43C6-88AD-B50AD8530E78}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8DFD91C7-66AE-4E54-9901-5D5F401AD329}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8299B64F-1537-4081-974C-033EAB8F098E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9ED333F8-3E6C-4A38-BAFA-728454121CDA}" = PDF-XChange Viewer
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{E63D8961-0BA9-4CF3-9E94-407ACA42846C}" = SpyHunter
"{F0A36649-873E-4832-A5F1-BF5DF8600BDB}" = Windows Live Family Safety
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F82D3110-2996-B896-9ADC-394C18071095}" = ccc-utility64
"{F8FEEFC0-D7D6-9A40-28E9-1E7A6716E803}" = ATI Catalyst Install Manager
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"Elantech" = ETDWare PS/2-x64 7.0.7.0_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{058E7BC0-15C3-D5F6-FD8D-34E4B44E4F82}" = CCC Help Thai
"{085C9E07-E122-DECF-350D-5CB3594EC54D}" = Catalyst Control Center Graphics Previews Common
"{08B67A13-8501-48CB-B747-9D413BDC4594}" = BatteryLifeExtender
"{0F796312-289C-40CA-856C-9FBCF5E83342}" = REALTEK Wireless LAN Software
"{11A5DA06-82B8-B47C-B6A9-6BFA8008108C}" = CCC Help Dutch
"{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}" = Samsung Recovery Solution 4
"{17283B95-21A8-4996-97DA-547A48DB266F}" = Easy Display Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 21
"{283EFC5E-041A-4AC7-8824-2F33695EBC11}" = CCC Help Korean
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2D4E3A20-01D9-713F-2CD5-15FBD9312F28}" = CCC Help Chinese Traditional
"{2DDC70C1-C77A-4D08-89D2-9AB648504533}" = Easy Content Share
"{2E6EE352-C3CB-49F3-8E8F-7D2ECD851025}" = Xcalibur
"{31CABF76-F113-30F6-1BF1-19CA660C72B4}" = CCC Help Finnish
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online Backup
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{43609114-F9B7-48AA-BAAC-F320BB5E88DD}" = CCC Help Spanish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A331D24-A9E8-484F-835E-1BA7B139689C}" = EasyBatteryManager
"{4A87034C-621A-DAC1-D7C3-FB9102A453D4}" = CCC Help Japanese
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{4FBB6BFD-774C-E86B-84E6-23C08FD76C0C}" = Catalyst Control Center Graphics Light
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{6BCE77FA-82A3-E502-0956-AA9AE0E169D0}" = CCC Help English
"{7363206E-C7BD-45CD-89A0-792B28409811}_is1" = MB-Ruler
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{78FDD286-2C51-17B5-22BC-DA769D237E1A}" = CCC Help Swedish
"{79B0F7B2-31BD-D377-CCA2-F647601283C0}" = CCC Help Polish
"{80059A57-F141-5556-7FA2-CD97EB8A05F9}" = CCC Help Danish
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110109903}" = Flip Words
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110160733}" = Slingo
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110245793}" = Insaniquarium Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110521483}" = Gem Shop
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}" = Cake Mania
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111768557}" = Bonbon Quest
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113128447}" = Daycare Nightmare
"{86B3F2D6-AC2B-0016-8AE1-F2F77F781B0C}" = EndNote X6
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8D1E61D1-1395-4E97-997F-D002DB3A5074}" = OpenOffice.org 3.2
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{983D01A7-FD14-5F70-9A46-3DBE1C0A3FFF}" = Catalyst Control Center InstallProxy
"{9AA9FEE7-9F99-4E69-947A-49F7DA0DDA3A}" = Cisco AnyConnect Secure Mobility Client
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C51C947-7E8D-3EEB-6087-276446E4914C}" = CCC Help Hungarian
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.03) - Deutsch
"{B1FA9E3F-86F3-136A-84DA-809A40458243}" = CCC Help Russian
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B6D8DC8C-F077-4631-A221-4D5E1D8E87E7}" = Catalyst Control Center - Branding
"{B7FB9C80-A61F-6BFE-7F93-C493AC3F9E91}" = CCC Help Turkish
"{B91B9BD2-C3D1-2632-26C9-170EB39CADAC}" = CCC Help Greek
"{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}" = User Guide
"{BD8D4FE1-8E1D-2D41-ED33-3E2B64ED3AF3}" = CCC Help Chinese Standard
"{C28CE716-3F07-528A-6CC8-FDF2865BCAAF}" = ccc-core-static
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C9F9C082-A19F-9672-4F78-CC93F363A07D}" = CCC Help Norwegian
"{CEF185AA-392D-82EF-339B-F36547C0D9F8}" = Catalyst Control Center Core Implementation
"{D1434266-0486-4469-B338-A60082CC04E1}" = Atheros Client Installation Program
"{D1886477-86CD-8365-CE96-42AD6F950ED0}" = CCC Help Italian
"{D1F6FBBB-B204-459A-9BF8-D06FFAB96CCC}_is1" = Game Pack
"{D1FAD629-67C3-B9D5-FD06-73A4EF76528A}" = CCC Help Portuguese
"{D3873CF8-9608-402B-88AD-D73B5FFAAED8}" = capella 7
"{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}" = Samsung Update Plus
"{D53D7F78-94AC-CE27-199E-5F509437C7E6}" = Catalyst Control Center Graphics Previews Vista
"{D55BE2BD-14D6-E8AA-A1C0-519C50E28EB2}" = Catalyst Control Center Graphics Full Existing
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E12C6653-1FF0-4686-ADB8-589C13AE761F}" = Citavi
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E91CD838-0ED0-0BCD-ECAF-1A089F1A27E5}" = CCC Help Czech
"{EF1E3D76-6F52-3F63-6848-346ACD86096D}" = CCC Help German
"{EF367AA4-070B-493C-9575-85BE59D789C9}" = Easy SpeedUp Manager
"{F0B13553-B3CA-76A9-182A-9E352F4EB749}" = Catalyst Control Center Graphics Full New
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6340C10-589F-7D1E-1819-2F8CF6247505}" = CCC Help French
"{F687E657-F636-44DF-8125-9FEEA2C362F5}" = Samsung Support Center
"{F771F1D4-EDD4-4D68-82DC-811583C099CD}" = Easy Network Manager
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FFE45CD9-4070-78E3-5794-8575B389336E}" = Catalyst Control Center Localization All
"ACDLabs in C__ACDFREE12_" = ACD/Labs Software in C:\ACDFREE12\
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Aldi Süd Foto Service" = Aldi Süd Foto Service 4.6
"ALDI Süd Online Druck Service" = ALDI Süd Online Druck Service 4.6
"ALDI Sued Fotoservice_is1" = Aldi Sued Fotoservice 2.7
"Audacity_is1" = Audacity 2.0.2
"Avira AntiVir Desktop" = Avira Free Antivirus
"Cisco AnyConnect Secure Mobility Client" = Cisco AnyConnect Secure Mobility Client
"DivX Setup" = DivX-Setup
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.12.2.430
"GC_Deploy_0" = GC Image 2.2b4 GCxGC
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.75.0.1300
"Marvell Miniport Driver" = Marvell Miniport Driver
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Firefox 21.0 (x86 de)" = Mozilla Firefox 21.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NIST 08 MS Library and AMDIS 2.65" = NIST 08 MS Library and AMDIS 2.65
"ResearchSoft Direct Export Helper" = ResearchSoft Direct Export Helper
"WinLiveSuite_Wave3" = Windows Live Essentials
"YTdetect" = Yahoo! Detect
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"MyFreeCodec" = MyFreeCodec
"Spotify" = Spotify
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5/21/2013 2:23:44 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1500
Description = Sie konnten nicht angemeldet werden, da das lokal gespeicherte Profil
nicht geladen werden konnte. Überprüfen Sie, ob eine Netzwerkverbindung besteht
und das Netzwerk ordnungsgemäß funktioniert. Details - Nur ein Teil der ReadProcessMemory-
oder WriteProcessMemory-Anforderung wurde abgeschlossen.
Error - 5/21/2013 2:23:58 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1515
Description = Dieses Benutzerprofil wurde gesichert. Bei der nächsten Anmeldung
dieses Benutzers wird automatisch versucht, dieses gesicherte Profil zu verwenden.
Error - 5/21/2013 2:23:58 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1511
Description = Das lokale Benutzerprofil wurde nicht gefunden. Sie werden mit einem
temporären Benutzerprofil angemeldet. Änderungen, die Sie am Benutzerprofil vornehmen,
gehen bei der Abmeldung verloren.
Error - 5/21/2013 2:24:48 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1500
Description = Sie konnten nicht angemeldet werden, da das lokal gespeicherte Profil
nicht geladen werden konnte. Überprüfen Sie, ob eine Netzwerkverbindung besteht
und das Netzwerk ordnungsgemäß funktioniert. Details - Es steht nicht genug Speicherplatz
auf dem Datenträger zur Verfügung.
Error - 5/21/2013 2:35:07 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1511
Description = Das lokale Benutzerprofil wurde nicht gefunden. Sie werden mit einem
temporären Benutzerprofil angemeldet. Änderungen, die Sie am Benutzerprofil vornehmen,
gehen bei der Abmeldung verloren.
Error - 5/21/2013 2:35:07 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1500
Description = Sie konnten nicht angemeldet werden, da das lokal gespeicherte Profil
nicht geladen werden konnte. Überprüfen Sie, ob eine Netzwerkverbindung besteht
und das Netzwerk ordnungsgemäß funktioniert. Details - Nur ein Teil der ReadProcessMemory-
oder WriteProcessMemory-Anforderung wurde abgeschlossen.
Error - 5/21/2013 2:35:12 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1511
Description = Das lokale Benutzerprofil wurde nicht gefunden. Sie werden mit einem
temporären Benutzerprofil angemeldet. Änderungen, die Sie am Benutzerprofil vornehmen,
gehen bei der Abmeldung verloren.
Error - 5/21/2013 2:35:12 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1500
Description = Sie konnten nicht angemeldet werden, da das lokal gespeicherte Profil
nicht geladen werden konnte. Überprüfen Sie, ob eine Netzwerkverbindung besteht
und das Netzwerk ordnungsgemäß funktioniert. Details - Nur ein Teil der ReadProcessMemory-
oder WriteProcessMemory-Anforderung wurde abgeschlossen.
Error - 5/21/2013 3:08:58 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1515
Description = Dieses Benutzerprofil wurde gesichert. Bei der nächsten Anmeldung
dieses Benutzers wird automatisch versucht, dieses gesicherte Profil zu verwenden.
Error - 5/21/2013 3:08:58 PM | Computer Name = r247097 | Source = Microsoft-Windows-User Profiles Service | ID = 1511
Description = Das lokale Benutzerprofil wurde nicht gefunden. Sie werden mit einem
temporären Benutzerprofil angemeldet. Änderungen, die Sie am Benutzerprofil vornehmen,
gehen bei der Abmeldung verloren.
[ Cisco AnyConnect Secure Mobility Client Events ]
Error - 6/18/2013 8:55:26 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:27 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:28 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:29 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:30 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:31 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:32 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:33 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:34 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
Error - 6/18/2013 8:55:35 AM | Computer Name = r247097 | Source = acvpnui | ID = 67108866
Description = Function: CTrayIcon::StepAnimation File: .\TrayIcon.cpp Line: 428 Invoked
Function: CTrayIcon::OnTimer Return Code: 1460 (0x000005B4) Description: Dieser Vorgang
wurde wegen Zeitüberschreitung zurückgegeben.
[ System Events ]
Error - 6/18/2013 7:22:36 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7024
Description = Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit folgendem dienstspezifischem
Fehler beendet: %%0.
Error - 6/18/2013 7:23:17 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7011
Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung
von Dienst Rezip erreicht.
Error - 6/18/2013 8:52:58 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7011
Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung
von Dienst Rezip erreicht.
Error - 6/18/2013 8:55:12 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Windows Search erreicht.
Error - 6/18/2013 8:55:12 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht
gestartet: %%1053
Error - 6/18/2013 8:55:12 AM | Computer Name = r247097 | Source = DCOM | ID = 10005
Description =
Error - 6/18/2013 8:56:08 AM | Computer Name = r247097 | Source = DCOM | ID = 10005
Description =
Error - 6/18/2013 8:56:08 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Windows Modules Installer erreicht.
Error - 6/18/2013 8:56:08 AM | Computer Name = r247097 | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Windows Modules Installer" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053
Error - 6/18/2013 8:56:08 AM | Computer Name = r247097 | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x8007041d
< End of report >
|
| Themen zu win32.downloader.gen lässt sich mit spybot nicht eliminieren |
| adobe reader xi, anlage, antivir, application/pdf:, avira, benutzerprofil, bho, computer, converter, desktop, entfernen, error, esgscanner.sys, firefox, flash player, home, iexplore.exe, install.exe, malware, mp3, plug-in, problem, realtek, safer networking, samsung kies, scan, security, server, software, spotify web helper, spyware, svchost.exe, symantec, tracker, windows, zugriff verweigert |
Baum-Darstellung